Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=formularz.superpaczka24.pl
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 21, 2026
Valid Until
April 21, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FF:73:A2:8A:D8:34:E5:61:0E:DC:CE:FE:48:47:7A:AA:1F:AF:FC:BA:7B:CE:3C:E5:30:6A:E5:BB:0A:DE:6C:78
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
app.smscubano.com
dev.123games.app
aglide.co
click.aio.network
aisportswatch.tv
ak-hpk.cz
analytics.apxor.com
arabs.jp
www.atlon.app
www.bennotielen.de
www.blockrocket.tech
www.championsja.com
chi2create.eu
claudiomerida.com
book.bnbd.co.kr
code-witch.com
connect.fea.flgroup.com.my
ctrlaltbox.com
cxam.co.uk
crossplay.danubehome.com
prueba1.dashport.run
defimath.ca
beta.deployplus.com
www.dimitrigrangeon.com
djflame.tech
egshell.com
elictronics.co.za
basis.facet-accountants.nl
www.fanaro.app
businessportal.funzeventz.io
admin-staging.geneowebapp.com
link.get-drop.com
beta-app.gohighlevel.com
www.golfi.me
www.greenvillagesrl.it
halohairderbyshire.co.uk
test.hive.properties
ianimate.studio
partners.onebangkok.sustainability.in.th
www.indemnitevelo.fr
dev.inventy-app.com
pf1.irdo.net
matchmyuni-stage-1.ischoolconnect.com
www.jackomeara.xyz
jellyboystudio.com
storybook.jicloud.org
labsinnova.cl
ondernemers.lokalebon.nl
meayuda.cl
course.milavet.lt
dev.mugclub.beer
musicplace.app
productos.informacion.my.id
www.py.n00kl33r.org
nailxpress.net
dadeldhura.nepaldrivinglicense.site
dhankuta.nepaldrivinglicense.site
doti.nepaldrivinglicense.site
dumre.nepaldrivinglicense.site
kawasoti.nepaldrivinglicense.site
system.networkassist.com.au
newsprovenanceproject.org
platform.desk.nexat.de
join.nodemy.info
nordev.com.ar
oiler24.pl
onbitclinic.com
www.mak.org.in
outfitz.app
mateoetlesamigxsexpress.pinkbeton.com
dev-touch.plenion247.eu
pongdak.ponorder.kr
quarry.vc
ranpe.fr
renter.services
demo-portal.riyo.io
www.rodrigofrancodelima.com.br
app.rondombaaz.nl
zoom.scj.io
app.securityamperu.pe
support.seino.ai
app.dev.serviceo.me
www.snoo.app
eventos.sonae.pt
speech-vitals.app
formularz.superpaczka24.pl
www.swbase.com
www.tdsanierung.de
ppp.team-success.nl
thehomecg.com
i.thx.to
my2.touchplan.io
lungyikphuketemenu.triggersplus.com
app.unifiedai.tech
uzurispace.com
warhammerquest.se
staging.webzabe.rocks
dev.wiselysoftware.com
xiobit.com
admin-dev.zagenzagen.nl
Other domains in certificate