SSL Verification Bypassed
The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.
Reason:
Expired Certificate - the server's certificate has expired
Open
Cached
·
just now
62/100
SECURITY SCORE
Certificate Information
Subject
CN=billet.msj.dk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
February 07, 2025
Valid Until
May 08, 2025
Expired
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7C:0C:78:7B:AB:B9:BF:77:E9:2E:36:05:F4:47:4D:44:86:B0:28:70:4B:3C:AF:B0:40:4C:4A:35:AE:72:D2:C2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
admin.noca.me
abhilashnayak.in
adwiser.co.za
alfredcheuk.co
link.andme.org
red.antimo.fm
ararts.in
arcnest.in
atticbit.in
www.avitoparse.ru
batonrougeoffice.com
staging.behavr.app
blogspace.app
captain-edward.tech
payxpos-test.cloud-invest.com
link.spiralsoft.co.il
mregdemo.worldpos.com.my
ec.shanghaikitchen.com.tw
fish.declan.au
www.doddy.se
d1-myreturns.dpd.co.uk
dev.ds-carlife.jp
link.ctu.edu.vn
www.eintracht-auerbach-singt.de
fardimarksecurity.com
fatehcommunications.com.au
fedaa-chamat.co.uk
carwash.flo-production.com
fornever.de
aws.fortigatecnf.com
farmup.gaminatechnology.com
devfest2019.gdgastra.ru
thinbluepaw.uat.go-donate.uk
mobilestaging.godochurch.com
dfds.golittle.dk
gowtama.com
staging.herface.uk
staging.hirehammer.sg
ket.academy
auth.kincode.net
my-dog.knieszner.pl
www.laguiadechiclana.com
www.link-friend.page
www.lovemob.io
www.lpcardosoimoveis.com.br
www.managers.app
www.maridalsveien160.no
mediswiftconnect.com
michaelmoyles.ie
mifundaalamedida.com.mx
billet.msj.dk
www.mvvmengenharia.com.br
autoparts.mymech.lk
afi.nahaus.de
outreach.naviguard.co.za
networkie.club
www.o-o.sh
www.ono.ma
pglnx.id
invite.pillsbee.com
admin.ptnurse.com
recovery.social
renemccaine.me
rikaayin.com
www.romydewit.nl
link.rosteroo.com
roe-dhl-stag.routetitan.io
sarikayasahin.com
www.sharedonfarms.com
studio-staging.sidekickhealth.com
slz.lol
sneeze.no
soi5barber.cc
speak-e-z.org
dayraq.squadq.com
studyspace.io
www.taxcalc.pro
tctelematics.com
sport.themuva.com
game.thepowercouple.xyz
thesoundofai.com
map.tidalforce.org
partenaires.trustoo.fr
tshairs.com.br
app.tyckr.io
ericsson.quiz.thrive.uk.com
genre.quiz.thrive.uk.com
www.utopiarent.com
doyma.virtual-brand.space
www.voiceforlocals.co.uk
vrai-nom.com
jayaaunty.vyannjan.com
waypointapp.net
donate.wentworthwoodhouse.org.uk
go.wethankyou.fr
share.wizzdev.chat
www.wnatechlabs.com
app.wovoka.io
vssa.wug.fun
angular-signals-demo.xilerth.com
Other domains in certificate