Open
Cached
·
just now
75/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=sandbox.time-lapse-systems.co.uk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 15, 2026
Valid Until
July 14, 2026
72 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
04:28:6B:6B:82:8A:C2:23:D6:93:48:F9:8A:3F:6E:06:4C:7F:50:31:6A:1E:2A:50:5F:6A:BC:9E:CE:E5:A9:A8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
liang-zu.com
gptmt.100.pn
qa.aandiclub.com
adcampus.in
aseka.id
bcmapp.pro
eunchan.bnbd.co.kr
www.byb-ingenieria.com.ar
cancerandheartcarevijayawada.com
carbo-tyla.com
forcemate-demo.ccathletics.dk
app.citechtoolsapp.com
climbingteams.com
portfolio.cloudxdb.co.in
contactvol24.fr
www.contactvol24.fr
dashboards.creativelabs.dev
www.deluxedrive.co.uk
oproxy-dev.demisto.ninja
uat.emarkit.in
fintally.uk
flugkontakt24.de
www.flugkontakt24.de
flygkontakt24.se
www.flygkontakt24.se
genghis.tech
grubenlampe.com
order.hiepthanhtools.com
horsery.com
tinti.hrtech.com.br
i.ifckr.com
if.ifckr.com
infinity.ifckr.com
en.ifckr.ru
infinity.ifckr.ru
www.iicp.org.il
hibrido.indupartscorp.com
zignal.infozense.com
www.innocentestipanovich.it
cohezio-de.input4you.be
stiki.intertec.io
ewords2023.inworks.jp
itemtr.com
control.jakipay.com
jigglis.gay
jolienastyles.com
arena.joymo.no
clarity.jscreatorpro.app
front.kivara.dz
leadexcellence.se
www.progga.likesyou.org
livemarket.top
loubi.me
www.loubi.me
md51.online
sentinel.meofs.com
admin.mezuri.com.br
miggi-dev.ch
bday26.mirmir.space
mkgarage.ch
test.mouthbreather.com
ngenes.co.kr
node-proxy.com
olmitech.com
www.onemilliontweetmap.com
orlin.in
www.peili.de
pensioenbijarbeidsplus.nl
admin.pharmappvet.com.br
danaor.placeholder.tn
popsockets.com.br
www.postpause.de
clinic-v4.prodexly.app
www.produvarovs.com
ravikantnarnolia.me
rehearse.md
rengke.shop
www.rengke.shop
roleplaydiscovery.com
ronagg.com
stage.app.saju.one
nhl.scry1.no
seomultiservice.online
www.shalimarsojourns.com
balance.steellabs.io
www.tajmahaltravelromaonline.it
technicairservices.com
ttm.telly.cz
sandbox.time-lapse-systems.co.uk
toolwebsite.in
trongna-ai.io.vn
trybillr.app
www.tsujiuchi-sr.com
api-data.upflowy.com
www.usvillage.co.kr
maxim.vansteenkiste.dev
weigan.shop
www.wenao.shop
zhwwoaca.com
avatar.zthd.io
Other domains in certificate