Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.cbrunner.de
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 03, 2025
Valid Until
February 02, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
02:08:A9:03:7A:1E:52:76:1A:A5:76:5A:37:A7:50:CE:CA:8D:2F:26:F8:22:25:43:6F:48:0C:4D:5D:96:03:A1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
khomiki.com
722replacement.com
abhijithkarkisaval.com
www.addment.com
al-taswia.com
www.alexandermasud.com
altawakkulpharmacy.com
amyhumke.com
gadgetdrone.async-studio.com
tictactoe.avimukesh.com
beezon.ru
admin.blushingowlstudio.com
bootspruefungen.de
envios.bracelit.es
www.briananthonyhanna.com
workflow-ui.c24.dev
cal-culator.com
registration.cat4school.de
www.cbrunner.de
www.chiraglathiya.com
citizenship-guide.com
www.sreelalithadental.co.in
auth.cuponatic.com.co
dodd.one
portfolio2022.e-edev.de
eealk.com
evanevanstours-us.com
everydayhappychoice.com
antucoya.smartroad.eye3.cl
faladobra.org
www.foxlegal.net
www.gantosa.com
gerarorcamento.com.br
www.info.giustinow.com
www.gluefactory.website
www.gymbarsgt.com
www.hades-swiebodzice.pl
heartingpride.com
www.hekstec.at
app.horizonshoppers.com
auth-dev.hovi.id
www.hyperfieldvr.com
app.imobiliariaangela.com.br
jdnewlove.com
link-yu-chui-sc.jec-digital.com
jongmin.dev
just1factory.net
refermentacao.kadupenido.com
www.kenesty.online
www.leaf-lab.com
link.lesbienfaiteurs.com
test.llamafood.com
app.wu.test.marlim.co
martinmade.me
download.meumulti.com.br
individual-onboarding.midaruma.dev
me.mission-nutrition.at
bardi.multichat.ai
myta.bot
nearthereapp.com
www.newmira.com
noclegiczyzew.pl
jokotai.oopeaa.com
app.ourgemach.com
pandazapp.com
www.paolovavassori.com
www.paulutsch.de
pommodoro2go.com
preservationstarz.online
rebeccameissen.com
app.revrut.com
locshare.rfr.im
ripusapo.jp
www.rosspatman.com
ext.rukshan.net
ruthvidroptaxi.com
www.ruthvidroptaxi.com
home.sanchez.llc
waitlist.sbbc.io
shari-iq.com
app.skilltech.team
my.skinexpert.app
sociallotion.com
solarajobs.com
www.sommytech.com.ar
sydsample.speakylink.com
spoitt.com
supercabs.in
www.taniasanchez.dev
fire.staging.tapico.cloud
admin.technika.com.br
www.tednz.win
timeplacebook.com
trent.sa
veixtech.com
x.appstore.venturay.com
nbna-admin.vsight.io
waltermullen.com
opentfc.yodelit.co
admin.zuzu.io
Other domains in certificate