Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=bundle.hnds.de
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 06, 2026
Valid Until
April 06, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BC:91:A0:90:E9:74:58:B4:EB:E6:B6:1D:6F:B1:6B:1C:9D:F2:78:03:66:80:86:67:93:6E:F0:46:C9:DB:07:D8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.0
TLS 1.1
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
Warnings
- • TLS 1.1 is deprecated and should be disabled
- • TLS 1.0 is deprecated and should be disabled
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Good
no-referrer
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
73 domains
bundle.perspective.co
bundle.angeln-shop.de
bundle.angelschein-24.de
bundle.angelschein-ratgeber.de
bundle.angelscheine.org
bundle.autismuskongress.net
bundle.bahmannshop.de
bundle.befreit-essen.de
bundle.benevi.de
bundle.blackroll.com
bundle.bosbach-consulting.de
bundle.casarista.com
bundle.christinasternbauer.com
bundle.clever-fit.com
bundle.consumercheck.fr
bundle.dailyrituals.de
bundle.dailyrituals.fr
bundle.dasgutelebenmagazin.de
bundle.derma.plus
bundle.diebestencoupons.de
bundle.digitale-safari.de
bundle.endlichschlank.de
bundle.erschoepfungspandemie-kongress.de
bundle.financialfreedomacademy.com
bundle.fishing-king-gw.de
bundle.fishing-king-university.de
bundle.fishing-king.de
bundle.fraugefragt.de
bundle.gesundheitsdeals.de
bundle.glow25.de
bundle.glow25.fr
bundle.handangeln.de
bundle.hnds.de
bundle.inside-beauty-magazine.com
bundle.isleofmind.academy
bundle.isleofmind.com
bundle.janbahmann.de
bundle.marketingoffensive.com
bundle.masteryourcard.de
bundle.medi-journal.de
bundle2.medi-journal.de
bundle.medumio.de
bundle.online-angelschein.de
bundle.online-pflege-akademie.de
bundle.online-trainer-lizenz.de
bundle.onlinepflegeakademie.de
bundle.parkinsonkongress.de
bundle.passion.io
bundle.puschies.de
bundle.rosental-business.de
bundle.rosental-organics.ch
bundle.rosental-organics.nl
bundle.rosental.de
bundle.rosental.es
bundle.rosental.fr
bundle.rosental.pl
bundle.rosentalbeauty.com
bundle.sabro.de
bundle2.sabro.de
bundle.shaolin.online
bundle.shaolinspirit.online
bundle.shaolintemple.eu
bundle.shihengyi.online
bundle.snocks.com
bundle.social-academy.at
bundle2.social-academy.at
bundle.stoffwechsel-guide.de
bundle.unverschaemt-erfolgreich-als-frau.de
bundle.up-lift.de
bundle.veda360.de
bundle.viktilabs.de
bundle.wachstumsturbo.com
bundle.wechseljahre-guide.de
Other domains in certificate