Open
Cached
·
just now
95/100
SECURITY SCORE
Certificate Information
Subject
CN=help.classic.icanotes.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
December 01, 2025
Valid Until
March 01, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4F:77:53:BC:47:81:30:8A:29:A5:CC:6D:47:D8:34:F6:E6:96:07:7D:11:F1:26:97:B8:BB:E9:AF:83:E6:6D:7E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=63072000;includeSubDomains
Content-Security-Policy
Basic
script-src; object-src; base-uri; +1 more
script-src 'self' 'strict-dynamic' static.zohocdn.com salesiq.zoho.com dtzpfzv31buvf.cloudfront.net cdn.pagesense.io js.zohocdn.com widgets.zohosalesiq.com zohotagmanager.cdn.pagesense.io 'nonce-fd23e70b3ecad7900afbae13b2915a6a';object-src 'none';base-uri 'self' static.zohocdn.com;report-uri https://logsapi.zoho.com/csplog?service=support;
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
accelerometer=(), ambient-light-sensor=(), bluetooth=(), compute-pressure=(), document-domain=(), encrypted-media=(), gamepad=(), gyroscope=(), hid=(), magnetometer=(), midi=(), screen-wake-lock=(), serial=(), speaker-selection=(), usb=(), xr-spatial-tracking=()
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • You have authorized 4 CAs - consider limiting to only the CAs you actively use
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
- • Consider adding 'issuewild' records to control wildcard certificate issuance
Subject Alternative Names
53 domains
csr.thefulfillmentlab.com
helpdesk.acssa.org
helpdesk.adda247.com
support.alea.asia
support.appsandstores.com
members.asktherav.com
support.balancenow.ca
helpdesk.becaffeinated.com
support.bigtable.ca
support.cen-inc.com
helpdesk.chiot.tech
help.cityofhanahan.com
support.clareti.com
support.clouddaddy.com
support.codebyray.com
help.compsf.com
support.defenage.com
support.delphiinfotech.in
support.dennyaustin.com
atendimento-nucleobtg.embracon.online
desk.emerge2.com
soporte.eplussoluciones.com.pe
licensee.execupay.help
uzio.execupay.help
sd.expd.tech
soporte.ffg.cl
support.flyingtest.co.uk
support.hystax.com
help.classic.icanotes.com
support.incept.education
helpdesk.it.si
support.itsmart.co.za
support.junxure.com
support.kriyadocs.com
helpdesk.mayannetworks.mx
support.mindahome.com.au
support.modbits.net
desk.natsb.com
support.pagination.com
logistics.percorsols.com
support.pickcel.com
support.pointfuse.com
support.portfordsolutions.com
support.preset.tech
support.rexel.it
support.risepeople.com
desk.smartapartmentdata.com
support.straightstream.com
support.sun-brite.com
support.unitycore.us
support.virtualassistus.com
support.voxlog.net
helpdesk.yardzorgsites.nl
Other domains in certificate