Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=stik.nu
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 23, 2025
Valid Until
December 23, 2025
43 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
23:95:12:C6:63:15:07:62:96:AD:F3:1A:E3:6C:BB:88:DE:E5:03:69:B5:53:4F:D0:13:F8:75:4C:70:B7:5C:D4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
julia-und-andi-heiraten.com
www.abeerenterprises.com
catalogo.adamafashion.com.br
agamworks.com
app.akylix.com
anatta.dev
aonalu.net
applatus.ai
appnity.de
bestuniqueservice.com
www.delivery.thirumalai.blackflux.in
my.bookingleaf.com
brahmahandicrafts.com
www.cancelprime.com
www.chakkumkodefoods.com
cheart.io
preview.circup.ch
www.clinicarehavi.com
livegame.ynet.co.il
pushan.co.in
bo.cobrante.es
loopholes.colerobertfisher.com
www.algannem.com.tr
www.cryptoartiste.com
didie.space
hijinks.digitalpants.dev
ecorganic.africa
www.cedoc.edu.py
www.edwardsmyth.com
powerbank-portal.energic.sa
links.energygo.es
www.ethionest.com
fancyu.kr
fanglee.jp
www.fervorhub.com
frozenphoenix.com.au
franco.futura.study
archive.ghiveci.com
gintas.dev
grajeshmhaa.com
guelkebappizzahaus.com
www.gustavopflores.com
iaramcco.com
www.ineterp.com
source.jasig.org
jlt-project.eu
link.joinregimen.dev
app.jollybattle.com
poll2.karriereheld.team
luongbui.com
ver.maquitec.ar
marcoscarbonell.com
www.marklisanti.me
meuproximocelular.com
www.micwoods.com
dev.myfoodplanner.com
mysterycrate.io
www.notrealamazon.com
nyepropiedadraiz.com
panbati.com
app.perkypot.com
personalwalkies.com
dashboard.philipp-schuermann.de
link.picturesofcolors.com
calderdalec.qrq.app
rageinthecagereloaded.com
www.ranykamel.dev
rc7salon.com
realrecognizerealestate.com
timekeeper.roda.dev
rosiebrighton.com
russnak-ingenieure.de
www.saveforfree.com
sayleepradhan.dev
www.sho-terra.com
sic.ac
slopes.info
somafiziktedavi.com
dev.sportbuff.com
react-router-staging.staffshift.com
stik.nu
tenshiko.vn
teozeng.dev
theagaveeden.com
thecoverletter.app
www.thecraftry.com
www.thehelloworld.app
thesingarajah.com
portal.tiendex.com
url.tkorp.com
mybyu.trumankautzman.com
updatemycontract.com
westlandfreight.com
referral.blitz.whaleapp.com
www.whereispaulie.com
www.wonder.deals
wowpokerlive.com
train.wumbox.com
www.xistovillage.com
yokoodining.com
Other domains in certificate