Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=pos.soltechcorp.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 19, 2025
Valid Until
February 17, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
38:D7:E6:B6:75:06:40:6E:9C:26:06:C6:64:65:F7:99:8C:FF:77:45:0E:EF:BA:9C:5C:B8:75:65:D9:0B:92:5B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
kindaichikyoju.com
v2.marketing-insights.additive-apps.eu
www.algousaco.com
openapi.schema.alumio.com
user.schema.alumio.com
brokers.asruw.com
bestwindeals.com
www.blackdogearthmoving.com.au
web.camy.cam
www.cems.app
signin.sandbox.chefiq.com
go.cissa.org.au
hahnaudio.co.kr
midniight.co.kr
coastalfresh.in
lyworkshop.com.hk
www.greenmark.com.sg
payments.csjpr.org
davidv.tech
consumer-frontend.staging.st-gallen.delcom.nl
derbytronics.com
sib6.dicoding.com
sssp.disign.tv
drinkingdojo.com
www.earthimpact.me
app.ekbolove.dk
encuesta.feedback.elhadigital.com
www.emcev.ru
dev-fireauth.ezcast.com
poetry.facundoleites.com
www.fidosystem.it
finalheineken.com
mcs.geoanalytics.group
app.getchatrat.com
staging.dorcas.gms.sh
whitelabel.hemisphere.digital
frigg.henther.no
my.hipaamate.com
www.hormigos.com
htht.jp
indiatoday.link
app.ipeiluminacao.com.br
www.iretiolafoundation.com
jacobdong.com
cyphr.jamieadkins.co.uk
www.jargo.net
www.karshniashramramanretimahaban.org
katakumuri.com
kathytzhou.com
bonfire.keel-lab.com
keithchurchill.net
kendalls.com
www.kpc-cpa.com
netflix.kyleboudewyn.com
lamonacream.com
www.langarica.me
www.larry-eby.com
partner.latpay.net
leadshousemedia.com
balldash.learnify.pw
lillawingendorf.hu
link.lovecastapp.com
luiskr.com
www.malcolmfoster.net
customer.meditech.vn
lojistas.mercadeiro.com.br
miiou.com
admin.hml.minharota.com.br
dashboard.moonee.io
mtc.cc
muebleriacroma.com
beta.empresa.neatpagos.com
application.neurowaste.com
pb-gt.stage.openkind.me
apps.pacificrimgc.net
links.picks.com.br
www.polyservicos.com.br
previsora.pe
psychebot.pro
marketing.qfix.ai
dl.ream-movie.com
hdt.rflex.io
gympass.rootd.io
ruichen.ca
www.senzliving.nl
app.serviciosmanuelmalagon.com
lnk.shals.in
dev.shopphoneapp.com
www.sivakasisendhurvelancrackers.com
pos.soltechcorp.com
www.sprel.pro
app.swhag.co
www.talonai.lt
tiarama.site
www.tomhermann.org
www.unimersegroup.com
www.w3lock.io
installations.app.wall-box.com
www.webvisuals.in
lisa.office.yardzen.com
Other domains in certificate