Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=social.tecxprt.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 30, 2025
Valid Until
December 29, 2025
43 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E8:39:60:28:BE:61:F8:83:17:24:5D:09:45:6F:55:26:A3:4F:9F:2C:01:B0:EA:4B:A0:DB:06:14:38:61:41:6C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
switchsmartly.com
www.60sfire.com
7sagency.com
www.accountsmachine.co.uk
cwit.acuizen.com
www.finance.adamino.dk
demo.africase.co
alexandralu.com
stg-app.any-tag.tech
www.ariastats.com
authvisage.com
aswanthvc.avctech.in
dropit.avctech.in
pm.bannerboy.com
www.bijouxartigianali.it
login.linkup.bobsled-cloud.com
www.borsetti.cn
resume.bouric.com
dev-launchpad.brickwise.at
www.caplink.app
voxa.caretcard.com
www.cchenel.com
chimneycakehouse.com
www.cjetlab.com
clavello.it
www.cleanrok.com
www.cmisolutions.org
lnk.bitworks.com.sv
cglabs.coralgardeners.org
courtboard.app
articlesubmission.darboux.live
dogamdok.org
blog.drbu.org
a2.drusantia.net
www.dudelemon.cloud
admin.ebooktree.io
game-dev.mcast.edu.mt
charging-console-github.electriphi.dev
elijahdangerfield.com
staging.functions.esalert.app
ethiopiannamegenerator.com
open.fiffit.com
www.sin-seminar.filipmiik.cz
learn.finickel.fr
www.freedsound.com
www.friux.com
nutrition-origin.me2-stg.gmal.app
www.hairbychantel.com
www.hipocampoeditores.com.pe
static-dev.ikuzaki.jp
uat.industrybest.digital
infoperitomoreno.com.ar
sandbox.web-test.insent.ai
app.jetty.mx
djangofestkc.kcwomenintech.org
kicode.app
larcom.dev
app.laughlounge.ca
nft.lister.jp
testing.macademy.in
maperto.com
celestial.mapulator.app
www.mahapanchayath.mediaonetv.in
www.memer.wtf
memex.social
nft.mirl.club
schulen.mirroco.ch
auth.missiv.ai
nriti.com
nutrinin.com
client4.onlinetestyap.com
agency.otech.digital
ourlittleblessing.org
store.policysource.net
rausch.studio
www.regensburg-weinfest.de
reservame-agenda-digital.com
ricardodoria.com.br
app.rodada10.com.br
seeudate.online
seller-systems.com
simonesesana.com
apidocs.slidesup.com
portal.socialmotion.ca
www.strengthcorp.app
www.taponetap.com
social.tecxprt.com
app-link.thecut.co
tikitii.thediners.in
www.thegroup.asia
www.top09uvaly.cz
translamore.com
turiyarenovaveis.com.br
firebase.undresspro.ai
app.unicorncopy.ai
www.webflame.co.uk
www.westernhumanities.org
m.wkt.wiki
carrotstick.youaremyhero.com
uat.zebuetrade.com
Other domains in certificate