Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=frederik-und-corinna.de
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 18, 2025
Valid Until
December 17, 2025
32 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7A:AA:C7:35:2A:B5:32:D6:FB:76:0D:67:D0:2C:75:2F:91:73:46:A4:9C:96:7A:EF:9E:C5:D2:3F:F7:34:BF:5E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
siwa.io
akira.t.aeat.us
firebase.agaton.ai
amritjeet.in
angularadvisors.com
antismoking.global
imobiliaria.sig.app.br
asdres.shop
www.ashtoncharters.co.uk
gptdocs.axioma-in.com
benjaminiannetta.ca
www.bertramdesigns.com
ussd-kcbgroup.bluerobot.com
bora-yelce.net
link.borygoai.org
cabanalabs.com
ial-consulting.co.il
publishers.ynet.co.il
tanzania.aid-air.co.il
appdashboard.orra.co.in
lumen.ai.lmn.co.ke
partner.deliquick.co.kr
realestate-saeroy.co.kr
ronsdorf.commulino.de
cort.ar
www.displayflex.dev
www.diziconnects.com
app.doblecarne.co
www.dramarielrivera.com
eenotes.net
www.elartedemivejez.com
xquery.elliat.nl
isaque.fi8.xyz
admin.zeus.fidelissd.com
w247.fndrsng.com
frederik-und-corinna.de
www.garcezmoveisplanejados.com
admin.touhou-flea.ggtk.dev
globalinvestmenthub.com
csblocks.gtoybox.net
hestrohospitality.eu
pharmacy.hippocrades.com
mobileauth.huey.co
www.hussainbootwala.com
sysdata.ibiaze.com.br
vuhaithao.id.vn
www.ifortifyfitness.com
www.imfaizan.com
selectionwithrahul.indiandevelopers.org
www.innoanime.com
www.jmlindseth.no
www.joetustin.com
app.joinjobox.com
shopsales.jopit.com.ar
siscollab.jotacoura.app
kiddosjrz.com
kronfelt.com
launchie.fun
manage.taxi
www.mandrassociates.co
ar-sample.msoler.dev
www.myticketprice.com
privacy-qa.myvaillant.com
nirvaanservices.in
cars-admin.nodelab.no
contextual.nordic-ai.no
www.nufeed.id
onchainrank.com
onlineshop-rockstars.com
palletsrl.it
surf.patrol.co.nz
phoelyx.com
app.piknowkyo.com
type.playhenry.net
auth.promptee.app
mumdimsum.order.pulp.eu
auth.wireless.raza.com
auth.readifa.com
rebornurself.com
reprar.in
rfatex.com
test.romhacking.it
securitycamera.cz
llnadmin.sgfv.be
sharptools.io
www.ssiapaltais.fr
beta.hq.stub.africa
www.techshelter.africa
www.tinhlaisuatkep.com
udayahillscottages.com
insights-dev.labs.valorep.com
swarigama.vidyagiri.com
viewcart.studio
admin.vsight.io
vuequant.com
vwpnt.com
wataash.com
vyapakdashboard.wavepredict.com
witchai.app
zapotestock.app
Other domains in certificate