Open
Cached
·
just now
86/100
SECURITY SCORE
Certificate Information
Subject
CN=www.blastfurnace.com.au
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
46 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
40:AF:FB:0E:57:58:5D:A0:1D:DD:0B:0C:93:BA:D7:59:2E:9A:F8:54:F0:85:69:3C:95:E1:A9:6A:32:69:10:3A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Basic
default-src; script-src; connect-src; +6 more
default-src 'self'; script-src 'self' https://5f3c395.ccm19.de/ https://*.googletagmanager.com/ https://snap.licdn.com/ https://*.doubleclick.net/ https://www.google-analytics.com https://ssl.google-analytics.com https://unpkg.com 'unsafe-inline' 'unsafe-eval'; connect-src 'self' https://5f3c395.ccm19.de/ https://europe-west1-qnips-io.cloudfunctions.net https://*.bitbucket.org https://*.atlassian.com https://*.gravatar.com https://*.doubleclick.net/ https://snap.licdn.com https://cdn.linkedin.oribi.io https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://*.g.doubleclick.net https://*.google.com https://px.ads.linkedin.com https://prod.spline.design https://unpkg.com https://fonts.gstatic.com https://www.gstatic.com https://qnips-gmbh.jobs.personio.de; style-src 'self' https://5f3c395.ccm19.de/ https://tagmanager.google.com https://www.googletagmanager.com https://fonts.googleapis.com 'unsafe-inline'; img-src * blob: data: https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://*.g.doubleclick.net https://*.google.com; font-src 'self' https://fonts.gstatic.com data:; frame-src https://player.vimeo.com/ https://qnips-gmbh.jobs.personio.de/ https://td.doubleclick.net/; worker-src 'self' blob:; frame-ancestors 'none'
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
qnips.com
aavida.com.br
aimaopex.co.uk
www.airzoneholidays.com
aliboasia.com
etsap.athelneysoft.com
www.audioread.com
account.awaio.com
panel.backapp.world
www.being-japan.com
www.benjaminaster.com
synexion.biyyik.com
bkautocorp.com
www.blastfurnace.com.au
admin.bube.business
ccprojetos.com.br
clinicasilvaodontologia.com.br
www.ptc0.cloudns.nz
puskesmas-ganding.co.id
www.intisolusi.co.id
admin.prottoy.com.bd
www.flertflow.conexaosutil.com.br
www.cucunguk.com
www.cybertayoltita.com
dentalya.ie
shobdle.devs-core.com
www.digitalglow.be
dreamsofttechpollachi.com
app.eeaser.com
portfolio.ejrayo.com
elon4afdclaim.meme
client.encoreyaw.com
engelkapital.com
experia.xyz
edu.feralic.hr
www.glidecourier.com
goldserviceid.app
web.helptools.com.br
hollo.ng
vagasway.iicio.com.br
app.imstar.io
whatsapp.irts-one.com
ishmeetsethi.com
ardy-renita.itsyourdayofficial.com
jestplus.az
justaremindertolivelife.com
kawailabs.com
app.kithli.com
biv-test.klarway.com
www.kngtechnologies.com
www.lab-keiba.com
lafraise.app
www.leezova.com
letstangerine.com
quotebuilder.litta.co
editor.loftyapps.com
links.lupl.com
hugo.makiot.com
www.marimo.dev
connect.mindsethealth.com
auth.modheader.com
app.mosaicapp.com
nusa-base.mzili.my.id
www.mygameswishlist.com
www.nicoledebono.com
novonext.com
peab.onpointify.com
phelanjo.io
photio.cl
www.pomcs.com
ptown.app
zoom.dev.revnt.io
fishy.robotpantsstudios.com
www.sbbenjamin.com
misohitomoji.shijimiworks.com
bridgeport.shopstudentstore.com
sis-security.de
www.slingui.com
smartinno.net
chat-gemini.smartmation.com
socialglovespromo.com
auth.stimsims.com
sunsoup.shop
www.susiadapters.com
swiftlog.dev
www.tabmaid.com
tcwindowtint.com
teamnimb.us
thedirectsellingacademy.com
l.tlbx.ir
hiddenbbqbaremenu.triggersplus.com
www.troistech.com.br
app.tuduong.com
corretor.vivaquartzo.com.br
www.vrtue.io
www.webswaysolutions.com
www.wecstechnologies.com
wikiveg.com.br
xeqout.com
xosocitizen.com
Other domains in certificate