SSL Verification Bypassed
The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.
Reason:
Expired Certificate - the server's certificate has expired
Open
Cached
·
just now
62/100
SECURITY SCORE
Certificate Information
Subject
CN=dev.ntgsys.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
May 04, 2025
Valid Until
August 02, 2025
Expired
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
61:3B:59:77:DB:87:6C:7B:90:C6:94:6F:23:63:4F:1A:FC:57:2C:B5:01:7E:ED:E8:2A:30:A0:20:73:F4:C0:85
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.lukassaul.dev
dirtybit.12traits.com
www.abilsoft.com
kickformom2018.acpfc.com
pudukkottai.akdroptaxi.com
tirunelveli.akdroptaxi.com
tiruvarur.akdroptaxi.com
links.alphalegal.co.uk
internal.amaiscloud.com
atelia-patrimoine.com
autographchecker.com
notes.babaaman.com
www.banklogshop.mp
app.bhive.be
staging.bizmate2u.com
moneywell.bladud.org
bluberypancakes.com
www.bodymap.ai
bollyflixapk.in
www.brdopara.com
breatheindia.shop
www.breatheindia.shop
bx2group.com
www.catalina-wine-mixer.com
www.chelseadentalok.com
leaf.clau.io
www.wcise.co.in
app.cogx.live
www.commonloyalty.com
app.contract-dewatering.com
contribuenti.it
cookesoft.com
www.cossine.com
www.critterhobbyist.com
dataliberationfront.org
api.deliversense.com
www.dippingbook.com
divaluate.com
dwhtest.com
login.emporix.io
www.eugenectang.com
mi6.everest.io
flamingo.dating
facility.genanes.net
getannounce.com
gngits.com
gototopay.com
harshaexports.com
healthlk.com
www.hussien-bin-meshref.info
app.inovaed.com
www.intelimat.com.mx
www.itfreelancing.nl
ivanzim.com
kacky-blog.com
consumer.kbbconnect.com
kemecuador.com
kerlonkerlon.com
kevinjoven.me
khilkevich.com
www.knexion.com
lenovo-dev.leiapix.com
dl.lockedcard.com
vista-app.lotusfa.com
lupa-fitness.com
focuswall.madebyayan.com
modusdirect.madhive.com
merrycryptomas.com
solicita.mybiznez.app
my.nativeforms.com
nguyenkevin.com
nofearbear.com
notefuel.com
dev.ntgsys.com
environment.nucor.report
www.okaidosushi.es
omerfarukdanismaz.com
patnem.com
www.piladelibros.com
myonline.piticommerce.com
plutusinfotech.com
votebedrock.pokefind.co
docs.purescale.ai
rtl.recruiting-solutions.org
relayone.net
www.rembrand.info
saascriptions.io
sapsalesforceintegration.com
www.schadensablehnung.com
beigene-investigator-qa-admin.science-voyager.com
servintg.com
smartml.org
spacecoastjug.org
app.sptiming.ch
link.studentfy.com
lab.terron.me
crosshair.themeta.gg
ultimatetypingchampionship.com
my-data.upflowy.com
volcanfly.com.br
Other domains in certificate