Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.melutec.de
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 25, 2025
Valid Until
February 23, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
51:15:65:C2:7B:FE:2D:1D:94:1C:E8:48:20:92:D9:48:6C:A3:2F:1F:B0:1B:D2:81:A7:6F:F9:BA:0A:1B:59:A4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
oncpatient.org
www.20mintabletop.com
www.9revolution9.com
woman.agriweather.online
www.alconost.com
alinogo.org
alternatives4aging.com
blog.amithgc.com
bekahukuk.com
bulk-comm.com
cerrajeria.uy
www.chiragtoprani.com
www.classfolios.com
dev-app.cleanerstomydoor.com
orientaltours.com.sg
www.coronadoroofing.com
www.coursewagon.live
www.deepwork.ai
www.devecap.com
v4.beta.exchange.dexkit.com
easternspadefoot.com
europaburger.com.br
farawayupclose.nl
www.fazeli.dev
training-center.gardez-votre-permis.fr
links.gems.community
gnvloveslocal.org
goog.men
grabbaggamestudio.com
use.grid.studio
grinwrap.com
guitarlessonsyork.co.uk
admin.h-backoffice.com
questionnaire.dev.haleoclinic.com
frakt.heidenreich.no
wa.hemisphere.digital
horrisbergercraft.com
app.incentable.com
interestcharge.com.au
www.iqmor.com
www.jelleggorbe.ch
www.joelt.me
admins.js.eco
iot.kcrt.net
crm.keoworld.com
landover.io
utpoanas.lapieza.io
www.leodiperna.com
wtlmd-app.lims-plus.us
www.mathieuvacance.com
app.melutec.de
mframe.ca
mmelendez.com
bll-apply-staging.money-phone.com
poteligeo.mtxgrp.com
www.munnorkprivateisland.com
www.ncase.app
www.nickellsworth.net
niki.nieuwkijkduin.nl
www.nomadscouts.com
www.nziswano.co.za
oceanfriends.ai
overdueweevil2.tk
panzeri.rocks
app.pappyon.com
dl.peract.io
pkpartner.pl
praiseyou.online
pv2-canje-digital.prestavale.mx
account.prestoexpress.co.uk
invite.puml.io
recal.ly
renovaclinic.in
seniv.studio
www.link.test.shoofti.com
sudokuonline.pw
pancaran-virtual-assessment.talentlytica.com
tango8fest.com
www.tbint.org
www.testndev.com
thehopeit.store
hillsvet-dev.thepetdoor.net.au
pirone.thetislive.com
admin.vichy.vv.toysfilms-interactive.com
user.trashbackindia.com
design-grant.trustedaccountant.nl
admin.trytasky.com
twentyonepilots.wiki
bestellen.urfa-nordhorn.de
onboarding.viadee.de
instedpatient-dev-feedback.vicenna.com
vywap.com
webflame.co.uk
wenushka.com
matt.wkt.wiki
ci.woovapp.com
wt-navi.com
yassermorad.com
parking.yoojongwoo.com
koi.zabaat.com
Other domains in certificate