Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.exgcrew.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 25, 2025
Valid Until
February 23, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
13:A6:90:A7:BE:2A:FC:A4:95:18:1F:97:4C:6B:F4:D8:FB:41:FD:5B:C6:E0:5D:E1:1E:91:EF:0B:66:5F:DC:24
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.furtado.me
4fotos1palabra.app
www.amazonsatplay.com
www.anime.cafe
actdemo2.anyware.software
autogofit.cz
www.awa.re
www.backpackfordrive.dev
basis.mobi
benjiepark.com
www.brewzcoffee.in
carrington.dev
go.cf.studio
yassine.connectorzzz.com
www.crossmesolutions.com
www.dark-nucleus.org
initacademy.dhahas.com
dianagraph.com
www.diapif.com
www.drafttrainer.com
www.drycleanerlocator.fr
emlakfokus.com
eslinux.com
dev.evme.io
www.exgcrew.com
famapassport.in
app.famihood.com
futuro.forja-tech.com
api.fsweekly.com
giovannimascia.com
sproutjoy.greybluash.com
www.hararidawah.org
calmap.heychao.com
hueimaging.com
www.idealer.ca
www.idesporte.com.br
neom-api.itxi.aero
pokemons.jaalorsa.com
jarp.one
www.jastrzebskipawel.com
www.javions.com
jerinsebastian.com
www.jhjscb.com
www.judybrooks.com.au
www.justkidspreschool.org
aff.kidsupsoroban.vn
monacardkukannosu.kotaroo.work
lg-cundinamarca.com
makinggreetingsai.in
www.makoficinas.com
manthanlearning.com
alpha.martintoddbuilding.co.uk
dealspacedev.melle.io
staging-portal.memoapp.ph
gestor.meupetshop.online
meysaquatics.com
www.mikob.xyz
movmember.motherofvictory.org
www.naveenmalhotra.ca
www.new-standard.co.jp
www.okayrecharge.in
opks.rs
osamailyas.co.uk
pastelburg.com.br
pazadaexpress.com
plugins.pixelsucht.net
bestellen.pizzeriaitalia4.de
www.platechasr.com
admin.playtours.app
www.progressiveengineering.co.uk
www.pscp.es
pylife.eu
www.quinova.net
rahulservices.co.uk
ratanapron.com
links.rekola.eu
www.rovtouch.com
rush.sk
www.sarmaru.com
medicos-dev.saude-brasil.com
betaseasons.scoreholio.com
sheepionaibot.com
www.smilestheatre.com
dev.pha.sokuyaku.jp
www.starfront.app
sunnygraphy.com
tannertx.com
boostyoursuper.techamigo.net
api.thatwas.pro
www.thewealthy.app
top-ten.app
dev.tunrmusic.com
typegen.vestera.as
cloud.vilnek.in
identist.vilnek.in
ebs.voltbikes.co.uk
vrikshaainteriors.com
admin.partners.wizishop.com
x-syst.com
tule.yushakobo.info
Other domains in certificate