Open
Cached
·
1h ago
77/100
SECURITY SCORE
Certificate Information
Subject
CN=e.a1fx.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 22, 2025
Valid Until
December 21, 2025
39 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EA:FD:3C:35:6E:75:25:44:13:97:22:EB:63:32:02:29:4F:AC:25:DC:DC:D2:AC:36:77:D2:FA:CB:6D:BA:BF:F6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
qoftheday.co.uk
21dayschallengeapp.com
e.a1fx.com
www.aceyourtechinterview.com
adamforyou.com
aldealafuente.eu
www.anael-magicien.com
cobranza.aokitech.com.ar
crm.appjection.nl
arl.guide
app.askneo.io
attainservices.net
display.awqat.app
beepboop.tech
brandinghero.de
brew-api.brewfather.app
buzzaar.club
www.clembesso.com
app.clexx.ch
nexil.co.il
meet.columbia911.com
www.burakzaferyildirim.com.tr
cukurovalezzet.com
cursed-genes.com
danielimondo.com
www.darwinpet.com.br
ddalle.xyz
dinowords.com
www.dndrt.com
www.eatpussycafe.in
uat.checkin.foresthillschool.edu.kh
app360.fertili.com.br
finflow.dev
fortum.lv
api.goship.vn
blogs.gptfy.ai
haanaanzee2.nl
pzgame.haohows.com
s2-ngnzmqi8tjyegfapbmqvyrgf.hcrimaging.xyz
help4up.com
tmn.hobbysoft.su
app.jdiasconsultoria.imb.br
www.instinctsurveys.co.uk
cocheseguro1.inter.mx
www.isoms.co.za
supportadmin.jk9lab.com
jlefkoff.com
keyword.games
www.lantsea.net
static.linistitul.ro
www.lumoratoken.ai
www.manuel-schmidt.at
www.mariantspa.com
maz.email
mediationmattersnj.com
melt.is
mogflowts.com
morfosweb.com
www.nasssaletracking.com
instantlaundry.onroad.app
open-doors.app
billet.oplevelsescenternyvang.dk
www.panda-patrimoine.fr
app.phenix.finance
www.ponari.ca
primedry.com.br
produttoriluganegadimonza.it
publishtours.com
www.revenueship.com
www.roymelzer.nl
rstream.rocks
www.ruttl.com
admin.satipasala.org
schrall-eier.at
staging.admin.sellia.ai
www.shtanko.dev
www.sityourclassdown.com
www.slrsoft.com
lifeworks.snapmentor.no
spearheadsystems.co.uk
dev-admin.startuplogin.com
www.test2.stunlo.com
www.taylorclarksoftware.com
www.tegoo.mx
psalmody.tnmgroup.site
www.tommasobellini.it
prod.torq-comm.com
www.tractolavadomovi.com
www.uselabpensioen.nl
www.velobison.com
test.veridico.cl
www.verified-caller.com
apteekki.videoapteekki.fi
panel.vivetmarket.com
voteonlive.com
app.wakanda.community
support.webforyou.hu
clock-default-1.wiselywidgets.com
wostle.co
service.develop.wowworks.ru
Other domains in certificate