Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=planner.snedsted-turistbusser.dk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 05, 2025
Valid Until
March 05, 2026
51 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
64:0B:BC:EA:ED:74:93:4E:79:D2:BF:92:CD:43:79:81:49:DF:95:7C:F9:C6:FD:07:17:CB:29:5D:15:60:4A:40
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
results.quantifiedcitizen.com
5a1q.com
aikyam.in
alacard.org
web.alarmmonitor.de
alojamientoscosta.com
anek.org
www.aplicativovendamais.com.br
artistconnect.de
www-dev.balance-emotionnelle.fr
bemaxo.com
restaurant.borneoapp.com
botreefunds.com
cc.prod.careey.com
vendor.choicemusicevents.org
aura-designer-dev.cloudanvil.net
cloudloom.io
www.pamlms.co.il
buat.itus.co.in
promotion.dgplus.co.kr
sensor.ulike.co.kr
www.creativeframing.co.nz
careers.cu-ra.net
blog.devbez.digital
depots.dpdlocal.co.uk
ecuyle.com
iwik.edu.vn
www.evy.dev
evzin-leonidio.com
booking.framr.tv
www.freeheictojpgs.com
cartmaps.fullport.dev
futurejazz.net
www.geos.rs
customer.dev.helppoydin.com
henrycrm.co.za
www.hgrth.com
home-ai.com.au
hon-q.com
tuanvu.id.vn
go.irishplayersclub.com
link.jadibeasiswa.id
jobaus.com.au
recipes.johnjohn.dev
joseycristina.es
synth.laurent.soy
liziascensori.com
logiblox.com
idl.mobileforst.com
pingu.nandiraju.com
netsev.dev
janaseva-agm.newsbharati.com
www.nextops.io
dy.oneshell.in
dp5705415971045376.order.place
pealton-app.oz-tms.com
pagoselfuerte.com
www.paraearn.com
links.physicswallah.live
pizzagvaniaholon.com
www.pizzariadonpeter.com.br
posadadeltrebol.com.ar
www.prevalentprops.com
reeceautoelectrician.co.za
www.reeceautoelectrician.co.za
app.resumekraft.com
cbs.rflex.io
www.salvoo.app
www.selim.dev
www.sixdegreesofwikipedia.com
www.skate-team.info
planner.snedsted-turistbusser.dk
spiritualmaturitytest.com
portalcoach.stancilventures.com
preview.stembionix.com
in.stillfriends.app
app.suraurgeet.com
www.vendor.swerv.app
beta2.tartansoft.com
www.tatomaki.com
www.teatrodellebiglie.it
internalportal.tennislockerapp.com
admin.thinkbudgetapp.com.au
thomascollegebookstore.com
www.todayescape.com
app.totely.in
breakbyte.tripzai.com
webcomponents-stage.truckstop.com
www.true-time.app
trueahead.com
www.ultralytics.ai
forms.unknowngroup.com
www.varahealthcare.com
velinailieva.com
kampf-beta.vjorngard.de
2022.vlucendo.com
vrcenter-002.vrplus.info
wowe.link
dylink.wrkspot.com
links.yookos.online
Other domains in certificate