Open
Cached
·
just now
90/100
SECURITY SCORE
Certificate Information
Subject
CN=sistema.neowifi.mx
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 25, 2025
Valid Until
December 24, 2025
31 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
27:10:76:4A:46:33:86:C8:7E:FA:C2:2E:BC:CF:40:AB:21:A4:A0:FD:2D:40:7B:A8:A3:BE:5F:A8:E3:18:8A:4C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=31536000; preload; includeSubDomains
Content-Security-Policy
Basic
default-src; script-src; style-src; +10 more
default-src *.facebook.com *.fbcdn.net *.instagram.com blob:;script-src *.instagram.com static.cdninstagram.com *.facebook.com *.fbcdn.net *.facebook.net 127.0.0.1:* 'nonce-9aZRltXj' blob: 'self' 'unsafe-eval' https://*.google-analytics.com https://translate.google.com https://apis.google.com https://accounts.google.com;style-src *.instagram.com static.cdninstagram.com data: blob: 'unsafe-inline' *.fbcdn.net *.facebook.com;connect-src *.instagram.com wss://edge-chat.instagram.com connect.facebook.net *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* ws://localhost:* blob: *.cdninstagram.com wss://*.instagram.com:* 'self' https://meta.privacy-gateway.cloudflare.com/relay;font-src *.instagram.com static.cdninstagram.com data: *.fbcdn.net *.intern.facebook.com *.facebook.com https://fonts.gstatic.com;img-src *.instagram.com *.facebook.com *.fbcdn.net data: *.cdninstagram.com *.whatsapp.net blob: *.fbsbx.com android-webview-video-poster: *.oculuscdn.com *.giphy.com *.tenor.co *.tenor.com www.googleadservices.com *.doubleclick.net *.google.com *.google.co.uk https://www.gstatic.com https://*.google-analytics.com;media-src *.facebook.com *.fbcdn.net *.instagram.com *.cdninstagram.com cdn.fbsbx.com lookaside.fbsbx.com data: blob: https://*.giphy.com *.tenor.co *.tenor.com;child-src *.facebook.com *.fbcdn.net *.instagram.com data: blob:;frame-src *.instagram.com *.facebook.com *.fbsbx.com fbsbx.com data: www.googleadservices.com *.doubleclick.net *.google.com *.google.co.uk;manifest-src *.facebook.com *.fbcdn.net *.instagram.com data: blob:;object-src *.facebook.com *.fbcdn.net *.instagram.com data: blob:;block-all-mixed-content;upgrade-insecure-requests;
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
accelerometer=(self), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(self), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(self), compute-pressure=(), display-capture=(self), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(self), gyroscope=(self), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(self), midi=(), otp-credentials=(self), payment=(), picture-in-picture=(self), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy"
Recommendations
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
sunshineandsweets.com
www.3db.dev
dpm.nurulfikri.ac.id
keneya.afrivac.org
www.ambient.alaphd.com
bead16.alignitgames.com
alvish.in
www.andreacormano.it
www.axisroot-holdings.com
baxterdads.com
www.brandoncb.com
cmta.app
admin.layco.co.kr
forme-parent.haiidev.co.kr
codifide.com
collage.app
dash.cn.craftsake.com
zadania.derda.site
link.dpoint.vn
www.dsrlglobal.com
aqua.dukatrack.com
edumancer.com
startupgrind.eharis.com
blog.familybringsjoy.com
anniversary.foxcroft.dev
nohara.franshiromedia.com
app.gerard-bertrand.com
test.getshoutout.com
dlk.girls2-fc.jp
grasselliconsults.it
hansknapp.art
exam.ibisacademy.in
manage.ibisacademy.in
ielnexus.com
app.inifaisal.id
insideuni.de
aka.jongwoo.dev
jornpipop.com
admin.katferien.ch
www.kvi2.se
lancerinne.com
www.legatolab.am
eu.my.linkcard.app
www.linkinfaith.com
meishi.livestand.jp
wlportal.loyaltypro.co.uk
travis.webhooks.m4m.io
madcongelados.com.br
www.makrmaniac.com
app.maxprofitness.com
megadosetheoutsiderartist.com
merlocode.com
nebular.methvin.dev
www.mezmerikgroup.com
qa.mymedstore.in
sistema.neowifi.mx
network-centrality.com
www.notebl.com
nskyc.com
ai.ojas-labs.com
semtribe.opendata.report
www.semtribe.opendata.report
admin.origamiwash.com
www.promotorfreelance.com
www.qpqp.jp
quickstarts.net
redfoxcontractor.com
b2b.relobase.com
www.forecast.rengydevelopment.com
auth.revisionme.com
vizion.salesvizion.com
www.seigospace.com
selfpay.care
sellmyhouse.co.nz
app.sermep.com.pe
setfoundation.ca
www.sgj-gems.com
www.simonesesana.com
www.slavparadise.com
smilecat.dev
imd.sylva.ac
nimble.talhahpatelia.com
innovemind.taximet.com
s.teller.jp
money.thomasbutler.com
triodesk.in
tuneprefs.com
www.turdsicle.com
www.undarkpixel.com
admin.uricall-dev.com
easygo-core.viteusa.com
chat.vklidu.ai
bdbe-table.waiterpro.com
webtech-systems.com
whatstarget.com
invite.wither.app
workandtimemanager.com
messenger.yellowpages.com.au
yummyapp.eu
certifications.zymdev.com
Other domains in certificate