Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=bitzberg.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 15, 2025
Valid Until
February 13, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
66:88:98:F0:28:58:72:B4:50:7B:0F:EC:B0:5F:04:BC:86:0B:DC:D4:A6:F4:C3:F2:E8:DA:7E:00:1F:81:28:4F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
marketing-dashboard.additive-apps.eu
admin.admesh.cloud
www.adri-solutions.com
agilite.io
agnalim.com
aldersbrookpta.org
www.allbees.app
allmocktest.com
amrk.app
dev.arcade.earth
www.ariseengineering.co
app.ascend.fit
content-security.axonify.com
www.app.azami.kz
azekkani.com
baegent.app
bitzberg.in
www.blaqhub.com
brandsight.app
bravoapp.app
browardhealth.care
cv.castellio.de
www.central-snow.com
chriskalfas.com
dronetravel.co.in
kitchen.szfns.co.kr
sticker.digitalwish.co.th
couponsmontreal.ca
credexis.com
dennisostern.com
deorajnursinghome.com
digitaldentallabmg.com
www.eliss.ai
www.emojipairs.com
eng-wireless.com
euroxenia.org
www.fabrilnet.com.br
filipposaretta.com
yellow-cab-chi-business-demo1.us1.fleet-dev.com
galeforcemarine.com
www.galeforcemarine.com
gleser.co
www.gleser.co
pay.sandbox.truemerchantadvantage.gr4vy.app
www.hamnarorbuer.no
ksyariah.heasoft.com
pig.icamping.app
www.ingegneriabernasconi.it
irisaccademia.com
itsyasha.com
jonathanbae.com
info.serpilormanokullari.k12.tr
hearmeout.kanini.top
www.keeg.xyz
kgsclogistics.com
sldev.l2r.in
lansfer.com
lloydboonstra.com
agent.lobb.in
dashboard0.max-estrem.com
mihiran.com
mirangrujic.com
www.mirangrujic.com
moleseyphotographicclub.co.uk
provider-us.mybenefits.ai
najikrayem.ca
www.needshifts.com
netflixgamingclub.com
rems-eop-staging.nside.io
nt9.tech
onnutpethospital.com
www.padmoretechnologies.com
palamuruconstructions.com
www.parisunscriptedshowcase.com
petchpatthana.com
resize.petqueen.app
picathlon.com
tebi.pillahora.cl
tommy.pillahora.cl
qualitasasesoria.com
rakcomputers.net
programming-tool.staging.sasaki.com
mviiii.searchall.site
login.strikeready.app
stylco.ca
dailyhub-nuxt.stylokit.dev
flexify-nuxt.stylokit.dev
nexusai-nuxt.stylokit.dev
www.admin.swerv.app
jd.tkjn.net
www.trexon.in
truelogisticinc.com
lifesciences.virtualexperience.ucl.ac.uk
call.voicex.vn
vowelvoyager.com
www.watsonjonesleather.com
xkit.club
investor.xsolla.com
app.yoryo.vn
zenkuroanlis.com
Other domains in certificate