Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=okane.thechefkart.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 04, 2025
Valid Until
March 04, 2026
48 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
50:2E:63:4D:9B:50:C2:9D:8D:F0:8B:44:7C:1D:31:18:9D:30:D8:7F:72:64:56:23:01:5B:A3:FC:47:35:D7:83
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
2alan.com
app.school.1101.com
joy-360-spins-cert.3dcloud.io
www.adriantrachsel.ch
admin.dev.airpayapp.com
kopibo.almacreation.co.jp
www.atara.co.uk
www.autohaus-hesse.berlin
api.beekmarks.com
beenalone.com
snapbuy.biqpod.com
portal.dev-next.eckard.bitstudios.dev
boratltd.com
campodegibraltarendigital.bracelit.es
btstg.com
www.butor-keszites-tervezes.hu
www.coder.camp
join.dbbl.app
duit.io
links.eative.com
app.empresas-prosolemca.com
alpha.admin.farmact.de
www.ferienwohnungen-rotter.de
dev.flatshow.property
fridayknight.games
gabrycina.it
karaoke.garrettmanley.com
pantrify.gartorware.com
autopay-clouded-doc.goodylabs.com
gosiak.dev
uclan.graduategowning.co.uk
www.happymatches.com
fili.hibudgeting.com
www.humancloud.me
www.intercomcontabilidade.com.br
incredible.onsite.invue-live.com
mesa.itaueira.com
junjiewei.com
keighly.ca
kerncheh.me
www.kfo-hd.de
www.kiddol.com
meetings.kiehnlein.com
workspace.knoxpo.com
www.koljatm.de
www.latourosquarries.com
lidholm.org
www.machite.com
app.maestrelloconsultoria.com
hersheys.mikmak.tv
app.mobilization.market
quiz.co.moons.rocks
auth.myshowtools.com
pagimovel.nata.dev
naviralive.com
quest.ng-conf.com
www.noahanderson.dev
collision.noih.dev
www.nosmallvoice.com
www.nutriologataniaflores.com
cp5744007204306944.order.place
app-test.outtrove.com
www.peachtreetransportationinc.com
pierredaviau.com
pigsub.com
prevalentstudiorentals.com
static.prima.golf
www.red-pot-studio.com
rpwebconsulting.com
reveal.rubrev-app.com
www.samuifitnessretreat.com
scalenda.com
beta.scoreholio.com
www.shift31.net
shirleys-estate.com
skipvid.com
smartsquad.io
spendlia.com
stakeholdertakeover.org
okane.thechefkart.com
share.tradewatch.in
tradewithsurgeon.com
umpquastrong.net
unemploymenthelpline.com
docs-style-guide.unity.com
admin.usmlesarthi.com
utags.co
www.utkalalumni.in
venture-ist.com
venturestudiocollective.com
venturevillas.com
www.vilket-sl-kort.se
referral-app-admin-dev.vitas.com
cpanel.vnlinks.net
www.walmartmyhealthjourney.com
www.wellify.ai
westcliffathleticscamps.com
wirkaufenihrefahrzeuge.de
portal.withpeak.com
swft.zubairv.com
Other domains in certificate