SSL Certificate Analysis for www.find-tree.com - Security Grade & TLS Configuration

Open Cached · just now

77/100 SECURITY SCORE

Certificate Information

Subject

CN=www.nordxe.io

Issuer

C=US, O=Google Trust Services, CN=WR3

Valid From

October 26, 2025

Valid Until

January 24, 2026 56 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

9A:CC:11:9A:0B:37:F8:57:1C:9C:8B:51:70:4E:7D:7C:1F:13:6D:73:FA:16:89:63:C7:20:6D:DD:51:E1:5F:1A

Alternative Names

100 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31556926

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains

www.find-tree.com

Other domains in certificate

www.239tree.com

www.2nv2u.com

www.ajmarci.com

alexsexwale.com

pembina.amuletresponse.com

andrepasquali.com

www.astroth.com

app.avicare.fr

gni.bbedc.dev

console.beanposapp.com

teacher.beereaders.com

cv.betscha.ch

brendoncarrasquillo.dev

list.campingbuddy.com.au

frontier.chip.app

signin.chronostimetracking.com

www.clokkin.com

demo-jewellery.commerceq.com

crelab.in

www.crushmatics.com

pregnancywheel.damurka.com

asai.datateam.one

clasificados.test.diariodequeretaro.com.mx

app.doslogisticsja.com

drsangeetgawhale.com

solar.ellume360.com

app.encaucetotal.com

www.eventsinluxembourg.lu

www.freesiacafe.com

liveform.freoza.com

www.getluna.ai

www.getsetcoding.com

gohantv.com

www.gotloop.io

www.hojendiz.dev

ibantoo.com

static.waste.icraft.app

app.ihealthewellness.com

slack.imd1whonocks.com

temich.in.ua

www.institut-hypnozy.cz

invoiceseasy.com

www.jordimelendez.uk

joushinji.com

nicokara2.k-creates.net

www.kingara.com

services.kurs.win

laastekamp.co.za

www.laddercommerce.com

utcj.lapieza.io

admin-instructor.latinatribe.mx

staging.leveluptriathloncoaching.com

warehouse.lexcellence-grp.com

lightningbug.me

portal.lode.tech

www.maanenergia.fi

www.maierzone.de

makeoversolution.in

www.massula.dev

mehraan.cloud

www.mindofmatthew.com

portfolio.mouly.ar

mvi.llc

mybjj.club

www.nordxe.io

www.northmex.com.mx

latte.note15.jp

www.pedidoflama.com.br

petme.in

deep.native.plugo.co.jp

www.rockhurstcamps.com

chaturmasikchoviyar2023.rpso.in

ruyibookkeeping.ca

www.safetysync.com

condor.shiftlab.tech

shinespark.us

sigecmazatlan.com

www.signifact.com

speisekammer-app.de

sqordinal.com

swapmycards.com

sweetmickymovie.com

www.tabernavillalustre.es

tilatrivia.com

firebase.toobit.com

towerloadout.com

idea.unblockedevents.com

vila-aleks.com

www.vineethamurali.com

drive.vrdentaldesign.com

www.walterdoc.com

xolostudios.com

sign.yabawt.net

www.yanartech.com

yaesa.yojimbo.fr

yshr.info

sandbox01.yulamove.com

web-builder.dev.zeekdoc.com

zonareth.com

Free Cloud Credits

Get free credits to test cloud platforms