SSL Certificate Analysis for core-technology.co.kr - Security Grade & TLS Configuration

Open Cached · just now

77/100 SECURITY SCORE

Certificate Information

Subject

CN=www.realitystat.com

Issuer

C=US, O=Google Trust Services, CN=WR3

Valid From

September 28, 2025

Valid Until

December 27, 2025 41 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

C8:4E:18:86:73:B1:EC:09:44:DB:C0:A4:FA:1A:51:C5:CE:F4:7D:A2:1B:EE:B3:CE:91:7E:2D:36:52:FE:B5:22

Alternative Names

100 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31556926

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains

core-technology.co.kr

Other domains in certificate

shop.activatord.co.za

portal.agricaph.com.br

www.anagramsgold.com

www.andamp.digital

app4sport.com

mobile-tasktrack.appsolutions.top

artemis.studio

www.articwoodtech.com

link.assinauai.com.br

atomic.codes

baobyte.com

stakepool.beyond-agentur.com

braintree-it.de

briefclass.com

www.brogan.app

bw-bank-live.de

cerealometer.com

verify.chesscardinals.com

shop.club-hero.com

parents.juniorbank.co.il

www.danieltothmusic.com

debately.ai

sonoma.integracao-produtos.doctorlib.com.br

app.doubletwist.com

www.e-ceos.com.br

www.echowear.org

edyant.com

sync-afy.elinkfinance.com.au

usecases-stage.emporix.com

fsm.forthe.top

fourmoresupports.com.au

bps.geodata.app

miembros.goboxusmx.com

calendar-demo.goga.jp

graobr.com.br

grumpyroyal.com

grupoaljo.com

juliaevk.com

karazon.de

app.kdolocal.ch

hml.keepfacil.com.br

khidmago.com

kingsofstrategy.xyz

kitap.one

ko.construction

www.kosmosmusic.ru

account.editor.langsmith.co.jp

www.ldw.jp

warehouse-beta.lifo.ai

mahjon.gg

www.mahkotabumi.id

malawebs.com www.malawebs.com

www.mentorher.in

monotony.app

www.narita.link

intranet.natstone.cl

nestifycode.com

www.nexthuman.me

www.neygutemberg.com.br

go.nobuy.app

www.novacovici.dev

oacsolutions.io

air-cape-town.org.za

perfectweight.app

www.perkin.info

barcode-maker.ponwink.com

www.prezsrl.it

questioncomputer.com www.questioncomputer.com

www.realitystat.com

admin.redbluejd.com

www.rodbank.com.br

bizmo.seita-consulting.com

roger.softmaze.at

stanpl.us

stormbase.digital

suhashbollu.com

summonerlab.com

suzetteiversonwellness.com www.suzetteiversonwellness.com

technologydao.xyz

tekitingressos.com

www.tenderpro.io

www.theavenueapp.com

togglebit.co.uk

tomsites.fr

www.transpactrading.com

admin.twipi.es

v2.uppercase.no

usewerank.com

venceslasgbaguidi.fr

wondersys.app.dev.wonderbudget.com

woow.party

admin.multi01.wowdesk.jp deccs.wowdesk.jp

plastic-advocacy.wwf.no