Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=bedirhanokumus.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 09, 2025
Valid Until
March 09, 2026
74 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FC:0A:99:12:0C:F7:57:9A:80:BE:97:06:3C:AC:68:1D:0C:33:F1:DA:13:44:AD:F1:E2:59:AA:F3:E3:85:81:FD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ohparking.com
motor.accessibleuniversaltravel.com
jordan.adadkins.com
v2.newsletter.additive-apps.eu
jkphysio.aeglepro.in
aegro.design
www.albaneselorenzo.com
alqaisimma.com
andrewsmith.bio
artasheskocharyan.com
atxfoundations.com
auramob.fr
elc.bambumeta.software
bashtri.io
bedirhanokumus.com
app.beliapp.com
billion-fabulous.com
blacklake.media
bostonswinglabs.com
www.buddy-thai.com.au
escrow.canwork.io
www.carlopati.com
chetakinvest.com
olivegarden.clau.io
cloud283.com.au
couples.studiorami.co.il
ati.com.vn
www.coretirur.com
daredrink.com
www.deepdesign.dev
deigeo.com.mx
eagleone.dev
edsnodgrass.com
uncharted.elogic.land
ewb-dig-ag.org
url.fbnh.fr
fightstat.com
freedomconsole.com
diary.frogapp.net
lomake.fysios.fi
www.gclasertustin.com
gibsunas.co
gorillasports.lu
www.gorillasports.me
gtknow.com
hayanconsulting.com
hennabyreena.nl
code.heynow.ai
www.jackmaurer.com
kridagames.com
m.kudocook.com
laaroussi.dev
www.leandrograsso.com
admin.legalistan.in
entrenamientokfc.lernit.app
lexarmi.com
lexxio.app
limbus.ai
juicemedia.madhive.com
mipslip.com
rms.motchasoft.com
devadvisersuite.myfinancialadvisor.com.au
newbiathlonworld.com
next-saturday.com
link-comed.nibo.com.br
nik-sytnik.com
ninschool.com
olichaoko.com
api-docs-dev.onsmartpath.com
oopsallalcohol.com
links.opincur.com
overview.one
www.pixelixe.com
psicologaritasimonetti.it
www.puragape.com
revivemeditech.com
roll-init.com
foto.roser.li
syntrip.sayanmandal.space
sdpsupermarket.com
www.serenidadmental.com
aidaperedo.smartin-hclinicos.com
speednoisemovement.com
admin.sprucefm.com
tacticalista.football
link.tahado.app
tdevconf.com
www.throneit.com
tomprice.dev
payment.toy-pro.net
tracerex.com
www.turingsystems.com
admin.uricall-stg.com
track.vesulo.com
www.vivekdubey.uk
w84.ai
walnutlabs.ai
wpinango.com
www.xtian.design
stage-marketplace.zentility.com
Other domains in certificate