Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=exiconsulting.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 22, 2025
Valid Until
March 22, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2D:ED:65:D1:78:35:38:A7:A5:71:D0:80:02:1B:57:E9:18:31:E1:C1:DA:BA:07:FC:4D:6B:6A:9E:3F:3A:BD:2B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.dupi.hu
dev.console.28east.co.za
www.aarceepvcpanel.com
whiskeyriver.acuteplus.app
dev-partner.aiqahealth.com
watersort.alignitgames.com
sigma.cao-lvnl.appdashboard.nl
appliedlabs.net
www.aquamettechnologies.com
www.asociacion-amapa.com
www.assimatec.com.br
pay.atoa.me
authentication-uae.com
suno.bajaapp.com
signin.blackpoolpleasurebeach.com
staging.rocket-voucher.botio.io
seller.buisbee.com
bulletn.io
admin.bzigo.com
caseyrwebb.com
www.catdoghuman.com
chalk-talk.io
cjgxsy.org
clinicasaludintegral.co
totthoapa-stage.cmedhealth.com
app.comprenders.com
clue.cuona.io
deltyo.fr
discerningtoday.com
www.esterinity.com
exiconsulting.com
fiyat-al.com
www.flyance.com.ar
formdocket.com
demo.gympunchcard.com
hauptphotography.com
heritage-movingandstorage.com
hicanyou.com
hoboakabane.jp
m.holdstation.com
huntermmckay.com
www.hxmspace.io
www.iconbjj.be
www.igni.fit
shire.indefini.do
webhooks.invertase.io
www.ipbboavista.com.br
gestao.simulador.izii.io
www.jorgejd.com
josephlewis.net
justinmattos.dev
kappowapps.com
katfang.com
katieanddryden.com
kongscave.com
www.looleebear.com
loveactually.fun
lunarworks.co.uk
malin1.com
moncompte-outils.mangeonsfrais.fr
memoriescode.com.br
mintscore.io
morfosweb.com.br
www.ndcyberlaw.com
npb-chart.com
www.out-of-paris.fr
ite-dv7-dev.owqlo.com
pos-stage.paydoo.com
productionvideo.tech
promptli.io
ranggana.purwana.net
app.rallypair.com
rashiscript.com
recocards.com
rishant.tech
www.roadenterprises.com
samaalthawaf.id
www.sanna.band
www.sasandha.com
blackpool.scouthub.app
skwarzapp.com
www.spearhead.me
dra.spelezoli.lv
starprotective.com
www.stvemsjatni.com
teampoolz.com
tessservices.com
thatbagelplace.com
theflexschool.com
threelemurs.com
www.tigerbilar.se
www.timeplacebook.com
totiushill.com
mercurio.uveye.co
intranet.vagaflix.com
enterprise.vodium.com
www.vucna-sluzba-matkovic.com
baby-tracker.yod-w.com
yourkitchenpal.co.uk
www.zeparcher.com
Other domains in certificate