Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=adventsbasar.schoolnote.eu
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 21, 2025
Valid Until
February 19, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
ED:3C:50:C0:A4:F9:07:7B:B6:D3:CE:C5:05:E3:36:14:A3:4A:75:0D:A3:C6:F8:E3:78:38:BC:CA:D9:13:5B:2C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
arish.dev
111r.co
www.111r.co
1stbet.com
stockmanager.aakashpamnani.in
aeonentertainment.io
www.amsel-integpro.com
architexa.io
baalugirmafoundation.org
dashboard.baogianhanh.app
barcodeims.com
staging.beuwi.app
www.bitmates.net
ichahboun.bixat.dev
saiga.bixat.dev
blackpoolone.com
www.bobbychandokmd.com
www.brewerstage.com
capeofgoodapps.in
chitterai.com
cigsor.app
prasannadangol.com.np
www.samyush.com.np
www.decisionjournal.club
exclusiveapartmentsbudapest.com
farmerstud.io
treasurebox.fentonand.co
findfra.me
www.fotorama.mx
www.fullpower.dev
officetroop.fultongrace.com
gameplete.net
focus-auth.gaunt.dev
www.getkrater.com
gomvp.io
growlight.cloud
www.hautesafari.com
app.hedgehoglock.com
www.hegemony.jp
hotelbrightondaman.in
www.impexology.com
cas-portal-dev.itopia.com
kantindeyiz.net
kiselevtechnologies.com
twiitter.kradster.com
larf-admin-dev.liveb4buy.com
lockyerracing.co.uk
ring.logx.page
malay.dev
www.malen.app
www.mathasa.mx
moritz-gaertner.de
mskelectronics.in
www.nestedstacks.com
nftpause.io
nganya.com
www.nichepopllc.com
nikosward.com
nni-live.de
scrum-poker.octal.es
reader-dev.onelink.tw
www.order-now.app
portal.oskinmedspa.com
www.pandamessage.com
piratekingdom.net
practicalml.net
pursergardenandtreecare.ie
stg.puv.jp
www.pvp.ca
www.quickdisbursed.com
rastechoficial.com
rsbtraders.in
rushsocial.in
amw.rxcx.au
ryandaulton.com
sainsin.id
vidhaivazhi.saju.one
sakirdak.tk
smartlink.sakirdak.tk
sartecsoftware.co.uk
adventsbasar.schoolnote.eu
shelton.academy
sinanlakhani.com
indir.smartexapp.net
tachiba.jp
team-sheep.com
tekbravo.com
therapynomads.com
www.umanglakhani.com
atthaphon.urairat.com
valmar-manufacturing.com
zorgapp.vinkvink.nl
bifrost.vipdesk.com
www.virginswood.com
visitr.app
presenca.votei.app
waktusolat.community
resume.waypointdev.net
wildfirefab.net
www.wunderantrag.de
Other domains in certificate