Open
Cached
·
just now
91/100
SECURITY SCORE
Certificate Information
Subject
C=US, ST=Illinois, O=Abbott Laboratories, CN=www.freecgm.us
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Organization Validation Secure Server CA
Valid From
April 10, 2025
Valid Until
April 10, 2026
102 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EF:30:EF:35:92:17:04:2B:AE:57:5B:75:F5:56:4D:A5:BF:31:50:21:AB:2B:CC:B2:16:55:16:A4:14:F7:A6:03
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31557600
Content-Security-Policy
Basic
default-src; script-src; script-src-elem; +6 more
default-src 'self' https: ; script-src 'self' https: 'unsafe-inline' 'unsafe-eval' ; script-src-elem 'self' https: 'unsafe-inline' 'unsafe-eval' ; style-src 'self' https: 'unsafe-inline' 'unsafe-eval'; img-src 'self' https: data: ; form-action 'self' https: 'unsafe-inline' 'unsafe-eval'; font-src 'self' data: https: ; worker-src 'self' blob: ; media-src 'self' blob: https: ;
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
microphone=(),camera=(self)
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
67 domains
www.connectedtech.abbott
www.abbott-diabetescare.com
www.abbott-disability.jobs
www.abbott-diversity.jobs
www.abbott-veterans.jobs
www.binaxnowhometest.abbott.com
www.abbott.jobs
www.abbottcontroller.com
www.abbottjhrs.com
www.abbottmri.com
www.abbottobl-asc.com
www.abbottoct.com
www.abbottquality.com
www.abbottuk.com
www.apw.abbott
www.binaxnow.abbott
www.binaxnowhometest.abbott
www.ces-experience.abbott
www.chooseeasy.sg
www.ensure.co.th
www.2021ciie.abbott.com.cn
www.freestylelibre.com.tr
www.diagnosecmd.com
www.drganchoring.com
www.globalpointofcare.eifu.abbott
www.finddbsclinic.com
www.freecgm.us
www.freestyle.cl
www.freestylelibre.cl
www.freestylelibre.co.uk
www.freestylelibre.com
www.freestylelibre.es
www.freestylelibre.fi
www.freestylelibre.fr
www.freestylelibre.it
www.freestylelibre.lu
www.freestylelibre.nl
www.freestylelibre.no
www.freestylelibre.pl
www.freestylelibre.se
www.pharmacy.freestylelibre.us
www.freestylelibresamples.com
www.freestyleproducts.com
www.glp-systems.com
www.heart.abbott
www.heartmate.com
www.inclusiveresearch.abbott
www.integratoriensure.it
www.jeti.abbott
www.joinmyfreestyle.abbott
www.letstalkobl.abbott
www.malnutrition.abbott
www.mcsconnect.abbott
www.myfreetrial.us
www.nextlevelcrt.com
www.nextlevelcrt.eu
www.nowyouknow.kr
www.nowyouknow.sg
www.portico.abbott
www.similacrecall.ca
www.newcustomer.sjm.com
www.soccer.abbott
www.sports.abbott
www.strokeprevention.com
www.sturgisrecall.com
www.tinytech.abbott
www.together.abbott
Other domains in certificate