Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=admin-performance-dev.pixis.ai
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 13, 2026
Valid Until
April 13, 2026
81 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E0:99:7E:B5:9F:7E:D9:D7:2C:30:1D:AD:AD:44:C6:BC:5D:7F:F2:8B:D8:16:DE:2E:E8:09:8C:17:B9:18:C3:88
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
stagedesign.co.il
abdullahsumbal.com
adagames24.com
aiaibank.com
www.aidenlow.com
aiminidoge.com
www.americaoffbalance.org
dev.anansii.com
www.andfriends.io
www.arvelenerji.com
ashmitenggconsultancy.com
askthealgorithm.com
magellan.avs-valuation.com
beech-hill.xyz
bertoelcon.com
www.bonding.app
bramhascientific.com
www.businessbuckets.com
disputes.buslane.com
share.castledownload.com
www.christinesohkim.com
linkshare.collegeek.com
luxecredit.com.hk
iris.gmall.com.tw
shopadminpanel.comline.app
credmintapp.com
app.damagedluggage.com
typesomething.ddaaaaann.nl
diegoandfernandaweddingsivar.com
dripcodes.com
duitraya.app
dymmer.com.br
acc.dynamicmodules.app
edm-marble.com
www.emdientlab.com
ensena-senas.com
mta-sts.extendtraining.com.au
fiftytwocardwod.com
auth.findexperts.africa
florescecasahostel.com
frequentproposal.com
garpe.mx
gitfiend.com
greentakaritas.hu
intra.grosenia.link
hometownhoops.ca
www.hoofdindewolken.nl
hsccarpentry.com
hugopinho.com.br
imagenteen.com
influ-api.com
inspirei.co.jp
music.jackjoynson.co.uk
notas.jesusfdez.es
jmoncayo.com
www.jooselohi.com
primalova.kards.fr
kbar.app
kdressercamps.com
www.kikecoder.es
kmbappe.fr
lafierareparaciones.com.mx
latelierdezip.fr
my.lomni.ai
longmaysheslaygloballlc.com
app.lydul.com
makery.co
matteocalva.dev
mechatronik.sk
melantechinnovations.com
middrides.com
app.dev.mozome.com
apiv2.pathbooks.app
pennyworthlife.ca
destaffinggroep.pensioeninzichtonline.nl
www.petpet.vn
garmin.piano8283.com
admin-performance-dev.pixis.ai
www.placego.hu
datamaran.productsignals.com
projectstart.app
rankedchoicevotingapp.com
regcarlson.com
decomprasenmiami.rescatetecnicoit.cl
thinking-tools.schabanak.com
securify.nl
lyss.simrace-control.ch
www.slates.co
smdev.cloud
stokeconnection.com
tandooricuisinegeelong.com.au
craft.technodeon.com
texasdemsigma.org
toothpicky.app
www.turkuairport.fi
functions.core.api.uodka.app
jstest.vanblaricom.com
waleed-ahmed.de
wheredidiputmystuff.app
worldof.music
Other domains in certificate