Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=ellumesolar.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 21, 2025
Valid Until
December 20, 2025
35 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B7:76:EF:A3:B9:BD:51:0D:6E:F0:68:9B:89:EB:F6:3F:A4:CD:9C:E9:1D:C9:AB:78:ED:ED:5D:09:9A:14:D8:9E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
numbers.sefir.dev
registro.7zero.gt
a-n-field.com
www.advancenameplate.com
aediax.com
angelluisguzman.com
www.artist.artsqft.com
ash.news
base64encoderdecoder.com
bifrost.earth
devagency.billullonex.com
dev.cloudfit-metrics.com
aeroglobe.com.pk
egedogan.com.tr
cosplay.fashion
creation.digital
crossdomtest.com
auth.ct-staging.com.au
www.curtcox.com
darkgps.com
www.deltarhosigma.org
designmeaportrait.com
www.digimogo.com
www.div25.com
wwv.divshot.com
www.dzz.me
eeqc.org.au
ellumesolar.com
www.erbacattiva.it
www.everystephurt.com
exitround.com
backoffice.fireview-webbase.com
flylombok.online
www.focuswithdot.com
fuzznpuff.com
shikshak.ggits.org
www.gogenesis.com.au
hair-plants.com
hashxstudio.com
hitunguntung.com
firebasedl.ibonia.mg
www.icbn.lk
www.instantagencytools.com
ixorastudio.com
jsensetech.io
jsx.software
auth.kc-softmax.com
kibbleapp.com
gokitchenweb.lanaco.com
lmnconsult.io
contratos.magic973.com
eatbkk4.mapleworkspace.com
portal.masjidpro.org
mayoresfuengirola.es
app.staging.medicalmotion.de
mindengage.net
minefalls.net
procredito-apply.money-phone.com
tech.nedre.id
app.nimbleanalysis.co
signin.app.nova-app.de
minitest.order.place
owlsandarrows.nl
new.palatineheating.com
pamblevinslaw.com
pasticciottolovers.it
dashboard.pneuma.care
app.pocketproverbs.com
zap.portocripto.io
app.prezcall.com
prodsandbox.com
profrontenddevelopers.com
readingbrix.com
www.risebakehousebiloela.com.au
risk-analysis-tool.com
watch.screencastify.com
staff.devz.skool.sg
app.spectacles.dev
stagingdarkhorseapp.com
studentsof.info
www.subsoloband.com
sudhas.in
szyiyu.site
a.tacit.plus
www.theihsanapp.com
thetake-off.com
tichyviolin.cz
tickbird.net
www.todaysmenufoodtruck.com
toperiscope.com
hni.tpmhqvn.com
block.unknownphone.com
arrive-sandbox.vendpark.io
verbater.com
www.dashboard.vespuccianalytics.com
vicdesign.me
www.visual2020.net
www.vrento.com.mx
wernecken.eu
yalito.me
Other domains in certificate