Open
Cached
·
2h ago
77/100
SECURITY SCORE
Certificate Information
Subject
CN=lieferbit.de
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 09, 2025
Valid Until
January 07, 2026
46 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
92:B5:4A:47:90:7C:38:C4:C2:11:7A:DF:56:ED:4C:B2:AB:5E:A8:DB:A9:02:37:E8:AA:87:BE:51:23:FB:A0:11
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ektaengineers.in
www.adagostino.ca
www.artuvan.com
walmarthealth-stg.braid.health
www.broketeer.app
www.caseyshimata.com
www.certificalaboral.cl
chooking.dev
chuckrussell.net
www.cliniqueveterinairemora.com
onecommunitygroup.com.ng
quote.conti-gotechnologies.com
www.countrywafflesmorganhill.com
prageru-dev.cpptl.co
cast-receiver-beta.cure.fit
review.dai5.io
lcs.dcdev.ro
www.easyfinancialcharts.com
annual.ebizfile.com
www.ind.edu.eu.org
expertlly.com
fastmagllc.io
app.fetchpet.com
www.flutterninjas.com
id.fyneapps.com
gardenroomfairhaven.com
www.getevee.com
read.gobio.eu
auth.gobuddy.co
admin.grodok.com
gurutu.in
www.healthviewapp.com
fb.hive.properties
resource.horoscopesocialnetwork.com
nazuna-obi-onsen-resort.b.hotekan.com
www.hotelwire.net
inclouder.com
dymiclink.iou-pay.com
isunmola.com
mashup.itdebil.ru
jamskatingleague.com
www.jugovic.io
dev.kalpkari.com
www.kamisariazanuto.com.br
www.kathytzhou.com
katiehempenius.com
www.keiko.care
app.demo.kukerja.id
login.kydsapp.com
app.laworatory.com
lieferbit.de
conveneai-admin-dev.logicwind.co
conveneai-web-dev.logicwind.co
staging.lolesportsreminder.com
lucaklingler.com
dev.mapleterracedallas.com
marfala.com
recipes.matthewormson.com
karriarrevet.medieteknik.com
metaflare.com
www.minkey.io
www.mstn.com
fmlive.muhriz.com
myinteractiveavatar.com
auth.mysmart.city
noisegrasp.com
lawnlo-admin.noomlo.com
www.notprescient.com
orgesarizeybek.com
orpinfoundation.com
palazzogrossipanicale.com
pedroanibarro.com
photovoltaik-angebots-vergleich.com
potluckpal.com
prerich.org
cfa2.qanty.com
app.raksham.in
recsphereconsulting.com
www.reliancetrafficservices.co.nz
riskrdy.com
roborobotics.com
dev.ryplz.com
r.shopsavvy.com
siriusv.com
link.snowd.com
skyinlab-app.speakylink.com
macutriviajh.sqwadhq.com
stockl.io
link.taynguyensoul.vn
teslacompanion.com
thewyndigo.com
thinkbudgetapp.com.au
www.thisisbeige.com
email-verification.trackdmusic.com
upraisely.com
vendoz.in
verpala.com
app.vinaos.com
www.hml.admin.vojo.com.br
wc.zivro.com
Other domains in certificate