Open
Cached
·
just now
93/100
SECURITY SCORE
Certificate Information
Subject
CN=integratepush.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 13, 2025
Valid Until
March 13, 2026
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
79:DA:34:A6:E4:62:47:09:80:03:B5:C4:09:89:CD:D0:12:E8:D9:DA:C9:12:FF:D0:71:69:5F:54:BB:13:21:58
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=63072000; includeSubDomains; preload
Content-Security-Policy
Basic
upgrade-insecure-requests; block-all-mixed-content; frame-ancestors; +14 more
upgrade-insecure-requests; block-all-mixed-content; frame-ancestors 'self'; default-src https://cdn.plaid.com/; script-src 'self' 'sha256-3bzWVxQE32IZQKH9eh8KzyHuhXOlMrboDVVBRd0fWTU=' 'report-sample' 'unsafe-eval' gaviti.com *.gaviti.com https://challenges.cloudflare.com https://cdn.plaid.com/link/v2/stable/link-initialize.js google.com *.google.com googleapis.com *.googleapis.com google-analytics.com *.google-analytics.com googletagmanager.com *.googletagmanager.com gstatic.com *.gstatic.com gstatic.cn *.gstatic.cn googleoptimize.com *.googleoptimize.com clarity.ms *.clarity.ms https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.stripe.com; style-src 'self' 'report-sample' 'unsafe-inline' gaviti.com *.gaviti.com optimize.google.com *.googleapis.com; object-src 'none'; frame-src 'self' gaviti.com *.gaviti.com https://*.stripe.com https://challenges.cloudflare.com https://cdn.plaid.com/ optimize.google.com https:; child-src 'self' https://intercom-sheets.com https://www.intercom-reporting.com https://www.youtube.com https://player.vimeo.com https://fast.wistia.net blob:; img-src https: data: blob:; font-src 'self' gaviti.com *.gaviti.com googleapis.com *.googleapis.com gstatic.com *.gstatic.com https://js.intercomcdn.com https://fonts.intercomcdn.com data:; connect-src 'self' gaviti.com *.gaviti.com https://stage.api.gaviti.com wss://stage.api.gaviti.com https://us.api.gaviti.com wss://us.api.gaviti.com https://api.gaviti.com wss://api.gaviti.com https://*.stripe.com clarity.ms *.clarity.ms googleapis.com *.googleapis.com google-analytics.com *.google-analytics.com https://api.intercom.io https://api.au.intercom.io https://api.eu.intercom.io https://api-iam.intercom.io https://api-iam.eu.intercom.io https://api-iam.au.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://production.plaid.com/ wss://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io wss://nexus-websocket-b.intercom.io https://nexus-europe-websocket.intercom.io wss://nexus-europe-websocket.intercom.io https://nexus-australia-websocket.intercom.io wss://nexus-australia-websocket.intercom.io https://uploads.intercomcdn.com https://uploads.intercomcdn.eu https://uploads.au.intercomcdn.com https://uploads.intercomusercontent.com https://ingest.sentry.io https://*.ingest.sentry.io data: blob:; manifest-src 'self'; base-uri 'none'; form-action 'self' https://intercom.help https://api-iam.intercom.io https://api-iam.eu.intercom.io https://api-iam.au.intercom.io; media-src 'self' https://js.intercomcdn.com; worker-src 'self' blob: data:;
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
fullscreen=self, geolocation=self, camera=self, microphone=self, gyroscope=(), payment=(), autoplay=()
Recommendations
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dev2.app.gaviti.com
dev3.app.gaviti.com
www.adroitbureau.com
ai-mapper.com
www.akokomarket.com
www.aminebouarfa.com
anaakun.com
applingo.net
www.applingo.net
atulyabhinav.com
www.axioniclabs.ai
www.aymens.pk
www.baacinnova2.com
www.beyondnative.in
brfitnessdev.biharcoder.com
binbuddy.id
souqify.biqpod.com
www.bobcampbellpainting.com
pro.brixy.io
www.budgepro.com
chahatsweets.com
clauxchavarro.com
estimate.merck.insand.co.kr
www.ai-world.co.kr
staging.crm.warrix.co.th
ourcalifonia.villagecalifonia.co.tz
app.codict.es
antika.com.mk
portal.corvustid.com
coursewagon.live
sodarush-orders.crispnow.com
daham.dev
dantiapp.com
datinginfluencer.com
www.deigeo.com.mx
www.edpal.app
admin-portal.develop.eduling.org
eduvident.com
exeno.elxa.io
euroapp.pl
ezpz.my
depomed.farmedsebina.com
smart.fashionsuite.com
www.fvc.com
beta.getmubarak.com
gokulraja.com
habloespanol.gr
www.hifitness.app
www.highteacadeaubon.nl
icreateapp.tech
iidokoro.com
app.indomela.com
integratepush.com
slp.intrinsicskyline.com
business.itsltd.online
ms.ixy.sk
knopfloch.li
www.kokkelaar.nl
brainmonitor.konta.tech
cotation-qualif.leaseway.fr
www.lemonaticompany.com
loopsfx.com
plt.ltl-xpo.com
mangla.site
app.matchymatchyapp.com
mistergreenlease.co.uk
mjcal.app
app.myadsdashboard.com
www.bvsolar.net.br
www.newsite.nextlevelstudio.com.mx
greenbuttoncsrqa.nspower.ca
okinvent.net
market.orai.io
www.pcb.click
budget-fence-company.preview.prosmeethomes.com
pwrpln.hu
www.ravichaudhary.ca
business.sellox.app
simplassur.app
feasibility.skywire.co.za
www.sonimathsclasses.com
sowetostyleclothingstore.co.za
spacce.io
a.spintly.com
sportsforall.kr
stakemasters.pro
app.statscentral.co
www.sttrika.com
www.the100words.com
dev-app.tripswithbenefits.com
qoutes.uelstudios.de
aucklandcloud2.ufg.co.nz
varisingh.com
vssp.venzotechnologies.com
www.vicoustic.co.uk
visionfronts.com
vpphotography.in
zakat.today
www.zone-ai.org
stagex.zykain.com
Other domains in certificate