Open
Cached
·
just now
79/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=scanxr.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 24, 2026
Valid Until
May 25, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3E:24:16:F9:25:F7:A5:02:7A:F7:15:D0:73:7C:96:2B:3B:9C:FD:AB:B3:09:AF:70:FF:57:A6:10:F1:E3:2F:67
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
scanxr.com
*.scanxr.com
*.admin.ajtei.com
ajtei.com
*.ajtei.com
*.api.ajtei.com
*.app.ajtei.com
*.assets.ajtei.com
*.backup.ajtei.com
*.cloud.ajtei.com
*.dashboard.ajtei.com
*.demo.ajtei.com
*.dev.ajtei.com
*.e5d37c1a-e810-4b46-94f1-e3e2d3a89faf.ajtei.com
*.gr.ajtei.com
*.hostmaster.ajtei.com
*.lpyana.ajtei.com
*.m.ajtei.com
*.mail.ajtei.com
*.mailer.ajtei.com
*.marketing.ajtei.com
*.mbglgcloud.ajtei.com
*.members.ajtei.com
*.ngqhavbg.ajtei.com
*.qrn.ajtei.com
*.rds.ajtei.com
*.rdweb.ajtei.com
*.remote.ajtei.com
*.secure.ajtei.com
*.staging.ajtei.com
*.test.ajtei.com
*.uat.ajtei.com
*.ucgzg.ajtei.com
*.uyu.ajtei.com
*.v1.ajtei.com
*.vbg.ajtei.com
*.vseyftbnt.ajtei.com
*.vyl.ajtei.com
*.web.ajtei.com
*.yf.ajtei.com
*.altuhfahupholstery.axiomaweb.in
*.atlasfurnishing.axiomaweb.in
axiomaweb.in
*.axiomaweb.in
*.ayuralshifa.axiomaweb.in
*.dentalhospital2.holymessiahmission.com
*.fashionstorehub.holymessiahmission.com
holymessiahmission.com
*.holymessiahmission.com
*.ladiesfashionstore.holymessiahmission.com
*.realestate.holymessiahmission.com
*.77e16c27-f265-4565-9b07-ec0802c1ef04.idyllmedia.com
*.dev.idyllmedia.com
idyllmedia.com
*.idyllmedia.com
*.528a1394-9ab5-46d2-aec8-32555327905b.mentorecarrtop.com
*.git.mentorecarrtop.com
*.localhost.mentorecarrtop.com
mentorecarrtop.com
*.mentorecarrtop.com
*.pop.mentorecarrtop.com
*.rd.mentorecarrtop.com
*.rds.mentorecarrtop.com
*.rdweb.mentorecarrtop.com
*.smtp.mentorecarrtop.com
*.webdisk.mentorecarrtop.com
*.whm.mentorecarrtop.com
*.app.mexyn.com
*.demo.mexyn.com
mexyn.com
*.mexyn.com
*.portal.mexyn.com
*.stg.mexyn.com
*.test.mexyn.com
*.yaczidemo.mexyn.com
*.assets.siamfun88-auto.com
*.dev.siamfun88-auto.com
siamfun88-auto.com
*.siamfun88-auto.com
*.assets.stunningweddingsdays.beauty
*.hostmaster.stunningweddingsdays.beauty
stunningweddingsdays.beauty
*.stunningweddingsdays.beauty
*.assets.superbr1.com
*.community.superbr1.com
*.eonmzgssyqshop.superbr1.com
*.sst.superbr1.com
superbr1.com
*.superbr1.com
Other domains in certificate