SSL Verification Bypassed
The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.
Reason:
Expired Certificate - the server's certificate has expired
Open
Cached
·
just now
62/100
SECURITY SCORE
Certificate Information
Subject
CN=www.lap-laser-cancer.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 18, 2025
Valid Until
July 17, 2025
Expired
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2C:62:5E:E8:D3:30:5F:FE:DD:0E:9E:1A:7D:51:A1:3D:1D:A6:CC:AE:F7:EB:EA:18:F6:BD:DF:96:54:37:77:D7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
findrapp.de
accnorthphoenix.org
user.acuizen.com
addix.meme
www.affect-ai.com
airglosoft.com
ardavansassani.com
argosdata.com
dev.app.athleteium.com
autumncompass.com
baldovinphotography.com
beauandbadger.com
bullmooninc.com
link.cardeo.com
formulario-web-cambios-y-devoluciones-dev.cc-irdigital.pe
auth.platzfinder.cc-n.dev
certificadotrust.com
group.chant.fan
fitbar.clau.io
beezi.co.il
protopie.codo.ai
cpblgame.tw
happy-birthday-bogdan.danlutsevich.online
jobs.date-fns.org
decideup.com
devopscatalysts.com
www.donovanallen.dev
develop.electriphi.dev
www.ellenblaine.dev
www.emiils.com
www.enqueued.app
kingscross.equiem.mobi
jsatom.everytale.uk
www.ezautobill.com
www.flipstorm.com
www.franrovi.com
i.freebie.app
futasaji.net
geredamotors.pe
gladiatorsg.com
globalreachretailers.com
www.growingcolor.co
careers.hiqo-solutions.com
auth.hoehensucht.de
unison-anthology.hudehisa.com
www.hungnguyen.dev
instashop.bio
isinc.jp
it117.info
jainsavar.com
justscout.app
kanastruk.com
kazaklimuhendislik.com
kingyoku2021.kojo-shin.com
mmnotes.kunruchcreations.com
www.lap-laser-cancer.com
movie.lexer.dev
pedidos.lidercamargo.com
action.staging.linkfive.io
millerpipecivil.com.au
sidekick.mlnb.org
auth.mythosmanager.com
nikkihall.me
e-learning.nixchallenge.nl
schema.njvisa.com
mathzombie.nonip.net
ogram.co
oliverdavies.me
beta.support.parkchamp.ca
pcb.click
www.personalabs.ai
pixieart.de
pokitqr.com
redditonaturale.org
ryanodonoghue.ca
sewsweetminkydesigns.app
immured.shaman.land
www.shanepa.me
shelleyeverett.co.uk
www.singinglessonsnewcastle.com
et-matches.skunk.dev
steadytrack.app
mvision.surveyresults.zip
www.tangenta.net
view.thieve.co
time-drops.com
www.trade-r.com
www.tryshopify.com
www.unconventional.company
www.voltz.io
ihg-egypt.vouchercart.com
link.waitly.com
whatsyourlevel.app
docs.winecode.app
admin.devmulti02.wowdesk.jp
www.xenote.io
yakagy.com
app.yearwego.com
yobee.au
app.yuyusystem.com
Other domains in certificate