Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=ledesignteam.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 03, 2025
Valid Until
January 01, 2026
49 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8A:B5:E6:1E:78:78:95:25:92:DB:05:76:BA:83:87:84:4D:94:FC:F7:45:E0:02:D0:F6:93:EB:6D:A0:FA:59:E8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ieepl.in
hom-modular-config.3dcloud.io
alefesouza.com.br
www.aliennew.com
link.ana.care
www.anilselvi.com
www.berssain.com
bkrevansch.se
app.canlidoviz.com
www.capitalsocial.com.ar
nyanya-rocket.carameldunes.fr
www.management.casalisa.co
www.cnsprojects.com.au
mobile-pos.pdmuliasari.co.id
serikspor.com.tr
aid-student.com.ua
www.cubostecnologia.com
cusa.io
datatechsimplified.dev
www.dimensaodrone.com.br
www.doo.id
platform.drbigblue.com
lendlease-workplace-uk.equiem.mobi
connect.prod.evenito.dev
handymanbran.co.uk
app.helloglu.com
ivankana.com
www.jangua.com
joelwalker.co.uk
ptracker.kakaojp.com
app.kinyamalogistics.com
mazars.kudosone.com
www.lbh-portableagent.com
ledesignteam.com
www.leoyzhang.com
line.linetweet.com
cms-dev.lovb.com
www.lsxvip.com
www.mabe-tinyi.co.za
online.margeguzellik.com
marklynch.ca
martinmendoza.ca
www.massagenorthscottsdale.com
maybazar.in
monsterhunter.gg
mpo838.id
nawalgroup.in
beta.ninjasalary.com
www.nohe.dev
ocbeachwax.com
app.occambox.com
oyarwanda.com
pansymade.net
pavetra.games
paymentbrains.com
links.pintobook.com
beelman.portal.plenadata.com
pointstart.io
admin.pp-capital.dk
pragmatic555.id
prakandapparels.com
www.principles.jp
tools.quantarock.in
www.rentersland.com
rubrictechnologies.com
app.samyata.com
sharelly.com
sis-bau.com
www.sis-bau.com
www.sis-bau.info
sis-sanierung.de
sis-sanierung.info
sisbau.com
www.sisbau.com
sisnordbau.info
www.sisnordbau.info
www.sjo888.com
www.solucoesparalocacao.com.br
client-dev.sophus.com.au
t10nex.com
short.teknospesial.com
tascal.templat.dev
client-staging.thebrighttutors.com.au
themightyprompt.com
www.theversatileexpress.com
trailstoriches.ca
troyeefest.in
www.tychetimber.com
ubiqs.cr
www.veck.com.au
vertcoteau.com
www.victorysofia.com
chart.videalpha.com
demo.waterplanten.nu
demo.wedecide.com
members.wemoscooter.com
emrsnationalmeet.whatsscore.com
www.yogendrasingh.in
dev.bookstore.zacharyjbaldwin.com
ziczic.com
Other domains in certificate