Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=milad.korjani.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 12, 2025
Valid Until
March 12, 2026
59 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
47:A6:8B:E9:6B:75:47:A2:3B:FB:28:1F:1C:6B:76:74:D1:FF:A1:24:EE:1A:A6:03:A3:42:D9:9A:E8:C8:F3:10
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
audickas.com
liteapp.21store.om
adaptame.eu
auth.africangirlguide.org
agtdijital.com
www.agtdijital.com
ai-jobpilot.com
www.ai-society-su.com
www.aiworkers.cloud
live-airband.alledotech.in
www.ambarglobalgroup.co.za
andrewchapelchurch.org
www.aqsrd.com
platform.athreyamr.dev
lms.eco.atomx.asia
www.blinkhomes.us
www.budmalart.pl
bugdriven.ee
www.cacophonycards.com
www.cherryfield.eu
clubtab.de
media.anyway.co.il
test-fim.eazycatering.co.in
www.codecarvings.com
www.intacare.com.tr
zdu.com.ua
crimsonsix.com
dogfoodlab.io
drubotara.com
www.emchub.app
www.esoftla.com
www.esrig.net
www.fieldmargin.co.uk
www.frazerhatyai.com
x.plasta.freedom.to
dev.gapr.health
signup.garageproject.co.nz
geoffreysimpson.me
getmeasured.app
www.gloriadeocooperative.org
gsshaykot.me
houseofhopebroward.org
babycare.hytechapp.com
myfriends.infinitifood.com.br
www.jadsa.net
dochazka.jduna.to
jochumson.com
annual-dividend-check.kamesuke-blog.com
milad.korjani.com
tips.leonprior.com
libell.us
altimeter.lifewcode.com
lighrent.com
lvisturkutiimi.fi
madness.theater
menteintensa.com.br
www.metromanexpanse.com
www.mgma-mm.org
media.moviola.io
www.mystoryjar.com
blog.nplpl.com
app.padeltactic.com
www.paikariwala.com
piedigital.africa
prueba.pricetravel.com
www.printmetrics.app
backoffice.vip-cards.proespx.com
empresas.promart.pe
psicolorenavalderrama.com
puckwang.com
nuoitoi.quangph.asia
quizmenot.com
re-sto.online
realbluesoftware.com
www.rskcbseschool.com
sampledoom.site
sanduicheria-elshaday.com
sdf-2d.schmelczer.dev
sdholdsworth.co.uk
prometeocab-test.segurosatlas.com.mx
snowchron.com
player.stable.codes
statuspa.it
stellaros.dev
11521400.stratics.io
talentnetai.de
thebibiseries.com
hro.thepetdoor.net
emoticons.thomsmed.com
www.trackfunds.site
tuenarm.com
tuwebxpress.com
www.tuwebxpress.com
kurier.umami.pl
unilytics.univsense.com
projetos.vitorviterbo.com.br
wealth-wiz.com
login.webappsgratis.de
stock.whatgpt.us
tastemap.zhixiangren.com
Other domains in certificate