Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=eventstudy.de
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 23, 2025
Valid Until
December 22, 2025
32 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FD:9E:B2:83:A5:CD:A4:F4:6B:77:C3:4A:59:E2:C7:1A:D8:F4:4D:93:17:33:AE:35:08:FB:E0:7B:C2:DF:BC:D0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
thepurpleblossom.co.za
www.celerbay.com
chasecountyleadernews.column.us
shobhapathak.com.np
lumat.com.pl
app.cruto.io
panel.domzis.net
superuser.stage.doorjames.com
eemi.tech
ekhtebaraty.com
eventstudy.de
www.feed.iq
inscripcions.fic-cat.cat
firma.xpertal.firmadigital.com
www.fishomatic.co.za
gentixupdate.getparasol.com
link.gpdrtmaintenance.co.za
split.guzguz.fr
cooking.handbook.gr
horizonteknoloji.com
hudbarbers.com.br
tms.upwork.jcloete.dev
www.kuudeslinja.com
labarfetteria.it
lawatchparty.com
dragonball.lazy-y.com
hapala-dev.lohnbot.at
majesticdomestic.co.za
www.mariusjakobsen.no
www.marseraindia.com
marusho-kanda.co.jp
navi.mbwellservices.com
testdo.mebba.ru
slots.meetzy.io
www.mertechnologies.com
www.mino.social
montinv.com.br
yield.mstable.org
absensi-perkuliahan.my.id
mypersonalcloset.fr
www.sandbox.mypetage.com
www.myranklists.com
customer.myswhag.com
pic-lottoquebecuat.mentor-stage.neccton.com
newautomate.net
nrg.fyi
www.nullnut.com
accounts.nutriassist.es
landing-template.onedollarwebsite.co.nz
auth.kastamonu.dev.ontegra.com
moon.org.nz
dutyfree.ourtasks.io
overuwbuurt.nl
videos.paroledevie-orleans.fr
pocketstylist.ai
www.pocketstylist.ai
promos.pointant-app.com
pracawmedycynie.com
productbases.site
dashboard.propcart.com
n.quesmatic.com
kenco.rabot.us
www.reliancelogistics.co.uk
test.rezidnet.com
rheintal-guide.ch
dashboard.sapphital.com
scortexlabs.com
shemesh.info
sidmotechm.in
sigeacloud.io
sigmundfloyd.com
sitebarber.org
dev-streak.slaying.io
smartfinance360.com
view.smoky.no
sogeserv.fr
www.songsky.app
kisavideo.sosyaldoku.tv
staymatch.nl
stevensonanalyticsinc.com
www.stpeterscatholicschoolgh.com
streamtalks.es
staging.superapp.promo
teachsimehr.org
www.themichaelchen.com
www.tiengtrungbotui.com
maxim.titovich.me
zk.app.tropykus.com
app.urbans.es
www.valeriocomo.com
www.videoteleprompter.com
sch03-orders.waiterpro.com
login.wallpaperzapp.com
naturerleben.we-build.city
club-login.weareferly.com
webitronsystems.site
wemove4uandstorage.co.uk
www.whirredapp.com
www.wilfas.com
yogazoneall.store
Other domains in certificate