Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.schweiger-garten-landschaft.de
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 20, 2025
Valid Until
February 18, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
45:E7:61:47:62:CF:AB:CD:4B:04:1C:9B:26:28:D9:86:70:42:20:46:0D:8B:58:D4:B4:D6:8E:F1:F4:D2:9B:AF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dianacosta.co.uk
11223345.com
123simpletax.com
macys-test.3dcloud.io
abidjanan.com
www.acaciainvestments.com
addrprocess.com
www.addrprocess.com
agrogis.co
airlytic.co
www.ajmotor.com
aldorey.com
allaboutnewsapp.com
allforabit.com
www.amrathac.in
www.anasmo.no
aplicacioneseingenieria.com
loan-simulation.ateliee.com
app.atisimoveis.com.br
fileworks.auditaware.app
basayarhyundai.com
eventschedule.basegreen.co.uk
ad.bionluk.com
biuday.it
documentation.brierearmand.com
www.c41app.com
carp-contest.pl
app.casecrafter.net
celtian.eu
www.chaimmoshestern.com
clean-concept-pro.be
shuttle.cross-switch.app
about.degencoinflip.com
desordencrew.com
shop-manager.for.dinii.jp
discommis.com
dnsmob.com
www.draviavemal.com
ericmanzi.com
evolist.app
www.fittotech.net
www.staging.app.formpup.com
status.georgekutti.com
dashboard.getactively.app
mesh.goga.jp
hackmonkeys.com
happyplaykids.com
www.happyplaykids.com
dev.vehicle.hark.eco
huazang.app
isoms.co.za
jaimewarbuses.com
kabakabaci.com
hub.kenko.fr
khuska.app
kokkola-pietarsaariairport.fi
leveling.guide
levii.co.jp
lexilearnai.app
martinez.ai
voice.masterexp.io
mattgoodrich.app
lab.medeintegra.app
lazeeza.megapos.store
mementocorp.com
static.plataforma.must.pt
www.mustergate.com
sandhillsne.mylnk.app
nabile.site
cc.nofi.sh
paddyb.com
pdf2word.dev
app.pillarrr.io
vendor-mailer.premier-pump.app
printplace.shop
rahulrajfurniture.com
rehabo.dk
www.relive.cricket
rewkid.com
abdi.saksoft.app
sandman.cloud
www.schweiger-garten-landschaft.de
app.sejaconectar.com.br
sserman.com
starscout.app
characterise.suchstuff.net
www.teamupwith.org
teleprompter.app
terapart.com
jfac.tomap.page
entrenamientoengrupo.turnosweb.app
dominios.vedo.com.br
app.vexfix.io
vwatch.vindico.cloud
vivastreet.store
link.waldenpond.press
evolutionwellness-my-stage.webplayer.fit
dev.welo.space
www.wezee.in
www.zonetraces.com
Other domains in certificate