Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=www.tehnickipregledoliver.rs
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 25, 2025
Valid Until
March 25, 2026
65 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
03:C0:AF:B2:56:D6:A5:C7:18:67:1D:7B:D8:82:80:EF:FB:DC:08:7C:3F:D9:F4:FD:D6:2F:8E:08:47:CE:8B:CF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Basic
script-src; object-src; base-uri; +3 more
script-src 'report-sample' 'nonce-gINGbxJcpGzHocS7ECxbjA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self',require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
app.deako.com
acintyo.com
landing.addabra.com
adomtropicalfoods.com
afterhours.app
aleckriebel.com
www.ambalaje-dnd.com
antej.com
maps.appaollo.com
store-manager.aripay.kr
askabot.ai
astraware.dev
atomo.app
austinandlajos.com
authrabbit.com
avivhaas.com
www.b360cloud.com
www.bazaruka.com
behindboards.com
bellamarissa.com
betterteksolutions.com
bleachertechnologies.com
booqista.com
kitdigital.byideas.es
cablecraig.co.uk
cabritafeliz.com
www.calebfrey.com
callingzen.com
studio-prod-eu.captego.com
www.cataliza.co
auth.classroomscreen.com
www.click2call.cl
www.cna.net.au
apps.mcdonalds.com.ph
demo-footwear.commerceq.com
prod-retail.couchdisposalplus.com
creatival.fr
alkst.credito20minutos.com
sa-impact-invite.crio-server.com
app.crowdsenz.com
u.dasher.my
desertsummerlandscaping.com
dhakajabo.com
digitaaz.com
test.doronbali.com
audiences-preview.dstillery.com
app.earbeater.com
ecommercefusion.co.uk
ektainfotech.com
elisokeland.com
www.elitelivein.com
emir-yilmaz.com
mobilemind-hq-dev.enablus.com
enigmaverse.com
bestellen.enjoypizza-essen.de
ernestosilva.com
www.fader4.com
www.fareandbalancedalpha.com
fbarcellos.com.br
dev.finvari.com
www.flowby.io
datafeed.forestsystems.com
www.fullscale.app
game2like.com
gnosystgroup.com
www.grandpatrick.com
www.hansgurbig.de
hiraganasensei.com
www.icemta.org
iheartsoftware.com
jpsastronomyclub.com
kanark.com
www.kda-kirov.ru
labirem.fr
leest.app
formacion.rugbymexico.lernit.app
dashboard.liveticket.app
monday.madhive.com
marco-corp.com
www.martinwahlberg.no
marynails.cl
mattlongpre.com
taxisorel.megataxi.com
test-developer.mojarib.io
www.nstpolice.com
www.oorsuthi.com
patinoires.ca
www.penelopefinance.com
pledgerunner.com
nemoto.card.pointpia.com
refergenerate.qderm.ca
quotesofgenius.com
raafconsulting.com
copypaste.stingrey.xyz
taito-otani.com
www.tehnickipregledoliver.rs
toniocorp.com
waiting-ticket.com
app.wecoach.cloud
www.wolfardsolutions.nl
Other domains in certificate