Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=propexso.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 06, 2025
Valid Until
January 04, 2026
54 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
55:8E:6D:91:9F:12:F0:70:36:E0:5C:64:49:68:B1:47:9F:2D:E6:E9:7F:E9:5B:06:B4:54:66:F6:D5:82:4F:40
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ledu.mx
www.ambushsilverfctry.io
www.amoriodi.xyz
kebabsgrill.asap2go.com
mre.test.blackfin.tools
bscf.ge
citrol.net
cloudseven.com.co
channel.co.ke
cobind.in
support.cyone.app
www.darkmode.ph
deeplink-oni-test.com
app.dentalpockets.com
www.divriots.com
api.efficientvineyard.com
entrylevelsoftwarejobs.com
docs.exportsdk.com
www.fefogarcia.com
dev.fooqoo56.com
delloee-staging-ideacloud.forgedx.com
www.formsey.com
fromdust.studio
new.fullinpartners.com
guenay.dev
hayoweb.info
www.houseofswitch.com
www.iiemindia.com
iontrack.me
www.irontech.cl
coppertone-demo.jnv.dev
proteus.jtcarlos.com
eu.app.konch.ai
link.tuby.laywagif.com
loftyapps.com
logicaljupiter.com
michael.manoussakis.com
mappu.cl
www.marshallkapfudza.com
meteovistabella.es
www.mindwing.dev
mu-kappa-lambda.org
interviews.nablasol.com
nimble-fi.com
petguide.eu
propexso.com
www.qaml.net
remottely.com
staging-auth.risingteam.com
rophem.com
rour.company
admin.rutasdenico.com
www.ryantanen.com
swap.safufrog.com
robotics.salemacademy.com
samueladdis.com
www.shannontbowers.com
links.shuttlers.africa
l.siilo.com
auth.sliksafe.com
control.solorestoran.com
sparkle-selfcare.app
www.sparklybot.com
www.sparrowhawkaus.com
app.spplpvcfilms.com
tools.stablx.com
www.stakingsteuer.de
console.storeforminecraft.com
support.storeforminecraft.com
sudharshanahospital.com
sumanbasnet.com
demo.sunmooncloud.com
wing.sunmooncloud.com
sunnydayscoffee.com
swapnilchauhan.com
swarovski-ar.com
sweetconnectmm.com
www.sweetconnectmm.com
studio.swexcode.com
onboarding.syscops.dev
cms.takemyyacht.com
vbstat.talktoteam.com
admin.talsho.com
admin.tapnotion.com
taskecho.com
www.tasksboard.com
tatarahomeimprovement.com
taviewear.com
tax-ledger.com
tcfads.com
www.tcfads.com
tcgroyale.com
dev.trivia.dashboard.scouts.tesuji.io
www.tilisektori.fi
timonfranke.com
tommykim.me
tripletise.be
turkernator.com
cms.victoryrx.com
www.williamwheelerworkshop.com
Other domains in certificate