Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=blaulichtplaner.de
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 03, 2025
Valid Until
January 01, 2026
43 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5A:0B:77:49:0B:1E:A5:6F:CA:6F:63:47:E1:FC:A1:51:74:69:1C:60:D0:94:69:32:63:29:EA:AD:52:C9:AC:8A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
inishare.com
51college.ca
89-percent.com
aicalculy.com
dev-design.aimmo.ai
ratesomecats.alisongale.com
f2cs.aneezhussain.com
admin.hamedo.anyware.software
ashwanikumar.site
ett.aspirapps.com
www.bajjer.xyz
menus.bevwerk.com
app.bisevoapp.com
blaulichtplaner.de
budgeter.brom.app
brooklynranch.com
carusowedding.com
chakraverde.co
auth.chatpanel.app
ci-design.net
click2naukari.com
amad.com.tr
countriesbeen.com
www.cruuunchify.com
jsprofile.ddns.net
app.deliverynube.com
link.devicecommcepts.com
digicoreithub.com
www.djlatscho.com
dr420.app
www.dragomermud.si
control.eiya.com.mx
elcolibrillc.com
prostuff.elizabethmayorga.me
www.esuconsulting.com
expirytracker.live
f1-sweepstakes.com
outreach.fastech.app
filmfundi.com
word.firmamex.com
forgex.forgeacademy.co.za
poc.gainstrack.com
gamerlink.app
geckopay.co
www.getok.ai
gloud.io
gooseclip.com
tv.gowo.tv
growr.fr
habash.se
app.huminate.com
www.ibragames.com
thsn-hackathon.idems.international
cardapio.infinitifood.com.br
app-dev.information-time.com
learn.itsltd.rw
kevinyejoonlee.com
kitadake.net
knkresearchai.com
kombuchapunk.com
kutsa.com
www.leanweightapp.com
mashabrkvsk.fun
mentaleval.com
monmarzipan.com
crm.mypushop.com
nestadatamatics.in
nexhance.com
omaraldakheel.co.uk
pansper.me
dev.booking.plan2win.be
app.plena.finance
plusu.app
customers.point-star.com
ix.prbst.de
promdemic.info
quniverse.ai
www.quniverse.ai
www.recrql.com
rentelectric.ca
www.rostyslavsokolov.com
www.sasg-holdings.co.za
kimhan.scool.town
sincereefforts.com
stlshowpage.com
www.studysmartapp.com
staging.talkie-walkie.io
www.thoulessart.com
tobarrajorge.com
trasteromovil.com
trsarena.com
www.upgradesapp.com
docs.vendisafe.com
web.vocabtrainer.app
maintenance.vr.world
wanchiang-mbservice.com
www.weavinn.com.br
cantata.xunorus.com
app.zakaz.md
zenmindgames.com
Other domains in certificate