Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=partners.zilo-energie.io
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 22, 2025
Valid Until
February 20, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A5:84:4B:15:08:8D:96:E1:4B:60:4E:68:AA:98:5E:6F:F9:0C:79:F9:D8:7C:B3:16:C7:6B:3D:21:E3:9D:6D:A7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
o-o.sh
www.aberostom.com
tutoring.alexbainbridge.co.uk
www.allerly.pl
www.andydierker.com
admin.anisehealth.co
www.arthurkyupelyan.com
at-home-doc.com
www.sharedev.backlot.studio
www.pcoscare.balm.ai
bambinobundle.hr
gruppoiren.beaconforce.com
devartist.beautinda.de
backend.benellicaddy.com
www.bitsuneed.com
dev-dashboard.blendid.com
bookstruck.in
www.boostify.biz
www.bootpruefung.de
buynicecards.com
cavemanscookbook.info
centreindustrielfroid.com
www.chatmessagehub.com
cianjhan.com
cinabellis.ch
cincinpintar.com
techtitans.co.in
codellama.dev
backoffice.staging.copyrightagent.com
cv-dz.com
www.data-works.ch
dawnkoehlerinsurance.com
staging.dmap-community.org
docelabs.com
dolanhomeimprovement.com
www.eastwest.mn
eimi.chat
www.elliottnixon.com
www.enloka.com
admin.etabx.com
europakommunal.de
famapassport.com
fastdataconnect.com
redalertsportal.foodbuy.com
www.frengen.com
portal.freshii.com
chess.greymat9er.in
hippopitch.com
admin.holidayinfinite.com
app-staging.infiniteobjects.com
iraconferences.com
jacobilin.com
www.jessievangundy.com
jlcebrian.com
jlliew.com
auth.kyboscloud.com
wahlen19.langenthalertagblatt.ch
bar.laughlounge.ca
trivia-dev.letsdive.io
miterabit.com
motto-nft.com
agent.mydigitalpayment.com
contrib.naloxofind.com
nelsonvilela.com
moon.net.br
neuralworkx.com
qeeg.neurologic.academy
auth.conqore.niceshops.com
nicolasneudeck.com
www.nysdesignandengineering.com
okwantufo.com
ozansevkin.dev
www.pdpf.life
open.peppy.health
www.poornasreecloud.com
franconnect.propelledbrandsdev.com
ptone.com
rainfall.one
raposo.dev
apidev.reitcircles.com
panel-clientes.sandbox.resuelve.io
richmondspiderscamps.com
api.robin-ads.com
www.rohanmehta.com
sandyrose.com
otp-generator.santoska.cz
scentbyceremony.com
www.silverriver.hu
hshs.strongline.smplabs.com
training.splixcube.com
auburntriviagame.sqwadhq.com
ras.strukovnasamobor.hr
active-time-dev.tomcurran.org
valesol.fr
www.vitormalvestiti.dev
www.wainery.com
wecodelife.in
xavier.dev
www.zaghora.com
partners.zilo-energie.io
Other domains in certificate