Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=sistema.neowifi.mx
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 25, 2025
Valid Until
December 24, 2025
41 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
27:10:76:4A:46:33:86:C8:7E:FA:C2:2E:BC:CF:40:AB:21:A4:A0:FD:2D:40:7B:A8:A3:BE:5F:A8:E3:18:8A:4C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
nskyc.com
www.3db.dev
dpm.nurulfikri.ac.id
keneya.afrivac.org
www.ambient.alaphd.com
bead16.alignitgames.com
alvish.in
www.andreacormano.it
www.axisroot-holdings.com
baxterdads.com
www.brandoncb.com
cmta.app
admin.layco.co.kr
forme-parent.haiidev.co.kr
codifide.com
collage.app
dash.cn.craftsake.com
zadania.derda.site
link.dpoint.vn
www.dsrlglobal.com
aqua.dukatrack.com
edumancer.com
startupgrind.eharis.com
blog.familybringsjoy.com
anniversary.foxcroft.dev
nohara.franshiromedia.com
app.gerard-bertrand.com
test.getshoutout.com
dlk.girls2-fc.jp
grasselliconsults.it
hansknapp.art
exam.ibisacademy.in
manage.ibisacademy.in
ielnexus.com
app.inifaisal.id
insideuni.de
aka.jongwoo.dev
jornpipop.com
admin.katferien.ch
www.kvi2.se
lancerinne.com
www.legatolab.am
eu.my.linkcard.app
www.linkinfaith.com
meishi.livestand.jp
wlportal.loyaltypro.co.uk
travis.webhooks.m4m.io
madcongelados.com.br
www.makrmaniac.com
app.maxprofitness.com
megadosetheoutsiderartist.com
merlocode.com
nebular.methvin.dev
www.mezmerikgroup.com
qa.mymedstore.in
sistema.neowifi.mx
network-centrality.com
www.notebl.com
ai.ojas-labs.com
semtribe.opendata.report
www.semtribe.opendata.report
admin.origamiwash.com
www.promotorfreelance.com
www.qpqp.jp
quickstarts.net
redfoxcontractor.com
b2b.relobase.com
www.forecast.rengydevelopment.com
auth.revisionme.com
vizion.salesvizion.com
www.seigospace.com
selfpay.care
sellmyhouse.co.nz
app.sermep.com.pe
setfoundation.ca
www.sgj-gems.com
www.simonesesana.com
www.slavparadise.com
smilecat.dev
sunshineandsweets.com
imd.sylva.ac
nimble.talhahpatelia.com
innovemind.taximet.com
s.teller.jp
money.thomasbutler.com
triodesk.in
tuneprefs.com
www.turdsicle.com
www.undarkpixel.com
admin.uricall-dev.com
easygo-core.viteusa.com
chat.vklidu.ai
bdbe-table.waiterpro.com
webtech-systems.com
whatstarget.com
invite.wither.app
workandtimemanager.com
messenger.yellowpages.com.au
yummyapp.eu
certifications.zymdev.com
Other domains in certificate