Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=gif.khaleejtimesevents.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 29, 2025
Valid Until
March 29, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
41:6A:32:EE:38:12:53:4B:F8:2A:2B:14:CA:3A:3C:FA:A9:E4:95:32:C4:08:C2:FC:26:81:2B:A0:54:A4:82:2B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
flowerlike.app
11521643.peerly.app
11521715.peerly.app
cammington.28east.co.za
www.3f-immobilien.de
atlas.pods.50gramx.com
www.acsoftware.no
resource.hhc.aerus.app
nwt.almeraim.com
www.alphanumericretail.com
andaman.eu
arde.tech
arsense.app
starballoon.arumastudios.com
aspevo.com
client-web-test.aurapp.is
app-staging.betpredator.com
bharathidroptaxi.com
birdysbeatery.com
dashboard.bistroapps.com
www.bravotalents.com
briananthonyhanna.com
build-pro.in
widget.camping.care
cantare.app
beatkelly.celebi.me
www.cnsprojects.com
co-hoot.com
coachnour.com
app.coachtrainingedu.com
download.coincave.app
derbyinformer.column.us
www.commands4t.app
dms.ctaxcrm.com
www.cullet.me
curiosity-driven.com
www.customappdevelopment.co
el.cyber.pe
www.davecore.dev
devquosoluciones.com
dinitystudio.com
discgolf.media
domohada.com
emilyheric.com
formfunction-training.com
www.formfunction-training.com
safi.fundacioninnova.com
go.ghiveci.com
auth-dev.heartfulness.org
dev.hodllabs.io
www.humano.tech
pos.iplugn.com
ironblaster.net
islauriemetcalfonbroadway.com
www.jayadeepneerubavi.com
wb-bpp.keshif.me
gif.khaleejtimesevents.com
lms.leaderland.academy
test.longsummary.com
www.maker.ar
auth.mbscore.tv
dev.meteo.fi
www.motostar.at
dev.myagentspro.com
nebimucaj.de
pic-tonybeton.mentor-stage.neccton.com
tamu.nkportfolio.com
app.oapf.org
app.ola.finance
registration.owqlo.com
www.p-trackings.com
phoneshift.com
app-stage.plantbid.com
www.playguessme.com
www.randmised.co.uk
www.random-videochat.info
foodlabel.rdlabo.jp
lab2enrl.removis.jp
www.rudychou.com
inventory.staging.safetyinminutes.ca
www.saviorup.org
chris.schmid.uno
silverprotect.com.mx
smallti.me
www.smartgardenhub.com
broad-financial.solerabank.com
mulin-admin-dev.stylishop.store
successhomecare.in
www.thoughtignition.com
translocationrisk.org
www.trumanandjessica.com
www.trustmailservice.com
www.turunkiinteistojakone.fi
ipv6cert.valentsev.ru
vermehrung.ch
www.verodelacanaltienda.com
devsilke.vev.design
tvapp.viuapi.io
signin.wecommend.app
betting.xtech.bet
Other domains in certificate