Open
Cached
·
just now
75/100
SECURITY SCORE
Certificate Information
Subject
CN=mobile-gsundheit.at
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 31, 2025
Valid Until
January 29, 2026
80 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
91:89:14:F9:EE:01:61:44:1F:63:07:18:C3:48:12:9A:F5:AB:F0:75:E5:42:62:63:1C:44:BA:DA:13:22:1E:5C
Alternative Names
Security Configuration
TLS Protocols
Forward Secrecy
Limited
(Check cipher configuration)
Warnings
- • TLS 1.3 is not supported (recommended)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.valiantz.app
aksolutions.se
alexandra-propst.at
tracking.anajak-tshirt.com
arnozwaag.nl
arquests.lv
avkids.site
www.axiviotech.com
www.beeplink.com
bizjedi.app
www.bodosup.jp
www.briannestande.com
funding.capec.io
chatrpro.com
www.circgovt.com
kaipache.clau.io
www.gorillasports.co.il
www.wigorwitaminy.com.pl
www.comerciartefuerteventura.com
www.dailyfins.com
dexpenses.dexmo-hq.rocks
didyousee.be
digifortex.xyz
balcao.dmfweb.com.br
emuni.co.jp
www.eth-sat.com
my.fairsnext.com
findiful.com
fiouxlabs.com
simulator.fredx.dev
frnds2705.com
fullscreen-for-googletasks.com
www.genos-glyco.com
app-old.getitout.io
www.gosanblas.net
newberg.harc-app.com
game.heroesbibletrivia.org
hometodayre.com
honista.wiki
www.humboldtcx.com
www.hxcure.io
ide.gd
poczta.ipmountain.pl
newscr.isotropic.network
jordanr.es
jortwiersma.nl
kamnev-photo.ru
leuctra.dev
kochi.linx.live
www.lovebird-trinity.com
mabuhaybbqandgrill.co.nz
daniel.marnet.tech
www.metamaster.app
corp.mkr.wtf
mobile-gsundheit.at
mountainvmushrooms.com
bluetooth.mozys.io
www.neurekalab.eu
www.odaniait.de
onabeer.run
www.p360kiosk.com
picsartmodapk.website
posterize.ca
www.preciqa.com
prohack.prointerns.in
rank-estate.pl
redhotcontents.com
www.rmak.fi
carstats.royhonders.com
resmed.satelite.ai
test-nephrohero.sharpmind.de
www.shellsstories.co.za
www.sheqprac.com
demo-app.shippio.jp
app.simily.io
docs.skateresults.app
eastapp.smpwtokyo.org
auth.cert.stagehub.io
dlp.stepyz.com
tamilsm.au
templates.templay.tv
www.tinysolutionsllc.com
app.tra-defi.it
tunacorp.app
app.ua-stiho.nl
auth.dev-next.undock.com
app.untied.io
staging.urcle.us
admin.valuefinder.jp
www.viki.biz
pos.vikrayashaala.com
vitamingourmet.com
www.wage.jp
license.wev.world
worksheetworkshop.com
www.yilmervivas.com
yocalab.ru
polly.zajno.com
ytun.zcoder.me
zendo.health
Other domains in certificate