Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=gentle-map.devstory.co.kr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 15, 2025
Valid Until
January 13, 2026
55 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1B:16:83:5B:4B:82:5D:2B:80:D8:C0:29:4D:5D:22:A7:56:31:BE:53:56:5A:8C:69:D4:F4:B8:0F:D4:A9:2B:5F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
adwuma.online
12rw.io
activaenergia.es
aduwata.lk
iys.agr.ist
www.alexsd.com.br
manager.allindex.nl
www.aokiyamato.com
www.rb.arq.br
www.atrable.org
autocadplan.com
property.bazelink.io
bempolteknuklir.online
widget.bigradar.io
go.billmagic.app
3eprojekt-test-backoffice.cbdata.cz
mosteveryday.cdoe.io
cecen.ar
weedit.co.in
noorcomfleet.co.ke
gentle-map.devstory.co.kr
colladokunstmann.cl
colorwise.io
www.ctlaw.com.my
www.bnbgarage.com.tr
www.sanitariaoceano.com.uy
api.cwsdexone.io
www.dev.cyferlinx.com
darkcrypto.io
welcome.dmddentalgroup.ca
driversys.com.br
biotech.uem.edu.in
certywallet.uem.edu.in
proyectos.estraplast.com
www.ethanensminger.com
go.mimic.eu.org
www.fornaceconta.com
fullstage.app
www.futuriastudio.es
www.globelaxy.lv
hillsviewc.co.za
prodp2pclientb.ivr-platform.com
jacytc.com
jei.is
fakture.joshefin.xyz
juanplant.com
www.kaishi.jp
www.kloa.in
lauradan.co.uk
app.leapflog.io
www.lodzkigamejam.pl
tamagotchi.logandevelopment.io
marshalpaterson.info
cosmote.demo.mbks.io
app.med24.kz
mobviberus.ru
www.movemystuffsindia.com
pe.mvhs.io
centroscomerciales-onsite.mymoons.mx
www.mypaydisplay.com
www.nacs716.com
dqx-test.natagora.be
nerdclub.com.br
admin.nextorder.jp
novoapp.ch
nowship.it
onboarding.onekly.io
www.teknohama.or.tz
zhiti.org.ua
www.crc.org.za
order.zucchetti.preprod.paymytable.com
feedback.project-lithium.com
beta.pronaid.com
portal.propiedapp.co
www.rehabvc.com
au1.revenue.resbutler.com
restopl.us
secview.io
p.sipass.io
www.smartstepacademy.co.za
sullivans.online
www.tanmoykarmakar.in
opus.tclglobal.in
tensorsystems.net
policy.tg-ins.com
www.toan.io
link.toket.io
trimmingclips.com
apec.trueleap.io
upshotech.com
perkakas.vinicunca.dev
canadaapp.wefix.co.uk
app.qualif.wipbycellance.com
www.wizepeeps.com
solutions.worldlink.qa
www.wrcfan.com
calendar.xalliance.io
www.xevenllc.com
kidszone.yksd.com
dev.zazcredit.mx
Other domains in certificate