Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=gaborpinter.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 22, 2025
Valid Until
February 20, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1A:6A:4A:89:EC:E7:E6:24:9A:06:57:6B:D3:4C:6D:EC:2C:83:51:AE:67:70:8D:22:0D:E1:C5:11:3E:32:63:F6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
lea-apartments.de
304.chinni.online
cpsc.abc-research.at
aelogistics.mx
ahmdaeyz.dev
livecat.anozon.me
apaclic.fr
www.atlasendurhaefing.is
bablem.net
bantuternak.com
admin.beltstripe.com
l.broadlu.me
www.bytaespacios.com
einladung.carpilot24.de
login.clubhubs.com
codebased.fi
test-scrm-app.daikin.com.vn
www.copenmama.com
dayplanner.app
dedonnostyle.ch
derma-wissen.de
drafts.distill.pub
doorjames.app
www.drimeraras.com
dungho.app
frame.duurzaamwonenbon.nl
ecounselingconnection.net
www.fableconnect.com
com.flavrapogi.org
www.foodmoa.kr
games.francisbunker.net
busca-cep.fretecorreios.com
gzg-dev.fsv-aptor.com
gaborpinter.com
getlio.io
l-privatecoach-dev.goalbud.org
www.growth-engine.com.au
resources.guyguzman.com
hurricanesportscamps.com
pocketmaps.icoat.de
www.insideapp.it
main.integralagility.net
www.iresto.id
api.it2innova.com
jamaz.ing
glitter.jenn.dev
udenyca.jeti.ai
www.justshopby.com
khanyecreativestudios.co.za
santiago360.krudos.com
kylenoblett.dev
admin.people.language.org.au
www.lazycaption.com
sklep.lechstone.pl
loveconfession.fun
margaretcampbell.ie
memebuddy.chat
app.menu2scan.com
migiwa-ya.dev
upgrade-dev.migolink.com
nts.misschool.net
mjmremodelandhomebuilders.com
msubot.com
nataniel.co.uk
landing.neoron.dev
dash-dev.newzip.com
timer.nordheim.digital
www.okanaganwellandpump.com
myomnes.stg.omneslegal.com
marioplan.onlinewebapps.ca
get.openwa.dev
outdoor-geek.org
partner.pandora-doc.com
www.pawst1.xyz
bankadmin.paycloudafrica.com
pensioenbijdebrauw.nl
app.peract.io
link.pillyze.com
demo.pitcha.ru
cart.app.platforma.one
links.plattform.app
theboyz.re2fe.com
www.repinc.net
app-voluntario-modules-develop.rogeriossantos.com.br
samuelepadalino.dev
my.scoop-analytics.com
see-platform.com
solplay.de
sompo-de-noru.jp
spocchi.com
astronovaproductid.suitefeedback.com
www.szamidev.blog
bier.tanjadejong.com
www.timezoneconverter.online
azalea.tokimane.jp
ecommerce.topcode.co.za
app.trixxyexpressts.com
tv-insight.com
yarnoush.be
yugin-pro.nl
Other domains in certificate