Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.zeustech.co.ke
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 22, 2025
Valid Until
January 20, 2026
51 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C4:0A:D8:FA:79:5F:97:83:5A:37:7A:DA:2B:5B:F3:22:9F:5D:58:A0:74:08:46:89:5F:58:18:3E:1C:7B:76:D3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
vitskuliiga.fi
11521387.peerly.app
www.50chefs.com
531go.app
6thmanapps.com
datapipes.aclima.tools
agustyle.com
auth.ai-blogkun.com
akiyamasho.com
allouchenet.com
www.allouchenet.com
admin.almuhayili.com
stories.amithgc.com
ananthamsarees.com
anshdeepsingh.com
appscifi.com
ariss23.com
www.ariss23.com
www.aseka.id
salespop.apps.avada.io
battlepassweekly.com
boris-customer.at
brightuplabs.com
www.brightuplabs.com
byeshe.com
b.careersocius.com
hysan-main.carnotinnovations.com
catchsunlight.com
wcs.chekt.com
claire-and-joe.com
tgs2023.cluster.mu
www.zeustech.co.ke
www.cocode.fr
www.crystalcleankos.se
www.cucufate.mx
icantafford.degenfatcats.com
www.digitaltownsq.co
skin-cancer.doro-ai.com
home.dyggame.com
infinitesignage.easysignage.app
dashboard.elevarm.com
web.enirtu.co.za
europatinhas.com
node-api.ezhub.app
api.flipflopgame.app
flux-metrics.com
www.funkyrecipes.dev
gfgdota2.com
tiffani.test.graphite.space
www.gymstro.app
www.honourourlovedones.com
cdn.hotelklinik.it
www.ibuildcpu.com
xconnect.impmedia.co.uk
industriasgrindoil.com
intellisignals.com
intsoftgames.com
dental-online-stg.iridgeapp.com
sehatku.juang.site
app.kennedybio.com
khomin.tech
turnkey-staging.klearly.com
staging.knexion.com
konnectatech.com
www.landowner.mn
m.lavaplay88.net
lech.world
www.lonelydogrecords.com
lucasphotographs.com
www.luminous-works.nz
simplify.lunait.solutions
cryptoverse-trend.majordesigner.com
monorepo.schema.mediact.com
go.memix.com
nilhz.com
dekbeddiscounter.ontvangbrochure.nl
www.ordish.co
www.moderna.org.pe
pdpacenter.com
www.prodcom.io
devftcchatengine.proxtera.app
robholmes.app
admin.roundhere.co
www.ruckr.app
nft.santafecap.com
app.seniorengemeinschaft-bgl.de
alper.sevindik.dev
www.skyhiglobal.com
skywardgaming.ca
hunt.solidsail.com
brooklynfcpolladmin.sqwadhq.com
www.taplaw.app
www.thebeerguyds.com
thousandfootmile.com
share.tinilive.top
www.traffic.photos
a.upw.li
download.vocepede.online
www.voxelatlas.com
incomodos-invitados.zequi.es
Other domains in certificate