Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=yesimozgen.com.tr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 28, 2025
Valid Until
January 26, 2026
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A3:10:84:34:68:DD:4F:63:DF:B7:F0:1C:AB:C8:D6:58:BE:1A:8B:7D:D2:CE:67:28:BD:7F:23:D6:BE:DF:B2:E5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
androidmanifester.com
www.androidmanifester.com
subs.15minuteman.com
www.3langschool.com
abocado.co
auth.aceibmath.com
akmanager.in
al-thawheed.org
hh.anthony-poole.com
antsegseguros.com.br
apinalbolivia.com
apparentpower.net
www.apparentpower.net
assoc-retired-ironworkers.org
www.ayonionstudios.com
banklogshop.mp
letremplin.bfsp.app
www.billable.pro
bingaodopovo.com
amag.console.bringo.me
www.burryport.uk
cjcmch.org
yesimozgen.com.tr
craftpositions.com
creatiweb.site
cs2chile.com
desordre.in
app.digitalaligner.com.br
dojocontact.com
dotek-krasy.cz
drgopalsharma.com
ecc-reemelsayed.com
capital.elevationai.com
elitelivein.com
eloraearth.com
eloraearth.in
nasa.ethanfarrell.ca
www.euclidextruded.com
admin.fazzinigroup.biz
findoc.es
uat.fxhub.co.za
gacano.com
www.gmist-global.com
reports-winery.grapeweb.com.au
gustavbylund.com
gyfdrop.com
www.hexiradigital.com
hotefy.com
hp-werner.de
hyde-livegoods-store.com
tesseract-staging.inamo.in
jeg.li
mta-sts.jy.cl
www.kaninklubb.no
kemph.com
www.kemph.com
en.koenig-ludwig-stuben.net
appadmin.kouyahikosaka.com
z5.ksug.ai
z6.ksug.ai
liletters.app
lovedeliveredcards.com
www.ltcwages.com
nilgiris.makemytriptaxi.com
tls.mcmhq.com
moonio.app
nahuitech.com
naturalgas.fyi
tarifario.nitesincoming.com
orderofthekla.org
www.orderofthekla.org
www.panoramas-chile.cl
parallelventures.eu
www.peacejam.org
peaceofmind.coach
beta.quash.ai
ran-studios.com
api.rarimobiliaria.pt
rasibzaman.com
revolutiondancewearhire.co.uk
accounts.roadbotics.com
seohashtagger.com
bookremeet-canary.spaceeight.net
prices.svydis.com
bodaciviljazminyluis.swanmoments.net
tau.software
1214hotline-ar.techforcelb.com
sandbox.console.tilt.rest
tlthmp.com
www.toworksmile.com
teo.tubot.es
boe.hamamatsu.links.org.services.int.unpaidworks.com
uzayakademi.org
www.vaishnavipowers.com
www.vcu.network
mobile.haven.viancorp.net
vyabyl.com
wealtharc.in
worldhealthlab.org
www.ytolun.com
Other domains in certificate