Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=rfq.csdtenders.co.za
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 20, 2026
Valid Until
July 19, 2026
76 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0D:E5:CB:55:39:7C:64:C8:B2:BB:69:F3:68:26:A2:86:A5:EA:70:57:5F:1B:53:76:93:F8:5B:80:67:A9:ED:69
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.caique.site
ronakitchenplanner-test.3dcloud.io
aiagency.health
karur.aravindtravels.in
www.atelr.com
chepai.autobid.com
bettersense.io
dev.birdkron.com
bitworks-engineering.co.uk
bluvio.studio
bootledger.net
caseyshore.net
catchinfo.fyi
bmi.cgfix.com
www.olivia.chatbotportal.com
datacalc.codeinloop.com
www.couraggo.com
www.creativemindsthinkalike.org
rfq.csdtenders.co.za
dbucher.cz
firebase.dbuvid.dev
delta-consultancy.org
app.docmorris.de
duo-design.nl
www.duo-design.nl
earnedapp.online
verify.everycalc.site
franyutti.eu
www.georginacope.co.uk
manager.getquickcourt.tech
www.gets.cloud
www.goalpointfs.com
www.goproteus.com.br
www.grappigventje.nl
blog.hotcocoasoftware.com
hypermind.co
ikutpo.id
kostiantyn-iryna.invito.link
rfq.isoteam.com.sg
savethedate.jacobs.vip
josetrujillo.net
www.jyra.org
eopdevapp.kbcinc.cloud
keasy.online
kenjeborsten.nl
gstx.khaabarwala.com
khusindia.com
klein-services.de
www.kuchvi.com
www.lexnica.com
www.maisonbkk.com
store.marketmyindia.com
meteriot.fi
www.milenasilva.com.br
morsecode.cz
musik-total.net
neilcuthbert.co.uk
www.neopom.net
neurowaves.in
nutrizioneandrealia.it
forms-dev.nuuphealth.com
namakkal.onewaydroptaxi.co
matael-app.oz-tms.com
www.paragon.plumbing
www.petshieldapp.com
pharrellphone.com
piesano.com.mx
portal.plataformaedge.com.br
uncuentoparalancia.popandgoexperiences.com
survey.preventtool.com
testing.projectocasta.org
dev.mission-control.pwapilipinas.org
manifest.rabot.us
dash.rideyelo.com
robertosecco.com.br
www.saurabhsharan.com
seasonstaff.de
www.seatreasure.fun
www.shortshorts.run
www.siggecarlsson.com
sinapsys-sa.com
solarmed.pl
sphrei.io
srinvisiblegrillsvizag.in
missiontarget.susa.org.au
portfolio-en.szymixo.com
www.takshakevents.in
teachspace.au
multiview.trackscoreboard.com
tsintsivadigital.com
unkoin.dev
vcah.in
vioarrfashion.com
vipernights.com
visitplann.com
tvapp-dev.viuapi.io
preview5.fm.stage.voiapp.io
webexplora.com
xpulse-uat.co.in
www.yyj.me
Other domains in certificate