Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.tenderbox.my
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 24, 2025
Valid Until
March 24, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A2:7E:15:C5:5C:45:97:66:74:66:15:41:F5:42:D4:34:82:82:3B:0B:21:40:DD:C8:1B:4A:D4:97:A4:64:BD:4A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
stg.viago.space
app.123gartenplaner.de
play.1campus.net
abilsoft.us
stampen-dev.adssets.com
www.aislly.com
coimbatore.akdroptaxi.com
andrewsheppard.com
antonjoncourcolombel.com
production.emil.appculture.com
aprar.cz
atozoutsource.com
app.balbinautica.it
bardotgrupovocal.com.ar
birlagroup.com
bluebayglobex.com
bokiai.com
bryanalvarado.com
cafebuddy.app
meryxmas.carlopezzotti.ch
www.ccclin.tk
www.colmenapole.com
d-inquiry.daikin.com.vn
coora-ai.com
www.cylabs.xyz
data-stealer.com
www.data-stealer.com
www.dezatike.com
www.diamondkrest.com
www.doctorshoesphone.com
ducksinarose.com
netex-validation-reports.dev.entur.org
flywheel-dispatch-hub-test1.us1.fleet-dev.com
console.frontierbase.io
www.gadept.com
app.gao-group.com
requesters.link.gigsmart.com
www.go-osdorp.nl
goms2-staging.greenteg.com
www.heemagroups.com
howtodxb.com
hskhsk.com
app.hvakr.com
www.hvt204.nl
ta.intelyhood.in
link.invbots.com
www.jacopolisa.it
www.janngo.africa
jayandlark.com
jmgwallet.com
tablet.joan.app
jowansulaiman-lebenslauf.de
legacyconsulting.ae
kaalbhairavmandir.mahsua.com
www.mahsua.com
www.maxstudios.in
www.meso.network
www.mikaelstrid.se
muttleysdoggydaycare.uk
fnb.namsutech.vn
www.starjourney.nightspeller.net
non-prophet.dev
oemscentar.com
sandbox.oh-ship.co.za
www.slcschools.opendata.report
lessons.2squadron.org.nz
phngtatthanh.software
crm.pinchnip.com
pocket.tokyo
www.pulsenewsai.com
recipe-hub.it
www.rentalpropertycloud.com
abc.saferhealths.com
salonmarilyn.sk
scottishcastles.xyz
www.shapeup.ventures
w5pxftb5me0oakexkemb.smartimob.io
spacebartechnologies.com
www.sparkflycosmetics.ae
www.spiceneuron.com
www.strozu.com
public.d1.stx.world
swapyfin.com
semadashboardinternal.talktosema.org
tekmadev.com
www.tenderbox.my
www.tgs.ma
thebrproducts.com
www.therules.win
aire-barre.timp.io
www.trendflowanalytics.com
www.trimmeron.in
www.verticalbucuresti.ro
app.vervewater.co.za
app.vittlae.com.br
forbruk.whage.no
dev.workleague.se
www.wsn.de
ppe-docs.xmantis.net
bobola.zlfzx.xyz
Other domains in certificate