Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.humecsc.snu.ac.kr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 03, 2026
Valid Until
April 03, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0E:3C:CC:D2:74:BC:E6:C9:47:54:BB:BF:02:2F:AF:B9:76:58:58:F4:B5:3F:81:A6:B0:91:17:7A:57:10:86:AB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
shelfytoon.com
1cekn.com
gws.5min.co.jp
www.humecsc.snu.ac.kr
repic.ai.kr
chat.aivaportal.com
alphaaiservice.com
www.andrei.cc
aquinventures.ltd
arfis.pl
app.arnaud.works
www.as-kosmetolog.pl
link.atrena.net
bengalnewshunt.in
blog.bezuko.com
brain-arcade.io
app.clued.id
verifikasi.abigold.co.id
fritzcontroltest.fritz.co.il
solarstorm.co.in
codok.co.uk
kandurataclothing.com.lk
redirect.uinuin.com.uy
decimoapp.it
www.dreambigtechnologies.com
kg.droov.io
easyq.in
esken.si
trackingapp-stg.esports.cz
app.fanchat.jp
fastfocus.app
vic.geovanecavalcante.com
victoria.geovanecavalcante.com
www.globalkidsgarden.in
goldensparrow.tech
guardian.hael.in
nguyentt2417260.id.vn
web.inpunto.la
janweinkauff.de
www.jessicazanardi.com.br
voib.jesusbossa.dev
tarkov.jetpackpony.ru
www.jitatech.com.br
intranet.k-9apps.com
www.dev-intranet.k-9apps.com
linkriot.kisline.com
computers.kovanen.me
compare.krida.space
lancuch.fun
www.liduan.net
www.malahovsky.net
app.maracuyaagencia.com
marianoandsons.com
mdsolutions-services.com
melange.ltd
miramiscosas.com
eta.mithrilmedia.io
miwaspa.in
mixithub.app
auth.ccs.mymoodbit.com
mysoul.app
nixler.xyz
dev.paciente.nuuphealth.com
know.nzsapps.com
github.pan.dev
parcelwithfriends.com
pinesbracknelltaxi.co.uk
dev-walking.pixelteam.io
polyverseworkshop.com
www.purplegeo.com
www.pushstack.io
admin.qbeliteapp.com
app.qosie.nl
nestle-panela-dev.redfox.dev
www.referaflood.com
www.richardstott.net
risoko.fi
www.runekekonsult.se
staging-empower.savannahghi.org
pc.sdorica.com
smartrecyclingbin.cloud
qa.validator.stoyco.io
sunriser.xyz
bodacivilsaraviarivera.swanmoments.net
despedidarossygomez.swanmoments.net
www.tecpulse.pe
tekbricks.com
www.thanku.social
www.thehamradiolab.com
www.thenetworktap.net
turiyarenovaveis.com
auth.twilight.co
unimakworkflow.com
varnamala.org
cdn.vkl.vn
voltcreators.com.br
www.wanaanbahrain.com
wwinstitutes.org
www.zabira.com
studio.zerostic.com
Other domains in certificate