SSL Verification Bypassed
The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.
Reason:
Expired Certificate - the server's certificate has expired
Open
Cached
·
just now
62/100
SECURITY SCORE
Certificate Information
Subject
CN=ansafdesigns.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
May 03, 2025
Valid Until
August 01, 2025
Expired
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
28:01:36:87:D7:53:2A:50:34:D1:45:10:2A:AF:4D:17:FD:92:73:23:6A:0D:63:4E:1F:78:85:26:42:E5:19:67
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.app.checklist.bytepic.dev
5.dasio.com
actsrpg.com
li.aga-online.clinic
web-app.ahazou.com
suporte.altatecinformatica.com.br
ansafdesigns.com
playground.apxor.com
dev-links.asmmbc.net
barahmaasmarwadityohar.in
www.barber.mn
bubble-buy.com
applink.buerstner.com
links.bulljang.com
azahar.clau.io
dipankar.co.in
app.popmeals.co.th
contractgenie.app
www.curiosityinteractive.com
www.d2runewords.com
pricing.dbs.cl
kms.dev-trans.com
dharmigroup.com
didakt.io
login.digirecords.in
guiamedico-hml.doctorclin.com.br
donatedoughnut.com
dotnova.ai
innova.dropstaxi.in
suv.dropstaxi.in
elysiapatrimoine.com
adel.farmacare.id
farmresq.com
liberty.farrindustries.com
gigapps.net
suistaging.go-games.gg
grabthatspot.com
grsports.us
ncux-chart.hangeelab.com
instaplug.app
www.jorissendejonck.be
stage.journey.builders
jrpianotuning.com
www.karlswims.com
app.leadzilla.ai
lk.sv
www.stagingmail.lmserp.com
ju.mahe.io
mattmanzi.com
mightyminds.org
zbrowser2.mkelley.dev
vendas.mognu.com
www.motionkick.com
admin.myhum.in
www.ntuna.com
www.oneayat.app
openlistings.org
app.orai.com
polygon.pancakebunny.finance
placebin.online
planet-ai.co.uk
www.privatemonitor.net
capa.ventaempresa.promart.dev
www.propersp.com
www.rayify.app
readland.link
sc7test.senior-coding.com
shforn.com
sideralfut.fun
kemna.solongo.app
www.speakfluently.de
qa.spread-care.com
studenttimetable.com
maintenance.svenfish.com
sweetrolls.net
testnet-v2.tempus.finance
app.thecivilize.co
thexperience.ca
www.tirupatiancillaries.com
tofs.app
www.tomasovia.com
auth.torchlit.io
app.tossacoin.app
trinityfintech.in
dashboard.uricall-dev.com
ushopbkk.com
utscacmsa.ca
app-dev-melio.vacationcounts.com
www.venturiautomation.com
vivianogesben.dk
www.voyayge.co
webfaceid.com
weight-training.app
app.qas.wohnsinn.com
www.woodywooo.com
wordsandmagic.com
links.xamaral.com
multiteam.zal1000.net
game.zao-lab.com
zonetraces.com
Other domains in certificate