Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=link.insunet.co.kr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 30, 2025
Valid Until
January 28, 2026
58 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
83:3A:F5:C6:EE:3E:FD:8D:29:0B:27:FD:7D:EB:06:3F:24:F4:3F:95:BD:26:59:38:5C:7A:62:E4:B7:A6:07:F6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
estabiom.pl
sp.claimconnect.4-sure.net
accatering.com
jcon.ai.kr
penanggolfclub-d3040.aimgt.info
alaauto.app
www.alex-eales.com
allocateback.ai
altcode.net
www.amooto.nl
www.apartmany45valca.sk
sonestaguayaquil.appsiste.co
www.armadordepercurso.com.br
admin.bee-data.net
berndttools.com
tag.calven-tech.app
carboniteaccount.com
castalia.io
bpm.cec-uae.ae
cleanup.website
nilgiris.yazhdroptaxi.co.in
buses.co.kr
link.insunet.co.kr
www.star-stream.co.kr
mijn.compaen.nl
coseats.com
cybermoksha.com
dafron.app
dann.org
der-hobel.de
desfoods.gr
digitaldentaldesignlab.com
ebmanagersmusicals.com
www.ezequielestevez.com
findamassagetherapist.org
forget.finance
frantic.app
freakindev.com
appvelvet.getcarbon.ai
s.ghiveci.com
www.giuliapilates.uk
master.staging.gro.care
gujratifarsan.com
collect.huruinitiatives.com
chien03.id.vn
nspo.ideasky.app
www.inaptic.com
www.ingogbe.com.br
test.news.investably.io
maksym-olha.invito.link
codered.iportal.africa
www.jamespickup.co.uk
www.jsilversun.com
kidscampfiesta.com
admin.koaed.com
kuusamonlentoasema.fi
voicemedia.madhive.com
www.manisales.net
control2.mindset.ai
minitodo.app
overthinking.mioceen.com
share.mobiliti.hu
www.monjdev.com
neoadmin.neored.com
nonga.app
www.novotechx.com
www.objex.tech
oiccmasjid.org
www.osacodopao.com
www.patagoniaventures.net
penum.co.uk
www.physimax.org
piston.app
popyn.app
www.qchero.com
quickhuddle.app
calendar.randiny.id
rootedtrails.com
bytebuilder.rumie.org
track.runrevel.com
salud-digna.site
api-utility.settle.eu
sexie.app
www.shake-musik.de
webhook.shimejis.xyz
onix.sistena.app
www.skaneat.com
www.sparqlight.com
app-itoyokado.stailer.jp
www.steveking.site
app.streamsaver.io
mobile.sunbears.com
license-plate-tracker.taydenflitcroft.com
job-cafe-app.tccmd.site
booking.traininglane.fit
veldre-bygdebok.no
tvapp-dev.viuapi.io
diagnose-b2b.wacul-ai.com
wendyforduluth.com
www.zkxjq.com
Other domains in certificate