Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.fitunified.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 16, 2025
Valid Until
March 16, 2026
76 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
44:B5:6C:C9:8E:3F:1B:A2:C3:0D:D4:B2:52:2F:A0:30:E4:7C:88:91:77:D8:8D:6E:7D:80:B6:EA:E6:FA:EB:28
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
markedthis.com
00janet.com
aarcleaningservice.com
aecharts.com
agimexconsultancy.com
ai2health.fit
aikapeili.com
www.aikapeili.com
arthachain.com
atihmam.com
autosurvey.app
www.baldora.org
admin.beeverso.org
demos.beeverso.org
qa-student.beeverso.org
qa.beeverso.org
qas.beltx.app
biodata.sg
www.biodata.sg
boissycestvous.fr
www.boissycestvous.fr
api.cloudlast.it
enterpuneet.co.in
www.enterpuneet.co.in
diet.softx.com.tr
conversationalweb.com
www.conversationalweb.com
soho.dataprop.cl
www.davidleshem.com
davidtemkin.com
dgloamingnest.com
checkout.digigoat.app
staging.dvrinvest.in
e46-konkurs.pl
homecraftstudio.easyapp.co
portal.eduparo.de
app.eduzzy.com.br
auth.eiga-search.video
eight8.app
enviroappsinc.com
expertmsk.ai
www.expertmsk.ai
www.fenya.cfd
www.fitunified.com
flossaluto.store
gold.flossaluto.store
www.founder-cliffnotes.com
particles.fuadchonora.com
apps.grouplinkone.com
dev.staff.guildliving.com
haniradinstudio.com
happysacksrubbishremoval.co.uk
hashop.online
hearttest.xyz
ilmilan.com
integrated.studio
www.josianemorinville.ca
justinterval.app
utm.reform.kharkiv.ua
www.kikstartmarketing.com
getado.lamarque.tech
admin.qa.mca.leanera.work
jnj-77242113.legit.health
loondit.com
louyi.autos
www.louyi.autos
loyaltyexhibits.com
www.mapmyikigai.com
maroscastudio.pt
v2.members-here.kr
gad.mpguv.in
paths.myplayer.io
naitmix.com
www.notiflux.cloud
path-ethics.com
www.prabhashankar.in
barchive.qbitcore.com
www.rajuvisuals.com
www.rajuvisuals.in
renovation-valenciennes-rk.fr
rinvitednow.icu
rozgarspot.com
www.sambalai.com
sayanmandal.in
www.softinterns.com
stickerworld.shop
www.stickerworld.shop
encargado.tecnocommzt.com
teyok.org
www.thewat.com
timesdrc.com
pinot.tintum.app
tofro.global
tropicosta.co
virtualwebca.com
www.xeweulzone.com
xeweulzone.com
yeishacollecttions.com
yourorbitai.com
btcheck2.znoj.cz
Other domains in certificate