Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=attendance.danceworks.berlin
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 25, 2025
Valid Until
February 23, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
05:6C:E3:17:A9:E0:BF:D9:20:2D:CE:28:1C:5F:C4:04:A7:86:76:E7:72:60:4D:97:84:72:19:27:0E:1E:71:AE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
creative-demo5.hisy.in
177.0053.llc
hasta.albert.health
demo.alse.online
altos8.com
ansiglobal.com
armchairengineering.com
www.artkom.dev
asepsis.com.au
www.attollose.com
www.aumann.dev
slucnancy.deeplinks.bfansports.com
atenea.bicubo.es
customers.billbuk.com
www.boisetrailschallenge.com
app.carplayconnect.io
app.cassbana.com
geraldsuleh.co.ke
web.chinmaypotdar.com-cloud.net
contenter.ai
webhooks.controlpad.cloud
cordondeplata.com
groceries.cortlan.dev
www.cyclerovers.com
app.dairygoatmanager.co.uk
attendance.danceworks.berlin
danharasymiw.ca
www.dashwaste.co.za
www.ddyy-dayday.com
www.develop.doc.cr
chat.easygolf.net
www.ejzhou.com
privacy.eventdoctor.app
share.fasdo.in
prod.fleetseer.com
duel.gleisdrei.ch
hiveway.app
www.homenetnj.com.mx
admin.hoteles.express
www.incodeo.com
js-api-doc.ipresso.pl
pzu-u.ipresso.pl
www.jagraciella.com
dash.juntosnaredacao.com.br
track.justbeat.in
www.kardynski-chf.pl
www.laitinen.cloud
app.lead-mapper.com
app.litorgize.com
www.loyaltt.app
fins-admin.macademy.in
di.schema.magement.com
handworld.matthewgraham.me
mightyscape.com
orlandolopez.dev
osyou-create.com
payge.app
peopleclub.co.uk
www.performatrix.in
phantomfx.co.uk
pictureelement.in
www.pixeloceanmedia.com
policelab.kr
www.pranavbadgi.com
www.projectagenda.com
www.quehacerlaboral.com
payment.pci.anypay.questdev.xyz
mobile-staging.quincus.com
ralmamun.me
tulostaulu.rauhanranta.com
reproducedpapers.org
www.researchout.com
us.revitalair.com
www.sadqajariya.com
seeingaroundcorners.com
bar.sep.dev
www.shreenik.com
www.sitch.app
www.starlitefilms.com
www.talktoterra.com
combined-iq.tallyfor.com
administrador.taqueriaselpariente.com
techiehug.com
thebedshop.uk
thecodelives.com
link.app.tigris.nl
todorinikashti.com
trashbackindia.com
www.trovilo.co
uberdriversapp.ca
www.ventajagenuinavaltra.com.ar
visualize-colorscss.com
www.waterlionfilms.com
waterplanten.nu
list.weavescan.com
woolhouse.uk
www.world-trip-express.com
wowkitchens.in
www.yashithchanuka.com
owner.yobeeapp.au
Other domains in certificate