Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=xsfashion.buzz
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 08, 2026
Valid Until
July 07, 2026
61 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5B:69:F6:3A:97:F7:7F:05:35:FF:51:8E:AE:8E:76:8B:53:DD:87:7A:B5:49:3D:E5:12:FF:4B:92:FD:BA:7A:26
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
kwoncho.com
adaptiveaiservices.com
malaysia-newsletter.ahk.de
www.airsideconsult.com.br
andromedajapan.com
beanibase.com
beeliti.com
bpx.co.kr
castlewars.lat
staging.coaconcrete.ca
codethue.io.vn
www.contempo.gr
staging.app.contract-as-code.com
circle.crissword.com
datasportpro.com
decoradesign.app
dgsol.digital
www.dia9.app
dataloggers.digit.pk
digit.pk
waslai.digit.pk
www.doc2.pet
downlowwear.com
www.downlowwear.com
www.ecoglamping.it
app.equino.lat
sea.eumplus.kr
familiku.id
www.fawan.space
gdl5.foodle.su
funerarialider.com
genui.ne
nursecall.gets.cloud
www.go-conic.com
app.gotspotlight.com
govjobsinfo.online
roi.grailplan.com
www.grigaci.com
havusalmi.fi
www.indalorobotics.com
irgretreat.com
di-yu-you-shen-mo-bu-hao.jinda.shop
admin.qa.jumaentregas.com.br
www.k-uplearning.com
auth.kawaiiworld.com
displayer.kinderlabs.kr
kuruvillageorge.com
app.bpst.ligoeproject.com
www.lucky-tstore.kr
loohuis.nutt.test.m4m.io
mafazatulhayat.com
dashboard.maka-bane.be
www.maxxsol.com
miradbuilders.com
www.miscalculadoras.com.mx
gold-radar.momoyu.lol
n-log.io.kr
www.newwavy.kr
nialfamilyfarang.online
www.northernriverlandscaping.com
www.nurtura-tech.com
officina-del-suono.it
opentum.com.tr
palabra1049fm.com
order.peakpancakes.me
develop.piletivahetus.ee
app.planiat.com
alveo.prayser.com
licensing.production.pro
profilebio.me
psdbro.com
readybench.live
coralspawning.reef-scuba.org
facility2.rehasuite.com
facility3.rehasuite.com
hub.rownation.co
sipentol.rsudklu.site
safelysolutions.work
scx-calculator.space
semea.app
www.semea.app
shekharchavan.com
eoi-stg.sipldev.com
sjghaul.lat
www.sjghaul.lat
smartlitic.com
check.soundflow.media
supergain.top
ai.svenskesg.se
admin.volks.teuestoque.com.br
tigrao.app.br
lightbane.tragedys.garden
rich.tragedys.garden
transmarko.net
app.warkeo.com
www.wesolv-it.com
wjzhtransit.surf
www.wjzhtransit.surf
www.xsfashion.buzz
xsfashion.buzz
Other domains in certificate