Open
Cached
·
just now
80/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=esgthailand.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
February 13, 2026
Valid Until
May 14, 2026
79 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D5:13:57:E7:EA:A7:AE:C9:99:08:C2:E5:A9:97:1F:56:77:44:2B:E6:C0:02:E4:D6:51:1D:FC:AE:C9:C7:04:E8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
Wildcard CAs
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • You have authorized 6 CAs - consider limiting to only the CAs you actively use
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
Subject Alternative Names
100 domains
qrkyapp.com
ammarbenyasser.com
artcoolique.com
www.b2housingsolutions.co.uk
babv.cr
docs.backslashlinux.com
tagin.beapnow.com
bich-bauelemente.de
www.bussolaone.com
it.caldera-studios.com
careerails.ai
teachers.chatwithsteiner.de
sante.clau.io
admin.daddymacsports.com
dashtube.ai
drilora.com
edwardnoe.com
eksssnasseggon.org
esgthailand.com
link.evolist.app
portal.ezclo.net
fit2hire.app
www.flairboat.com
flexteam.in
sheets.forbidden-sheets.com
go.getwombat.io
griffinfoster.dev
cultural-platform-uberlandia.henrique-silverio.com
www.hobup.com
link.hoypido.com
demo4.immodigi.app
app.investify.africa
mrjulus.is-a.dev
alz.jodacare.com
thomalex-sdk.joinsherpa.io
www.jurisopus.com
kinduvo.app
www.la-tradition.fr
www.ladder-league.com
www.leftenanttv.com
cn.lettopia.com
api-staging.linkpadreview.com
ccarect.gatewai.listfunding.com
beta.api.masshealth.me
www.mavoffer.com
mdaware.io
mecimo.jp
mettle-studio.co.uk
mustangdentistry.com
openapp.mylibribooks.com
liverpool-onsite.mymoons.mx
myprofessionalaccountants.co.za
mytolimited.com
nh-react-boilerplate.nata.dev
www.neatgas.app
nebusystems.com
nerdbrewtech.com
www.nishisconsulting.com
nurseid.io
dashboard.omnisaude.app
outstationcars.com
www.panoramas.info
business.pathintech.com
perks.ltd
i.phoneduo.app
p.pkp.dev
proxima-guinee.com
api.purplemovies.com
quiosquesirioalmoco.com.br
raffloor.am
app.recofrend.com
www.rentvsbuycalculator.app
rexarmedia.com
rikexim.com
robert-roehlinger.de
scientektranslations.com
www.scientektranslations.com
shuudan.com
www.sofilive.com
sophiaraw.com
beaapi.spencerlyon.com
spyfall.win
staysinsakleshpur.com
supremeindiaassociates.com
www.swapmeals.nl
thejoemarx.com
tingkart.com
tudoetech.com.br
final.umanity.app
upharmony.com
staging.vesto.io
vision-trade.com
vixxen.chat
waterwell.info
weblogawards.com
weblowe.com
westernstakeswallets.com
work2life.com
www.zerofy.energy
corp.zeromint.com
Other domains in certificate