Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=novelpedia.co.kr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 04, 2025
Valid Until
February 02, 2026
79 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
29:11:B3:F9:59:9C:58:8C:CC:92:C2:B4:44:79:E9:FB:66:B8:F4:06:78:48:1E:70:A6:B1:AB:1B:EC:1D:B2:47
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
rlicmicsolar.com
clavis1.20flow7.com
abiarchiv-bebe-dresden.de
accounts.acimce.app
monitoreoambiental.adrianaticonipagutierrez.com
amaltjose.com
ammdahab.com
bread.anaisvs.com
www.artbyeva.co.uk
asbetec.com
teads-cartier-santos.atelar.com
www.beestons.com.au
berkeleyconsultinggroupllc.com
bmozi.com
canazei.bike
staging.app.cargotic.app
bringbackmemories.co.in
asset.devkids.co.kr
novelpedia.co.kr
app.fuelcheck.co.zw
codern.co
winfarm.com.ph
optimak.com.pl
www.combatgearco.com
cosechame.cl
www.dashn.app
davidguevara.com
www.dogotea.com
domaindriven.design
donneincucina.com
drunkandroll.com
emojipairs.com
www.entirehub.dev
esiac-bibliotheque.net
weihnachtsmemory.etavis.ch
evoluciont.com
www.eyefitness.ca
animations.fabianodermatt.com
customerauth.fastsigns.com
pro-dev-seo.figure1.com
us.finvari.com
auth.flexipro.flexcorp.com.au
fluttershape.com
gbtechnofuturism.ai
old.go2nft.io
heavyzone.ca
www.iamzakir.co.uk
www.jplab.hu
jtc.center
www.kolakow.ski
www.lanareiknivel.is
lunalee.com
luppet-tech.co.jp
lvp.mx
www.mathrush.in
arabic.mayamd.ai
blik.mbitgames.cloud
mergemasternumberfusion.online
tecnologiaparalajusticia.mexicoevalua.org
moduedit.com
www.montygosdn.com
challenge.most.org
mugeshrao.com
www.musingsofthemuse.com
dqx-dev.natagora.be
nicholasmagi.it
www.nuvoauto.net
www.offerswap.com
dynamic.onone.io
firebase.cdn.blog.pai233.top
peruzza.si
trendy.piticommerce.com
plainagency.com
www.privatedetectivemumbai.com
lp.prod-hub.com
projektowaniestronwarszawa.pl
sandbox.quasarway.com.br
rapidaiapps.com
jhumentions.repapp.co
revathi-techsoftwares.com
app.routeo.io
qa.portal.s4biz.co.za
app-staging.sellar.io
shaundjuacademy.com
shivmayconstruction.com
scribbles.sistrom.tech
royal-pie.soluzione-digitale.com
sportsology.app
stevenc.art
abradolf.thechefkart.com
thedojiapp.com
trumptarrifstracker.com
www.tspsolucoes.com.br
tuhinthakur.me
suyaichas.turnosweb.app
www.akl.glass.ufg.co.nz
orderhistory.uri-call.com
qr.waccsa.co.za
witek.ai
xsbay.com
Other domains in certificate