Open
Cached
·
just now
91/100
SECURITY SCORE
Certificate Information
Subject
CN=www.helzy.elsetic.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 24, 2025
Valid Until
February 22, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B3:79:8D:FA:A4:E5:D9:EE:C1:0B:4F:FE:C3:95:CB:AF:CA:AF:FB:7A:B4:31:C2:99:D4:F9:20:C6:03:01:4B:CE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000;preload
Content-Security-Policy
Good
default-src; img-src; font-src; +6 more
default-src 'none'; img-src 'self' https://*.googleapis.com https://*.google.com/images https://*.giphy.com https://raw.githubusercontent.com data:; font-src 'self'; style-src 'self' 'unsafe-inline'; connect-src 'self' https://preview-typesense.gfn.de https://firestore.googleapis.com https://firebasestorage.googleapis.com https://securetoken.googleapis.com https://identitytoolkit.googleapis.com https://europe-west1-gfn-lead-in-preview.cloudfunctions.net https://preview.api.leadin.gfn.de https://*.google-analytics.com https://graph.facebook.com https://api.giphy.com; script-src 'self' 'unsafe-inline' https://apis.google.com https://maps.googleapis.com; require-trusted-types-for 'script'; frame-src https://gfn-lead-in-preview.firebaseapp.com; frame-ancestors 'self';
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Strengthen CSP by removing 'unsafe-eval'
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
leadin-preview.gfn.de
facebook.11yearsafter11.nl
abijith.dev
www.accenxis.com
www.adeptrecycling.com
www.alcovex.studio
links-dev.algometra.com
rpc.aztec-international.eu
demo.bisflow.io
sumamoru.bitlock-ticket-service.jp
www.bwemanje.fr
g-lbs2.at.calculatorhub.app
series-resistor.at.calculatorhub.app
auth.checkers.online
webwise.co.il
hrms.stulzindia.co.in
www.stoiccapital.com.sg
creativibes.life
frontend.datenkraft.info
dinergame.com
dosatodollars.com
zazioo.easysignage.app
www.helzy.elsetic.com
enviosredex.com
admin.erdoportal.sk
watch.etisalat-tv.com
web.everlyapp.com
www.goagile.co.nz
christmas2023.goodylabs.com
gparquitectos.mx
gujaratisamaj.nl
huminary.ai
ideas24h.com
igdpn.com
ofgem.risk-radar.illuminet.digital
www.impactingminds.com
portfolio.interimadd.com
public.isoms.co.za
www.kanji.rocks
katonakesek.hu
dl.komidaz.io
thre3.kro.kr
www.lestourneesdesproducteurs.fr
trackbot.letusense.in
lhumain.nl
lullabook.pl
marazsir.com
www.matthewjwright.com
www.mikebodge.com
code.minigame.pro
shikaku-kaigi.minmeeting.com
www.mirakim.com
mithrilhq.com
dreamshop.mpau.eu
www.mydocit.app
www.naturalfertilityofutah.com
nick-nadeau.com
nyami.cat
app.omegaconstructionmanagement.com
oneboard.live
scan.bridge.orai.io
www.payprz.com
web.home-insurances.demo.photofied.tech
picsender.app
pokerwitch.app
app.psm100.org
quiz.party
test.api.resly.com.au
rhemaboyo.com
rivalsteamup.com
rivervalley.company
vitracking.roadcast.net
rocket.pr
www.royaltyfreestudios.com
russwhelan.dev
www.scimos.org
scmicwisconsin.com
scrollking.net
app.seni.mx
www.shop.link
shvason.com
simpli-budget.com
virtual.southbendcodeschool.com
www.stefan-gregor.de
stevencc.dev
www.studioludens.com
admin.sushibelgium.be
calculatedmoves.tallyfor.com
www.thedentalcode.com
web-app.thegoodgoalapp.com
www.theonepage.co.za
kps.time-lapse-systems.co.uk
trainslot.com
transportesaviles.com.mx
tugsdelgerekh.mn
venturecafetalentportal.org
vieclamfreelancers.online
eazi-byls-bridge.waitr.co.za
screens.wntr.io
zdravko6t5.site
Other domains in certificate