Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.bionite.pl
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 21, 2025
Valid Until
March 21, 2026
55 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4C:33:09:D0:DB:3B:56:05:DA:8B:60:B8:4D:A6:C1:5F:4F:50:02:4B:BA:30:BE:E5:DC:36:32:11:42:48:9A:63
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
giftking.app
acumen.llc
360.agileautomation.ca
akebonoworks.co.jp
taskforce.alaqsa.tech
t-embed.almeraim.com
littlesis.amplifiedlabs.xyz
www.angula.app
www.apotheosis.io
www.arteescrito.com
appdev.atoms.cloud
bandquarters.fr
beautyapp.app
www.bionite.pl
www.blueavalanche.com
app.blurt.blog
demo.breastfeedingblackbabies.com
calicocreatives.net
www.cargodrones.aero
asquire.co.in
espace.codeffekt.com
www.collabinator.io
media.myshop.com.in
post.myshop.com.in
www.sat.com.pr
ideasoda.com.tw
conectadord.com
demo-webapp.coview.com
cryptopurse.app
davidkneys.cz
wecook.for.dinii.jp
app.disleksiokulu.com
salesdocpilot.dreambigwithai.com
offside.e-onlineservice.com
mmis.edu.ph
www.elfwill.com
estancosdistillingcompany.com
everythingsatvik.com
www.excellentcleaners.com
explocladmetalworks.com
filokar.com
media.fla-keys.com
fluentcontrol.com
admin.futura.healthcare
gamebites.xyz
gfisher.net
api.giraffeql.com
growal.app
www.gruposemprealerta.com.br
hargapedia.app
hoangvultd.com
imiexpres.sk
improvelocal.app
appuat.incendi.io
stack25.informacast.app
petro-tetiana.invito.link
ionafx.com
jadeocr.com
www.kardiowerkstatt.de
www.admin.rynamic.koraxis.com
www.rynamic.koraxis.com
kpocam.com
www.lacnog.lat
leoyrobert.com
kilbi-songgl.limemotion.com
luisesbooks.com
www.educadoras.mijardinjunji.cl
misterrubato.com
morgandesign.de
movitsport.com
web-templates.nanosoft.co.za
www.helloenglish.net.br
www.mifacturador.net.pe
nexusplatform.co.uk
affinity.partnerhub.co.za
auth.partygo.hu
www.patterai.app
www.piccoliamicialba.it
ummahhotel.pyzasoft.com
qrkan.com
www.rhodescre.com
s2-cdn.roadcast.net
saxumlegal.ng
sharratt.tech
www.shez.app
www.skillresults.com
sms.socaltechbridge.org
admin.softdevza.space
sokol.enterprises
soothe.me
srk.me.uk
react-general-sandbox.staffshift.com
chat.standsure.pro
tradein-dev.tenx.nz
thesafeway.com.br
wft-entrenamiento-y-salud.timp.io
tivvit.cz
tokyo-wangan.uechiryu.okinawa
www.warm-aanbevolen-zonmw.nl
weprintwithlove.com
Other domains in certificate