Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=login.gajix.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
41 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
28:53:E2:0C:94:F0:D1:D5:04:84:B6:62:25:CA:F2:75:1B:00:4B:5F:E4:61:1F:D0:CF:74:C6:8E:B2:46:E2:61
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
coach-plan.com
495318.net
agusampietro.com
www.aiquizme.com
www.airfriends.co
www.almanabir.app
amigosdelturistatours.com
andreaamaya.com
dev.appsatease.com
bodies.audaces.com
www.auraair.ai
www.aurojitdas.com
bdkegyptconsultants.com
www.bladaanbieding.nl
dev.boglebot.com
chainswap.org
chorsee.com
cloudbade.com
staging.everyonesnft.theclub.com.hk
jacintaenclaves.com.ph
compramostubarco.net
admin.cpa-web-questions.app
link.cs.plus
www.4all.dev.br
digischoolapp.com
webapp.digitalbusinessapplications.com
kidsup.edu.vn
www.ellisongames.com
qa.endlink.dev
entreinaweb.com
www.eventwerkstadt.at
findmyimpound.com
login.gajix.com
geniusmuscles.com
graytechcorp.com
grotopo.com
app-dev.haildeus.com
www.histfolk.at
www.hydeanalysis.com
immortaldragongames.com
calendar.isaacsparling.com
jackheinemann.com
app.jeremyberglund.dev
jfs.id.au
adm.jmcartem.com
members.joininteract.com
kenth.dev
higherlower.kgbp.de
www.krishnakumar.cn
www.ktown.io
letsallcreate.com
portal.logiclabs.cc
madalirecipes.com
www.miksing.com
www.mizzou-imse-alumni.org
monomatizate.com
map.motorcyclemojo.com
moveshop.co
www.mytappo.com
app.naeron.com
www.novajukebox.com
www.nuegen.com
www.okinalabs.io
portal.operative.com.br
pacificeng.ca
phoebephilanthropy.com
pllashniku.com
community.pollyn.app
arbatravel.qrq.app
agents.rallytree.com
www.ramirosuarez.com
www.randospompettes.com
test.read-pro.com
sharekonnect.reapmind.com
parcsafari.reatinos.com
renklikamp.com
directorio.rhodium.ooo
rx.clinic
www.securityfirst.io
shineart25.com
www.siwoo.club
spacefestunlimited.com
ss-successprinting.com
www.ss-successprinting.com
syrerys.com
tailor-code.com.ar
takkasmart.com
www.talto-dev.cc
thevijaysoni.com
app.tinhgame.shop
thesis.tmsvrg.com
trailroulette.com
trollibitz.com
variousbbbb.com
admin.vipapp.com.br
vrmmo.world
waldoapp.be
windyard.com
x-report.com.br
zebutaxi.com
Other domains in certificate