Open
Cached
·
just now
82/100
SECURITY SCORE
Certificate Information
Subject
CN=www.aktechnologies.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 01, 2025
Valid Until
January 30, 2026
60 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9D:B4:4D:C7:93:FE:06:1D:14:B0:AF:32:44:86:96:FC:3B:F3:2B:7E:D5:E9:80:4C:D4:F3:4C:19:50:0F:C3:35
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Good
default-src; font-src; script-src; +9 more
default-src 'self'; font-src 'self' data: https://fonts.googleapis.com https://fonts.gstatic.com https://ka-p.fontawesome.com; script-src 'self' blob: https://uploadcare.com https://ucarecdn.com https://www.gstatic.com https://www.googleapis.com; script-src-elem 'self' https://kit.fontawesome.com https://*.firebasedatabase.app https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ 'sha256-gPjlli1HEdLlR0AZTY971/wQVOdSkl9mEinLnxrPpJw='; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://uploadcare.com https://ucarecdn.com; img-src 'self' data: blob: https://test.pensioenbij.nl https://prod.pensioenbij.nl https://pensioenbij.spservices.nl/ https://ucarecdn.com https://uploadcare.com https://assets.rekenmotor.nl https://firebasestorage.googleapis.com https://ssl.gstatic.com https://i.vimeocdn.com https://arclight.vimeo.com https://storage.googleapis.com https://europe-west1-pensioenbij-dev.cloudfunctions.net https://europe-west1-pensioenbij.cloudfunctions.net https://us-central1-soderberg-1c9f2.cloudfunctions.net; media-src 'self' blob:; connect-src 'self' ws: wss://*.firebasedatabase.app https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.firebaseio.com https://*.firebasedatabase.app https://firebasestorage.googleapis.com https://securetoken.googleapis.com https://identitytoolkit.googleapis.com https://www.googleapis.com https://api.rollbar.com https://uploadcare.com https://tlm.uploadcare.com https://ucarecdn.com https://upload.uploadcare.com https://ka-p.fontawesome.com https://europe-west1-pensioenbij.cloudfunctions.net https://europe-west1-pensioenbij-dev.cloudfunctions.net https://us-central1-soderberg-1c9f2.cloudfunctions.net https://api.openai.com https://pensioenbij-ai-service-514856867067.europe-west1.run.app https://pensioenbij-ai-service-589834615070.europe-west1.run.app https://pensioenbij-ai-service-732631674536.europe-west1.run.app; frame-ancestors 'self'; frame-src 'self' https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://uploadcare.com https://ucarecdn.com https://*.firebasedatabase.app https://player.vimeo.com https://www.quizbij.nl https://test.quizbij.nl https://www.pensioenfeestje.nl; object-src 'none'; base-uri 'self';
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Strengthen CSP by removing 'unsafe-eval'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
triopsys.pensioenduidelijk.com
www.454motors.com.br
www.6delta.com
abcreating.eu
crm.additive-apps.eu
ai-bms.net
analyze-demo.aiteckworks.jp
www.aktechnologies.in
algotsauto.com
app.aluguelanualflorianopolis.com.br
www.antonyhr.net
admin.carlos.anyware.software
grayhawk.arrowhealth.io
www.beginiaja.com
blog.bitto.jp
tgbot.bogged.finance
www.admin.checklist.bytepic.dev
careocean.sa
dirlink.castpro.live
www.cisibero.mx
www.clarx.com.au
codecollab.co.in
finaccess-staging.grobox.co.ke
admin.collegiatex.com
learn.brainiton.com.ua
conx.es
www.cricketscorer.in
www.criteriumasesoriaslegales.com
auth.dogfood.cyberhaven.io
dartastic.io
app-link.datari.eu
math.deblic.com
ebookmagnets.com
egyptgameshop.com
admin.englishjanala.com
everbrosgames.com
find-yoga.com
vdilinks-qa.gnp.com.mx
healingwithlovelldooley.com
sistema.homedetailecuador.com
www.hublio.se
ibstudyhub.net
www.internationalveterinaryhealth.org
jwashopfitting.co.uk
app.preprod.kjenndinkunde.no
www.konkankayaks.com
lavident.click
beta.lila.rent
lmodonto.com
www.lmodonto.com
ultima.logical.health
admin.lookrec-staging.work
visualization.lookrec-staging.work
chat.macky.in
madillume.site
www.medisec.io
mentakademi.com
www.mercedespasco.com.au
moneyz.id
mrrefrigeratorservice.com
www.mrrefrigeratorservice.com
mysticproductionsrblx.com
najeebfridge.com
www.najeebfridge.com
www.nerinaserra.com
njgyp.org
nutritec.ai
checkout.ora.organic
osirismedia.ca
dev.oto-media.com
ottomansrugby.com
perceptron.solutions
v2.personalapp.se
three-bank.pettiboy.com
www.procoder.ro
ops.prottoyee.com
purestock.in
app1.rhinontech.com
rdc-31.rotaract3220.org
www.s7solucoes.com
sagos.info
scholarlabs.in
sharmainescakes.com
www.skylled.dev
beta5.smilzz.com
somosindustria.org
www.spanalyze.com
cvfirebirdsshuffle.sqwadhq.com
staging-system.t-order.jp
inassets.terracat.co.nz
portal.textifyi.com
www.topibrotech.com
app.unifoodi.com
atlas.utah.gov
jobdesc.utah.gov
mdrop.dev.utah.gov
weedmusic.io
xclusivecarsbasingstokeltd.co.uk
yentla.com
zubairghori.com
Other domains in certificate