Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.minkobmand.dk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 06, 2025
Valid Until
February 04, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8B:A2:71:F2:A0:30:09:26:1F:C3:A6:EB:D9:17:F0:2A:F6:7C:53:F2:30:AD:C5:BD:88:70:15:5D:AA:66:2B:9A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.ai-quiz.de
6d20.com
tg.ainx.pro
aktzinassociates.com
amy.app
assampetro.ltd
www.baste.me
beatrust.com
bebabeggie.com
shop.bistroessart.de
administrador.bom-ec.com
www.builtbyalan.com
businezbays.site
bxstg.com
pe.capittana.com
cashpaycred.com.br
cayler.de
caylerandsons.de
www.caylerandsons.net
cesarburgroots.com.br
classlisty.com
admin.funxon.co.in
www.opriori.com.tr
comicodeo.com
beta.d-cipher.io
tasks.ddswd.de
www.dippola.com
admin-dev.dons.live
dulceeng.com.au
www.e-doctor.io
www.eclatdebain.fr
lei.lums.edu.pk
elettrasistemi.com
33alfred.equiem.mobi
www.exterraspace.com
project-management.grupoxalka.com
hdhub4uapk.website
firebase.yyyr.hidns.co
hospital.hisabdev.com
howmuchsalt.tips
www.iisitasuntokaupat.fi
app.ilore.ai
www.imranrepair.com
www.indal-tec.com
geniusonline.indiandevelopers.org
infinityframe.eu
www.iploc.us
it-assistant24.com
extra.jubihugo.com
kamaladeville.com
kukkii.co
kuuote.com
auth.wolf.lila.com.ar
www.loco.systems
zahlzerlegung.loefflerjulia.de
loigaming.com
madhav-thenappan.com
cloud-harbour.matthewlong.io
meicaminho.com.br
www.memoriesbox.co.uk
mgsapps.com
6zsfhrwlapidemo.milivesystem.jp
www.mindmakers.it
app.minkobmand.dk
mogret.com
component-library-integration.mytechnis.com
www.novakasas.com
probis.pacta-cloud.app
www.parsi.de
pilaresdoser.com.br
polyglotconnect.club
positivebehaviourtracker.app
auth.app-dev.praisy.jp
links.presspay.com.au
dalailulkhairat.razarealm.com
ocupacion2.rflex.io
ct1-switch.specc-dev.riddler.co.jp
robotico.gr
salinasmatias.com
sandranogue.com.ar
sitesesistemaspg.com.br
www.skinidesigner.ch
kristiania.snapmentor.no
www.sonowerkstatt.de
stardevelopment.co
www.storytrain.org
www.studioaeksent.nl
web.sumiprodelacosta.com
aps.theairportservices.com
www.topfgun.com
editor.tqwi.nl
www.unitrooper.com
urban-classics.us
www.vdevelopment.rs
ventajagenuinavaltra.com.ar
bingo-admin.visir.is
www.viverobobafrut.com
vocarail.com.au
autograph.whizpool.com
openmaggieslegacy.yodelit.co
Other domains in certificate