Open
Cached
·
just now
75/100
SECURITY SCORE
Certificate Information
Subject
CN=xbiologix.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 05, 2025
Valid Until
March 05, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
59:22:0D:CC:4E:E1:9E:B5:44:B9:62:7C:CD:3F:3C:B2:15:A6:49:94:59:8F:00:EA:6D:66:06:25:F5:89:A8:76
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
educo-ed.com
preussler.2na8.dev
6join.com
www.agnieszkajonik.art
darts.alpvax.com
www.alz.moe
amrv.dev
www.angelpenuelas.com
arrivo.ly
atrapalo.app
ad.ayaami.com
bethjarrett.ca
www.blooom.app
www.bnbflow.ai
cov.boothpilot.com
www.logistica.borigenbetzel.com.ar
www.bryceterhaar.com
butter-fi.com
www.cameratag.app
mansion-experience.cartier.com
www.cattleapp.co.za
chillwavedave.com
card.chefintlv.co.il
auth.dataplace.ai
www.diagonal-records.com
dirtbikeroundup.com
www.fainda.dylanpchiu.com
www.eco-rent.fr
ecore.pet
ssm.elsa.sg
bcn.emaps.one
jsatom.everytale.com
fi-erme.com
qa.finnovex.com
www.fishfacts.com
hellocse-dev.flitter.fr
www.footballaiquiz.com
www.ginacantono.com
gnatv.com
parejas.gongarce.io
www.haideraltahan.com
cumin-kyanite.harecord-dev.com
industrans.ca
ingenieriaysolucionesciviles.co
inovek.mx
itsvs.com.ar
izyapp.izytech.com
hkl-lm.jec-digital.com
www.jfguerrero.com
kindling.dev
tracker.kwanso.com
service.lamazda.ca
latinotravel.ch
play.livearcade.io
livemedia.space
services.marseguerra.fr
www.matheusrabelo.com.br
www.mba-consult.com
memorymatch.online
memphistigerscamps.com
getfamhotel.menuaddis.com
monopolysystems.com
www.mostawkwardgift.com
mzap.org
app.najafi.capital
cms.nexwellpower.com
app.nobul.cc
www.noda.law
notinourscene.com
sistem.notiva.dk
www.oguzhantuna.com
one-night.app
parthivmangukiya.com
app.paytogo.cz
piccolometrix.it
plailist.io
zaibatsu.pp.ua
punfoods.com
rachit.biz
marketingmaturity.randstadservices.com
arovoyages.recursyve.app
www.sagadash.com
smiletogetherindia.org
sojurn.com
staticregainband.com
12hss.summitgyms.com
www.tauxdechange.fr
theannex.com
www.thedailygainapps.com
cdn.tig.as
www.trdevents.no
www.tripledesign.nl
aff.tripster.live
vahid-motta.com
m.y.voo.be
vrl-labs.com
referral.wallapop.com
www.wellnessworldwideweb.com
medics-demo.wmatelesalud.com
xbiologix.com
Other domains in certificate