Open
Cached
·
just now
88/100
SECURITY SCORE
Certificate Information
Subject
CN=imperva.com
Issuer
C=BE, O=GlobalSign nv-sa, CN=GlobalSign Atlas R3 DV TLS CA 2025 Q4
Valid From
November 13, 2025
Valid Until
May 12, 2026
162 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C2:F2:32:8F:39:42:25:66:9B:49:97:6F:E2:63:89:6D:34:10:49:4E:58:10:7A:DC:83:59:3E:37:31:9D:56:81
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=31536000;includeSubDomains
Content-Security-Policy
Basic
default-src; script-src; object-src; +3 more
default-src 'self' https://app.powerbi.com/; script-src 'self' 'unsafe-eval' https://d1abnmaruszihs.cloudfront.net/ 'unsafe-inline' https://www.google-analytics.com/analytics.js; object-src 'self'; style-src 'unsafe-inline' https://d1abnmaruszihs.cloudfront.net/; img-src 'self' https://d1abnmaruszihs.cloudfront.net/ http: https: data: blob:; font-src https://d1abnmaruszihs.cloudfront.net/
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
151 domains
*.aw.navigatetax.pwc.co.in
einvoice.aw.navigatetax.pwc.co.in
g2.einvoice.aw.navigatetax.pwc.co.in
*.bestoption.com.mx
*.bordroportal.pwc.com.tr
*.okul.pwc.com.tr
pwc.com.uy
*.pwc.com.uy
*.ctd-poc.com
*.eftpwc.com
ideationcenter.com
www.ideationcenter.com
imperva.com
lbhlaw.com.br
www.lbhlaw.com.br
mazda.originanalysis.com
*.originanalysis.com
mazda.originsolicitation.com
*.originsolicitation.com
transparency-reporting-portal.pfizer.com
pwc-spark.com
www.pwc-spark.com
*.pwc.be
*.pwc.co.nz
bo.clientspaces.pwc.co.uk
bo.deals.clientspaces.pwc.co.uk
bo.stg-deals.clientspaces.pwc.co.uk
deals.clientspaces.pwc.co.uk
*.engagelive.pwc.co.uk
*.flexibleresourceconnect.pwc.co.uk
*.protect.pwc.co.uk
pwc.co.uk
*.pwc.co.uk
*.stage.pwc.co.uk
*.staging.pwc.co.uk
stg-deals.clientspaces.pwc.co.uk
aperture.strategyand.pwc.com
api.dev.simplifiedsolution17.ca.pwc.com
api.insightsofficer.pwc.com
api.performance.modeledge.pwc.com
api.plan.proedge.pwc.com
api.qa.projectpoplar.pwc.com
api.simplifiedsolution17.ca.pwc.com
api.staging.projectpoplar.pwc.com
*.api.stg.ca.pwc.com
api.stg.simplifiedsolution17.ca.pwc.com
*.app.accesscheck.pwc.com
apps.mymobilityhq-prod2.pwc.com
apps.mymobilityhq-qa.pwc.com
apps.mymobilityhq-stage.pwc.com
apps.mymobilityhq-test2.pwc.com
*.boardingpass.pwc.com
*.ca.pwc.com
capabilitiestool.strategyand.pwc.com
citibank.gstcheck.pwc.com
*.co.pwc.com
compliance.testes.cee.pwc.com
*.connect-qa2.pwc.com
*.cz.pwc.com
demo.mdm.pwc.com
demo.statelifecycletool.pwc.com
dev.app.insightsofficer.pwc.com
dev.astro-demo.pwc.com
*.digitalmaker-ca.pwc.com
dpotool.compliance.testes.cee.pwc.com
*.ei.pwc.com
entsearch.digitalmaker-ca.pwc.com
*.eu-sandbox.pwc.com
fransuite.pwc.com
hook-jx.plan.proedge.pwc.com
*.hu.pwc.com
*.id.pwc.com
*.insights.pwc.com
internal-dashboard.insightsofficer.pwc.com
*.internal.pwc.com
ist.pwc.com
*.ist.pwc.com
*.itxgbl.pwc.com
kibana-jx.plan.proedge.pwc.com
*.le.meerkat.hosting.pwc.com
*.librarygenerator.internal.pwc.com
*.librarygenerator.stage.internal.pwc.com
login.digitalmaker-ca.pwc.com
master.digitalmaker-ca.pwc.com
mdm.pwc.com
*.mer.pwc.com
*.mer.qnos.pwc.com
*.perf.projectslate.pwc.com
*.performplus.pwc.com
portal.insightsofficer.pwc.com
projectcedar.pwc.com
projectluna.pwc.com
projectpoplar.pwc.com
projectzond.pwc.com
*.proposal.pwc.com
providerfootprintrationalization.strategyand.pwc.com
pwc.com
*.pwc.com
*.qa.connectedriskengine.pwc.com
qa.connectedsolutions.pwc.com
qa.projectpoplar.pwc.com
*.qa.pwc.com
*.riskproof.pwc.com
*.share.proedge.pwc.com
*.smartbudget.pwc.com
*.smarttaxsuite.pwc.com
stage.connectedsolutions.pwc.com
*.stg-smartbudget.pwc.com
strategyand.pwc.com
*.strategyand.pwc.com
suntrust.gstcheck.pwc.com
test.app.insightsofficer.pwc.com
*.test.projectaspen.pwc.com
*.tools.ist.pwc.com
uat.app.insightsofficer.pwc.com
*.uat.pwc.com
valuecreationaccelerator.strategyand.pwc.com
*.viewpoint.pwc.com
west-cloud.connect-aura.pwc.com
west-cloud.connect-hotfix.pwc.com
west-cloud.connect-qacurrent.pwc.com
www.inform.pwc.com
*.za.pwc.com
pwc.com.ar
*.pwc.com.ar
auth.contacttracing.pwc.com.au
*.cft.pwc.com.au
*.digitalpulse.pwc.com.au
*.apps.pwc.com.br
*.pwc.cz
privatecapitalengine.pwc.de
*.data-factory-ai-invoice.pwc.dk
*.pwc.fr
*.complianceinsights.pwc.in
*.contractinsights.pwc.in
*.pwc.it
*.stg.docsweb.pwc.it
lms.pwcacademy-me.com
pwcacademy-me.com
www.pwcacademy-me.com
*.pwcdigitallab.com
*.pwcmalta.com
pwcnexnav.ca
stg.pwcnexnav.ca
temp.pwcnexnav.ca
www.pwcnexnav.ca
*.samil.com
simulator-orgeffectiveness.com
www.simulator-orgeffectiveness.com
thenewequation.net
*.thenewequation.net
Other domains in certificate