Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=sis-schadensmanagement.info
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 25, 2025
Valid Until
December 24, 2025
43 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E1:D7:67:0F:94:F9:5E:DD:C1:95:6E:5D:F8:20:77:BC:84:21:52:3A:AA:4E:6D:46:CD:DF:2A:40:9D:2C:A7:9A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
therealnews.in
admin.1kmwine.com
laz-sectional.3dcloud.io
ankitsharma.work
portalexames.appmeupet.com.br
appmusicstar.com.br
form2.argos-solutions.io
arosteknik.dk
private.artisticyoga.com
dashboard.benchmarkprotocol.finance
email.dev.benefitsboard.com
www.bridgerjones.dev
cecilebinsztock.com
chauhanvijay.in
servitzhome-logistics.fritz.co.il
a1b.co.in
www.digisailor.com.sg
cursomel.com
www.dankira.app
darmaastawan.com
develop.demane.it
denisiv.com
app.drainify.io
www.dziemborowicz.com
www.evrentan.dev
www.fertiready.com
gpuminutes.com
social-media-dashboard-with-theme-switcher.fm.grzeg.pl
staging.app.hemmi-kikaku-shopify-app.com
chb.herstelverzoek.com
hisesafety.com
iddevelopers.net
blacklist.illuday.com
primitives.infrasonics.net
www.app.intecc.org
itp.im
jaypatil.me
jjs.life
joannacox.rocks
jpg.cool
www.keplerai.app
mms.kingdomappsolutions.tech
kingdomstudios.io
www.aspnetcore.labodunet.fr
alpha.learnidy.com
next.staging.learnlink.no
www.localcast.app
mindlike.ai
modgamestation.com
www.modgamestation.com
short.moscode.dev
premium.motionads.agency
www.muchidea.xyz
community.newfocuschurch.com
opentrails.hu
www.pinlabs.in
www.projele.com.br
app.ps-dev.prospectstream.dev
vandrimmelen.cts.proteus.nl
www.ptown.app
www.quantumenergy-e.com
quizlifyapp.com
share.radioly.app
www.rafaelvs.me
csgames.recursyve.dev
sme.ripixel.co.uk
romines-games.com
reportes.metrogas.salas.com.ar
medspeech.sauzetmed.fr
www.scsuowlscamps.com
silverriver.hu
sis-schadensmanagement.info
sis-schadensmanagement.online
www.sis-trocknung.online
www.sis-trocknung.org
handidanse-avio.smartof.app
www.snkrradar.com
web.sommo.io
splitbits.app
supfoot.com
play.thebermuda.net
theorigami.io
www.theotherbrickstudio.com
rvh.thirdeye.app
circle.toptuber.co
www.trymeel.com
100actitud.turnosweb.app
twopixels.games
open.urmytype.app
usv.jetzt
varejo360.com.br
vibingwithclaude.com
feedback.waiterpro.com
www.waterwell.info
tradeunion.wfrs.rest
wibce.de
web.wisually.com
yada.us
zealousinscreens.au
zurvive.gg
Other domains in certificate