Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.terminea.de
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 12, 2026
Valid Until
April 12, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
11:75:58:8C:D1:E5:A5:E0:BA:38:94:F7:FB:E8:84:B6:1C:B5:F6:DF:A4:D8:6B:06:91:88:5F:7D:5E:94:8B:FB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
login-dev.chatleadspro.com
wttx.28east.co.za
alexsd.com.br
aliev-construction.fr
documents-master.ambihome.net
admin-dev.antaa.app
aonalu.com
law.axsar.com
bapuvidyamandir.com
www.status.bienparabien.com
blacksquad.fit
bwle.in
cars53.in
churchzeit.com
demoalon.clau.io
www.fulnath.co.in
colormind.app
www.crownroyalholidays.com
admin.danhgianangluc.online
jsfordesigners.davemart.in
deeptreetech.com
www.detma.cl
client-dashboard.dgbim.studio
chengalpattu.dropmeoneway.com
portaal.dutchcleantech.nl
www.eptenbe.com
box.ferrara.io
www.fictionengine.com
fine-moves.com
warehouse.flagship.agency
yellow-cab-chi-hub-test1.us1.fleet-dev.com
app.formbuilders.nl
futspots.com
gopherdojo.org
pickup.gorjana.com
handsonnails-dokkum.nl
todo.hotham.vn
beta.ifchecklists.com
booking-iframe.zurich.staging.impacthub.ch
apps.ireporterlive.in
jondh.com
www.journeylab.com.co
www.killamikemilla.com
kiwibot.io
bookings.kusol.co.nz
www.lako-synergy.com
www.lalluvemula.com
www.limpiezatonbel.com
lonofi.com
resume.mand3l.com
metroherds.cash
palabrera.mkfnx.dev
moveosteo.co.nz
www.movitsport.nl
shinebright.myhpgapps.com
nabergall.com
operationify.com
www.paalan1000.com
pades.com.br
pay-2-win.com
www.pcthomatos.com
pfisterer-portfolio.com
pickflix.vip
nfcm.pimr.jp
pokerforthepoor.com
policypaladin.com
app.pontualimobiliaria.com.br
progressivesnake.com
charlas.qbo.cl
admin.recland.ca
www.rentunnel.com
s-hatkanot.com
sassyalpaca.com
dindigul.selvitravels.in
thoothukkudi.selvitravels.in
tiruvallur.selvitravels.in
tiruvannamalai.selvitravels.in
vellore.selvitravels.in
shawalahapp.com
shopsmartapp.com
www.shreebalajienterprisespune.com
patrycja-i-karol.smietanka.net
my.somn.co
www.ssddroptaxi.in
stuart-mellor.uk
sukrutivahini.com
www.sukrutivahini.com
swagdecorative.com
swarmoperative.com
pathogen.talisman.dev
privacy.telereso.io
www.terminea.de
web-staging.themetaverse.link
www.theorbisonproject.com
toyotatrivia.co.za
usynligo.no
www.wesseljacobs.dev
wolfcodes.dev
www.x-phere.com
www.zahnarztpraxis-ueberbacher.it
Other domains in certificate