Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=lms.zlipp.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 21, 2025
Valid Until
December 20, 2025
42 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C7:3A:EF:DE:B1:96:0D:A9:54:55:B8:A0:79:D8:69:5E:DD:F4:F6:E6:C3:B2:0F:28:A8:C1:29:53:FC:46:BF:97
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
sevanakendram.com
www.101cre8ives.com
abdullah.fi
au.catalyst.adgile.com
opengraph.alexandrugogan.com
alfredourda.com
amitbhujbal.com
ipiconecta.app.br
admissionform.avdvvn.org
avwrench.com
links.blackid.app
blockwave.dev
boffinbee.com
alpha1.cajetan.co.uk
meluhaedu-manage.classet.in
cips-staging.cloud-invest.com
www.cpa.education
dev.calc.dakine420.com
www.danforalbany.com
differentcode.com
ducorconsultores.com
e-incube.com
easychem.in
adammedia.easysignage.app
escolademudadores.app
dev1.espacesalon.ca
www.espacioalmanativa.com
fadlisani.dev
panel.frava.app
fucitoshop.com
gameguardai.ru
getawayfrommyfruit.com
ghibi.app
go.gigops.app
code.grroofing.app
l.guildfi.com
app.hewkawar.xyz
intlwinners.com
www.jeffmullerdesign.com
juanmg.com
kernels-analysis.com
kingsridgetulsa.com
kweera.com
klok-landing.lmnorg.xyz
lvateyou.com
mapmarking.lk
markodin.dev
mcbwi.com
www.metalacindustries.com
links.metcard.me
midogift.in
dev.mindcourier.com
www.mv-eats.com
mycvperfect.com
www.mycvperfect.com
upgrade.neoufitness.com
nguyenbaokhanh.com
nimbleplaybook.com
novejcorp.com
admin.octata.com
playright.dev
www.playright.dev
playrite.dev
playwrite.dev
www.priceofglory.game
auth.prioneer.io
prohub.studio
auth.reboundmusic.app
recirclable.app
redbargreenbar.com
refactorthat.com
savapay.io
sbimob.com
scrollplayer.com
www.sexifirmumiulium.com
stage.simplassur.app
singularityonline.app
slotdepositqris.cfd
somoseasybots.com
loxam-dsi.speakylink.com
gearpackingchecklist.stellarjaysoftware.com
hello-blogs.stin.ink
surfwareapps.com
svilokos-photography.com
www.sweetfilm.app
www.tansycloud.com
vr.thai.run
dev-i.thx.to
cepordos.toged.app
url-shortener.trandrew.ca
turtleleap.com
www.tylkoadvisors.pl
uofthome.com
www.vermieten.com
vipulasri.com
vistadamuri.it
www.wasbach.com
bzeen.xmarksthespotsoftware.com
spacetime.yorelabs.org
lms.zlipp.in
Other domains in certificate