Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=admin.showdigi.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 23, 2025
Valid Until
December 22, 2025
31 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
46:6D:23:23:A0:25:BE:B4:D3:5C:62:7C:E3:50:38:99:14:2A:89:BB:4D:F1:F9:44:31:A6:44:22:24:0B:E4:39
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
focusokr.com
openedx.42cc.co
crm.agsafebc.ca
alone.games
www.alphamtcorp.com
interviews.auctusiq.com
www.augusthospitality.co
app.azadsandesh.com
dash.bash.social
jooja.batamx.co
flamengo-hml.bepass.com.br
biltapp.link
ibu-test.birnensoft.at
bookaround.app
www.bork.dev
calendar.studio
clubajedrezash.cl
nkadonefcs.grobox.co.ke
mister.codeugarte.com
www.darmaastawan.com
www.dekateindia.com
www.designmeaportrait.com
diveo.io
elow.dylim.dev
manage.ecosystem.life
calculator.reactjs.edlin.app
links.engzketab.com
etamidlands.co.uk
goguardiantest.everyspacehq.com
faspgt.com
ico.forgottenchain.com
maquette.foxar.fr
www.freeriderjumps.com
www.fullcommi-diet.com
www.futurelinkpartners.com
hackextend.com
hallequityapp.com
aquos.ikuzaki.jp
imageoptics.com
app.dev2.inreach.io
flutter.intemotech.com
jmroval.com
admin.justspeakeasy.com
www.kaynarcaoptik.com
kbeautylink.com
keylane.app
www.kllsoft.com
www.koruke.com
dashboard.laivon.com
ldequadra.com
www.lrtag.com
manoamica.it
www.martinade.com
mb-4.com
www.menuzone.ca
msgrouprentals.com
myworship.co.za
www.neuvideo.io
ngentours.com
nikita-enterprises.com
bank.oakwoodfriends.org
okaedu.com
link.okala.com
okdrivemusic.com
links.oliwheatley.com
pdfelenty.com
daily-admin-qc.phongvu.vn
pizzaprinciple.com
www.pontotvpublicidade.com.br
pranavbhu.com
pranjalsinha.com
prodmmd.com
prompt-camps.com
mi10.racional.cl
rajansharmamohadi.com
rambling.dev
www.reliancetrenchless.com
robindeneef.com
rushmada.com
saas-labs.com
www.saas-labs.com
santramvatsya.in
remote.secretcityadventures.com
secure.travel
www.shareblad.com
admin.showdigi.com
margaritavillescratchgame.sqwadhq.com
stopthelie.org
www.stratascientific.com
app.tohotheater.jp
auth.trailimap.com
yc.useassured.com
vntrip.dev
vnyreddy.com
vojtechstefek.fun
voztraveller.com
dev.wandellint.nl
www.whym.tech
invite.zam.io
zytuny.com
Other domains in certificate