SSL Certificate Analysis for ruxtontechnology.com - Security Grade & TLS Configuration

Open Cached · just now

77/100 SECURITY SCORE

Certificate Information

Subject

CN=malawistore.com

Issuer

C=US, O=Google Trust Services, CN=WR3

Valid From

December 10, 2025

Valid Until

March 10, 2026 88 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

FE:BD:13:83:E3:FD:49:40:C6:43:B4:1E:24:A8:70:32:D4:5A:1E:87:C4:0E:E6:1C:02:AE:A6:7D:A6:FC:2E:EA

Alternative Names

100 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31556926

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains

ruxtontechnology.com

Other domains in certificate

www.abyssiniafinancial.com

auth.activek9.org

worktracker.albretsen.com

an01.net

app.arcstory.ai

www.armenta.dev

fieldtechs.avolta.app

shakertin.bitspatter.com

blueteam.app

www.briangi.com

delapp.bringjal.com

dev.bsp.online

click2kick.com

cloq.app

www.colorbot.io

compraai.app

www.consorprop.com

vietnam-demo.edlin.app

mis.foresthillschool.edu.kh

analytics.edvolution.io

shop.elpisverse.com

same-game.html5.emallstudio.com

www.ericaviolin.com

excelalumni.com

exspressocafe.com

app.flatearth.university

auth.fractal.news

www.frenlydogs.com

fsyay.co.uk

stagelinks.futureretail.tech

gauravkumarsingh.com

lite-share.getwimo.com

gomeandering.com

count.gulfpro.io

member.hamer4x4.com

hannaljungsten.se

hdyadu.com

dev.hire10x.ai

www.imajuku.tech

www.iseewhatudid.com

links.iupki.com

healthadm.hml.simulador.izii.io

phocus.jasonmanners.com

www.jleap.com

ketchupclass.com

sajanlal.khandan.dev

kishanvogelaar.com

knaipa.com

kolga.io

www.leomango.com

www.limoinmckinney.com

www.listte.com

malawistore.com

aws.mayamd.ai

www.mdtechcs.com

pnm.mebooks.co

megafba.com

apps.mobappcreator.com

mongolianmilk.com

paragon.mononz.com

mtb-lohja.com

mydevlink.com

www.networkbuddy.com.au

card-app.noahlist.com

app.noburo.co

www.norit.io

www.jackson.parsells.net

dynlink.peiphy.xyz

pipesnstuff.com

pl47productions.com

poppet-punch.app

www.pretture.com

my.protip.app

api.pubq.se

questlinevtt.com

staff.quizness.com

www.recruiit.co.uk

salonelay.com

samuelsmock.com

www.sasbort.co.uk

sawaryjeans.com.br

senseaction.io

mt.gerenciazap.smartmidiasdigitais.com.br

panel.sosclick.cl

www.thankyoupaloalto.org

www.thepostalserviceofhappiness.com

tintlaunch.com

togethe.re

www.traspasa.cl

tristanbalon.com

nike.vectorz.app

www.verdesimple.cl

villanyszerelespecsett.hu

welander.ar

app-api.wetix.net

whatchado.ch

yellowpizzas.com.br

zabersrl.com