SSL Verification Bypassed
The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.
Reason:
Expired Certificate - the server's certificate has expired
Open
Cached
·
just now
62/100
SECURITY SCORE
Certificate Information
Subject
CN=www.zerahtech.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 04, 2025
Valid Until
July 03, 2025
Expired
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2F:BF:E8:47:D2:AD:2E:19:DB:9D:FE:F5:72:53:86:5B:55:4C:E5:55:43:B5:15:D7:C5:17:D2:F6:F2:6D:ED:8D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.jetlingo.com
sal.911micro.com
www.abbatecalzature.it
addicuss.com
www.akiesu.com
americanrefundrecovery.email
auxileolabs.com
dev.mijn.bobdebot.nl
bspk.design
caderio.com
www.callusat.in
legal.chronwell.com
clientfirst.in
app.cloud-sms.us
www.cloudmallstyle.com
minesweeper.webwise.co.il
account.explicador.co.mz
landing.consultorianavarro.com
www.contactusnow.in
boda.dahngeek.com
app.drivees.com
dunacruises.hu
collegecollection.dynamicliquids.com
www.easytaxconsultancy.com
ecommerceapp.it
www.el-americano.news
dev-eztags.ezcast.com
foodevents.in
formahome.online
www.forsmoothtravelling.com
app-link.fpass.jp
admin.galais.org
georgepetersen.dev
hackathons.co.uk
trade.hadronai.com
www.homeandgeneralct.co.za
i-stellar.in
imagenodes.com
imintpay.com
anjaneyaa.indiandevelopers.org
www.lab.innerbuddies.com
jer.one
jonathonemery.com
kadh.nl
meet.intg.keap.page
kuroro.blog
ngs.leapfitz.com
flash.learntypescript.online
liminalfunctions.com
member.loxclubapp.com
ebanking-link.lukb.ch
mandosummit.app
www.markatgroup.com
mattdrouhard.com
www.mothership.cx
emos.mudupay.com
gallery.mugen.dev
app.mybiq.com
nikdaijai.com
stories.oloflindh.com
onavol.com
techtrends2020.outdev.io
www.photodoc.app
callmanager.premier-ltd.com
app.premise.com
protalk.game
www.prumand.com
rainmaker.school
raulmoya.es
recargatulinea.mx
renegadecomics.xyz
reserve-line.com
dev-directorio.rhodium.ooo
riverforestinn.com
www.mensd3.rowanhockey.com
service-ivm.ru
sghjewellers.com
onboard.signos.com
www.simpleappli.com
app.simulateur-locatif.fr
sio.solutions
sitefast.ca
declique.dispatchx.skialabs.com
smisarl.fr
soundcommerce.io
auth.tabnine.com
suedhub-bewerbung.tagbase.io
ruenmaiemenu.triggersplus.com
alpha.trycarbide.com
admin.trygsuite.com
udrugalogoton.hr
vbdesigns.net
dashboard.veat.se
koit.vilbas.ee
visilaw.com
admin.vividclm.app
yru.chat
www.zerahtech.com
landing.zonaagraria.com
www.zsoltpg.com
Other domains in certificate