Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=drahtek.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 26, 2026
Valid Until
April 26, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
83:FD:FC:BD:6F:75:04:50:B5:CC:A0:14:D0:F0:06:EE:AA:FC:71:C3:85:97:44:15:4C:72:8B:C5:8F:25:3F:3C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Basic
script-src; object-src; base-uri; +3 more
script-src 'report-sample' 'nonce-3BkPv-ew3r0TkbDIE-Wxew' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self',require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
exp.brv.me
www.36locks.com
abperspektiiv.com
adellodge80.com
ansim.dev
8wallpapermix.apptget.com
arduous.art
arniepalmerbikersclub.org
autonlp.ai
azizalbahar.com
biheart.au
app-uat.blueprint.beauty
bluntmamba.com
sahara.bookclubgames.com
roularta.newsbutler.bothrs.com
content.b-dev.brd.so
byupro.com
www.carthagogym.com
agentes.castia.com
app.ccmboss.com
play.cervonwong.com
cilawellnessafrica.com
ontour.co.in
app.gomama.com.sg
repairs.crateandtools.com
powerbi.cubefy.com.br
decodingscience.org
tapes.delirium.com
timesheets.designandcode.com
drahtek.com
drycleanoasis.com
eeshahospital.com
elecafe.ca
gtag.emptyobjects.com
admin.facturanza.com
dash-protagonista-beta.felipemarx.com.br
sls.felipemarx.com.br
flockar.com
tw.fundman.ai
www.gejjogames.com
www.getcallrecorder.com
www.growth.cards
helomatrix.com
hillbarnlabs.com
www.historiaparaviagem.app
icebenitez.com
interval3.com
iot20k.com
www.ironwoodrpg.com
www.jobisano.com
journestra.com
atcollegedevapp.kbcinc.cloud
nfc-test.kitsbetter.com
konjai.com
www.livingroupinvest.com
check.lumbungdagang.com
www.malachase.com
hml.app.marinatune.com
marvelrecruits.com
meal-gen.com
medicairsystems.com
nucleus.partners.medics.academy
mesirendon.com
mgruszecki.com
portal.modaverao.com.br
www.movimentohep.com
link.movisis.com.br
app.mtrans.app
muscleauditor.com
web.neatpocket.com
nichipro-award.com
www.nutrihabits.com.mx
oliviawhale.com
oto-media.com
www.outdoor-geek.org
palladiumbau.com
manage.patrol360.dev
www.prayday.app
www.prezziebazaar.in
receiptsheet.com
scorizen.com
scrizzr.com
admin-portal.shopthrilling.com
sitepenis.com
slapnpay.com
starshipstalker.com
t-r-admin.app
taichungministry.com
taliowisko.com
www.tathomp.com
www.themichaelskolnik.com
thewinterborne.com
beta.traincycle.org
www.uphotelnaples.com
www.vimandgit.com
www.walkofmind.com
wesamabadi.com
whereisjimmy.world
img-resizer.qa.wunderkind.co
yunacaba.com
Other domains in certificate