Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=serifgunenc.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 12, 2025
Valid Until
March 12, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A1:0A:AD:08:9E:55:75:10:FD:7D:AC:6D:B8:DE:AC:68:F2:7F:9A:BC:05:7D:9F:0F:D1:CB:4C:71:A1:11:E7:22
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
gerlipp.com
2qip.com
7azzak.com
blog.adityaone.com
agendamaisodonto.com.br
www.altersppace.com
altyanespacios.com
apifaker.dev
www.appgovegan.com
student.arabeelearning.com
www.caseirasproducoes.art.br
bgmw.org
image.bigartwall.com
bitokatsu.com
blue-cactus-seattle.com
bnguyen.org
bonitatailorshop.com
box202.com
casetaellagarillo.bracelit.es
bypassglobal.com
checker.ie
dashboard.checkwise.nz
mis-admin.weerindeinsurance.co.ug
login.colma-cw.com
www.prelead.com.tw
creatingreal.com
dataliberationfront.com
www.debtdestroyerapp.com
www.dentsleepinternational.info
designs2.com.mx
di.dgnidx.com
app.easyflashcard.com
merchanthouse.equiem.mobi
www.esmaplus.ru
findmydraft.co.uk
flatdate.me
www.fludeefly.com
www.fulviomassarelli.net
www.gabrielmarco.dev
links-rtvce.galgo.tv
www.gdgstrasbourg.fr
guitarlessonsoxford.com
www.habidom.fr
codepen.heetvakharia.in
www.heladeriaincontro.com
www.learn.hesscon.co.za
www.homerun.ing
www.impreszions.biz
app.infoappen.se
insofttech.com
interstellar-empires.com
ipgip.co.za
ithyx.dev
jivegraphics.com
kanikeenmutsop.nl
studio-aws.kiswe.com
infopoint.kiwisignage.com
www.kjdr.org
lethanhthanh.com
resume.levibarker.com
sketchfab.lightup.io
app.linkball.me
rewardsprototype.londonappworks.co.uk
costallc.ltl-xpo.com
metricas.cl
dashboard.dev.microwd.xyz
mlmdb.com
private.mooney.agency
mvp.futbol
redirect.naxii.pl
oliveiraneto.app
hub.orangeroofs.co.uk
pittsburgh.profit.orderprinting.com
app.ouest-france.fr
opendata.plastic.research.pirika.app
files.pirika.org
polhdoo.eu
sce.posbel.be
www.pushburger.com
pxln.io
info.rapimoney.pe
serifgunenc.com
www.skooog-tech.se
www.snappyxo.io
gcs.spafinder.com
mtsuscratch.sqwadhq.com
mtsusweepsadmin.sqwadhq.com
niuswadmin.sqwadhq.com
www.stacks.bet
kurgan.tallyfor.com
tilpservicios.tilp.es
hocsinh.toancachep.vn
livre.tousinfluenceurs.fr
gotgame.urartusoftware.com
factoraje.ventusleasing.mx
www.votto.net
windsurfingnewsgreece.com
withkayros.com
app.workdiary.online
deeplink.yettel.bg
Other domains in certificate