Open
Cached
·
just now
89/100
SECURITY SCORE
Certificate Information
Subject
CN=*.apify.com
Issuer
C=US, O=Amazon, CN=Amazon RSA 2048 M02
Valid From
August 03, 2025
Valid Until
August 31, 2026
241 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F6:AD:D6:91:C6:2C:05:13:3C:77:98:DC:10:E4:FB:21:18:69:63:97:FB:E2:35:8E:7C:C6:81:29:3B:15:96:5B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=15768000
Content-Security-Policy
Basic
default-src; connect-src; img-src; +12 more
default-src 'none'; connect-src 'self' data: https://apify.com https://*.apify.com https://*.intercom.io https://*.intercom.help https://*.intercom-messenger.com https://intercom-sheets.com https://intercom.help wss://*.intercom.io wss://*.intercom-messenger.com https://*.intercomassets.com https://*.s3.amazonaws.com https://*.s3.us-east-1.amazonaws.com https://*.intercomcdn.com https://*.zapier.com https://zapier.com https://*.bootstrapcdn.com https://*.apiary.com https://*.apiary.io https://*.fury.io https://travis-ci.org https://*.travis-ci.org https://travis-ci.com https://*.travis-ci.com https://*.cloudfront.net https://*.algolianet.com https://*.algolianet.net https://*.algolia.net https://*.algolia.io https://browser.sentry-cdn.com https://*.sentry.io https://*.sentry-cdn.com https://*.reddit.com/ https://www.redditstatic.com/ads/ https://ghbtns.com/ https://google.com https://*.google.com https://fonts.googleapis.com https://fonts.gstatic.com https://www.googletagmanager.com/ https://tagmanager.google.com https://*.google-analytics.com https://ssl.google-analytics https://*.g.doubleclick.net https://*.doubleclick.net https://optimize.google.com https://www.googleoptimize.com https://translate.google.com https://*.googlesyndication.com https://translate.googleapis.com https://www.googleadservices.com https://*.google.com/pagead/ https://*.google.com/pagead/landing https://*.google.cz/pagead/landing https://*.googlesyndication.com/pagead/ https://*.googlesyndication.com/pagead/landing https://*.google.com/ads/ https://*.google.cz/ads/ https://*.smartlook.com https://*.smartlook.cloud https://*.dreamdata.cloud https://cdn.firstpromoter.com https://t.firstpromoter.com https://*.hs-scripts.com https://*.hs-banner.com https://*.hs-analytics.net https://*.hsappstatic.net https://*.hscollectedforms.net https://*.hsforms.net https://*.hsforms.com https://*.hubspot.com https://*.hubapi.com https://*.hs-banner.com https://js.hscta.net https://js-eu1.hscta.net https://api.hubapi.com/ https://*.hsleadflows.net https://*.hsadspixel.net https://cookie-cdn.cookiepro.com https://privacyportal.cookiepro.com https://geolocation.onetrust.com https://tracking.g2crowd.com https://*.g2.com https://*.maze.co https://api-js.mixpanel.com https://*.mxpnl.com https://www.clarity.ms https://*.clarity.ms https://*.lfeeder.com https://snap.licdn.com https://*.ads.linkedin.com https://*.bing.net https://*.bing.com https://redditstatic.com https://analytics.tiktok.com https://analytics-ipv6.tiktokw.us https://static.ads-twitter.com https://t.co https://analytics.twitter.com https://cdn.segment.com https://api.segment.io https://www.youtube.com https://noembed.com https://*.vimeo.com https://vimeo.com/api/oembed.json https://ourworldindata.org/grapher/internet-users-by-world-region https://*.fs1.hubspotusercontent-na1.net https://apify.ghost.io https://my.demio.com; img-src 'self' blob: data: https://apify.com https://*.apify.com https://*.google.com https://*.googleusercontent.com https://*.google-analytics.com https://*.doubleclick.net https://*.g.doubleclick.net https://*.googlesyndication.com https://*.googletagmanager.com https://fonts.googleapis.com https://*.gstatic.com https://ssl.gstatic.com https://www.gstatic.com https://*.google.com/pagead/ https://*.google.cz/pagead/ https://*.googlesyndication.com/pagead/ https://*.google.com/ads/ https://*.google.cz/ads/ https://*.zapier.com https://zapier.com https://*.intercom.io https://*.intercom.help https://intercom.help https://intercom-sheets.com https://*.intercomassets.com https://*.intercomcdn.com https://*.fury.io https://travis-ci.com https://*.travis-ci.com https://travis-ci.org https://*.travis-ci.org https://*.cloudfront.net https://*.s3.amazonaws.com https://*.s3.us-east-1.amazonaws.com https://raw.githubusercontent.com/apify/ https://cdnjs.cloudflare.com/ajax/libs/flag-icon-css/ https://cdn.jsdelivr.net/gh/lipis/flag-icons/flags/ https://www.redditstatic.com/ads/ https://*.reddit.com/ https://ghbtns.com/ https://*.hsforms.com https://*.hsforms.net https://js.hscta.net https://js-eu1.hscta.net https://*.hubspot.com https://ct.capterra.com https://cookie-cdn.cookiepro.com https://cookiepro.blob.core.windows.net/logos/static/ot_persistent_cookie.png https://privacyportal.cookiepro.com/request/v1/consentreceipts https://*.lfeeder.com https://snap.licdn.com https://*.ads.linkedin.com https://www.linkedin.com https://www.clarity.ms https://*.clarity.ms https://*.mxpnl.com https://*.bing.com https://*.bing.net https://redditstatic.com https://analytics.tiktok.com https://static.ads-twitter.com https://t.co https://analytics.twitter.com https://q.quora.com https://cdn.segment.com https://api.segment.io https://*.gravatar.com https://avatars.githubusercontent.com https://*.facebook.com https://*.fbcdn.net https://*.twimg.com https://*.wp.com https://*.fbsbx.com https://ph-files.imgix.net https://miro.medium.com https://i.ytimg.com https://*.fs1.hubspotusercontent-na1.net https://*.trustradius.com https://*.crozdesk.com https://assets.capterra.com https://*.g2.com https://img.shields.io https://images.apifyusercontent.com; frame-src https://ghbtns.com/ https://apify.com https://*.apify.com https://www.youtube.com/ https://*.doubleclick.net https://*.g.doubleclick.net https://intercom-sheets.com/ https://*.intercom.io https://*.intercom.help https://intercom.help https://*.hsforms.com https://*.hubspot.com https://*.hsforms.net https://*.hs-sites.com https://*.hs-sites-eu1.com https://www.googletagmanager.com/ https://www.tiktok.com/; style-src 'self' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-attr 'self' 'unsafe-inline'; script-src 'self' 'unsafe-eval' https://*.hsadspixel.net https://*.hs-analytics.net https://*.hs-scripts.com; script-src-elem 'unsafe-inline' 'unsafe-eval' 'self' https://*.google.com https://fonts.googleapis.com https://fonts.gstatic.com https://www.googletagmanager.com/ https://tagmanager.google.com https://*.google-analytics.com https://ssl.google-analytics https://*.g.doubleclick.net https://*.doubleclick.net https://optimize.google.com https://www.googleoptimize.com https://translate.google.com https://*.googlesyndication.com https://translate.googleapis.com https://www.googleadservices.com https://*.google.com/pagead/ https://*.google.com/pagead/landing https://*.google.cz/pagead/landing https://*.googlesyndication.com/pagead/ https://*.googlesyndication.com/pagead/landing https://*.google.com/ads/ https://*.google.cz/ads/ https://*.hsforms.net https://cookie-cdn.cookiepro.com https://*.hs-scripts.com https://*.hs-banner.com https://*.hs-analytics.net https://*.hscollectedforms.net https://*.hsforms.com https://*.hubspot.com https://*.hubspotfeedback.com https://static.hsappstatic.net https://*.hs-banner.com https://js.hs-banner.com https://feedback.hubapi.com https://feedback-eu1.hubapi.com https://js.hscta.net https://js-eu1.hscta.net https://api.hubapi.com/ https://*.hsleadflows.net https://*.hsadspixel.net https://cdn.firstpromoter.com https://t.firstpromoter.com https://*.intercom.io https://*.intercom.help https://intercom.help https://intercom-sheets.com https://*.intercomassets.com https://*.intercomcdn.com https://www.clarity.ms https://*.clarity.ms https://snap.licdn.com https://*.bing.net https://*.bing.com https://redditstatic.com https://analytics.tiktok.com https://static.ads-twitter.com https://t.co https://analytics.twitter.com https://*.smartlook.com https://*.smartlook.cloud https://*.dreamdata.cloud https://privacyportal.cookiepro.com https://geolocation.onetrust.com https://tracking.g2crowd.com https://*.maze.co https://api-js.mixpanel.com https://*.mxpnl.com https://*.lfeeder.com https://*.ads.linkedin.com https://www.redditstatic.com/ads/ https://www.youtube.com https://a.quora.com https://cdn.segment.com https://api.segment.io; font-src 'self' data: https://fonts.googleapis.com https://fonts.gstatic.com https://*.intercomcdn.com; form-action 'self' https://*.intercom.io https://*.intercom.help https://intercom-sheets.com https://*.hsforms.com https://*.hubspot.com https://*.hsforms.net; child-src https://*.hsforms.com; media-src https://cdn-cms-securitybyobscurity.apify.com https://cdn-cms.apify.com; frame-ancestors 'self'; base-uri 'self'
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
Wildcard CAs
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts