Open
Cached
·
just now
78/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=www.smartnexus.ma
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
February 06, 2026
Valid Until
May 07, 2026
78 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DE:BF:84:79:7B:ED:A6:5B:23:D0:CB:04:E0:2D:C6:E6:31:0E:2E:3A:65:1B:86:09:EB:3B:2D:06:B7:9B:75:8C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*; +6 more
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
link.leximaster.com
abafazibengoma.co.za
test3.alteredbroadcast.com
demo-bino.appkitpro.com
www.arcusblender.org
www.akarhukuk.av.tr
www.avtools.co.uk
beebase.at
www.beezhive.ca
app.bkbn.com
buildology.in
link.buzzy.buzz
bytokio.ar
chinchoo.xyz
www.atifelectrician.co.in
brasaria.com.pt
bxm.com.sg
cliente.consumerlaw.com
sandbagger.critical-technology.com
cultprotest.me
www.dabraka.cz
dahaleez.org
ipe-tracker.darth-coder.com
www.decisionmap.org
regram.dephony.com
devzodiac.in
hub.dinorace.io
www.fabienpamphile.com
share.farmrise.com
invite.fitillion.com
auth.fitnessyard.com
catalog.flowy.be
analytics.floxi.co
wasmdemo.flutter.wtf
freshfrostfoods.com
admin.futuralabs.rocks
signal.gohihome.com
gordonbelray.com
heatsmartltd.com
huesli.org
humine.humannits.com.br
victory.impactwrap.com
inrestaurant.co
www.integraldms.com
edc.jorgesalgado.dev
jwmla.com
test.kitadake.net
www.kovanlabs.com
mlt-dev.da.letsdive.io
www.mandmmotorsale.co.uk
www.marcusmalmberg.se
maslo.io
links.mesh-app.com
www.milomlaw.com
mindscriber.com
force-update.mobile-glucometer.com
mixpanel.mockingbird.studio
www.mtg.fail
staging-yinthway.myancare.org
stgsso.myforex.com
www.navadhiti.com
staging.nearlywedded.com
www.network-centrality.com
nextercare.it
pmi.nokno.co
tsh.nokno.co
novainvites.com
app.odyssee.jp
ui-preview-stage.okaythis.com
of4wd.ondagoapp.com
oneboard.oneclass.co
onelinkforall.com
esriti.pasdidik.com
plomerosantioquia.com.co
www.przybynowparafia.pl
quentindubois.fr
rechtsanwaltskanzlei-vietoris.de
www.retrospective.pro
www.rizalspades.com
sfast.es
visorservicios.sificloud.com
tictactoe.sigmajove.com
www.smartnexus.ma
www.sophosautomation.com
www.stubb.co
www.suspecttech.com
collection.sweep.ie
www.tame-app.com
app.tellorium.de
www.telltouch.au
www.thebarati.com
theyakka.com
tiagox.com
www.trabeepocket.com
painel.sua-placa.truuwp.trusom.com
games.unicornaxe.com
licenses.visioncompliance.ch
qa.app.wink.financial
events.dev.yoop.app
alpha.zealync.app
Other domains in certificate