Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.elenakolesova.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 09, 2025
Valid Until
January 07, 2026
47 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DE:D7:47:88:CF:40:F2:F7:4C:5D:18:15:CB:DA:0B:78:CB:4B:C5:23:03:62:38:1F:14:70:39:44:09:E2:12:9D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
thecum.org
play.1ludo.in
addment.com
staging.client.amooto.com
forge.amramadan.com
wbasp09.as-protection.de
bachi.app
bbnk.me
m.beepzie.com
betsybcooking.com
siman.bundt.link
agency.staging.castingapp.com
www.charliefacts.net
hocsinh.chimchamchi.vn
cityshare.app
neverlegal.clau.io
y.com.my
nehalahmad.com.np
churchoffering.fastpay.com.tw
www.digimal.no
www.dot-shop.net
krishnagiri.dropstaxi.in
pudukkottai.dropstaxi.in
salem.dropstaxi.in
interonconnection.drtis.com.br
www.ducksoftware.net
dev.eduqate.org
www.elenakolesova.com
www.ellingsenbyggservice.no
www.empire-keeway.com
exonerate.me
www.fangevshop.com
flexibleforms.net
menus.foodlink.one
public-lst247.gocad.de
develop.guestgenie.com
www.hicomseguridad.com
intellisale.com.br
intrivpn.io
fire.iquelle.in
mcx.izoll.com
plataforma-release.keepee.com.br
app.kinaracapital.com
kdb.kittdans.cloud
kuhsaai.com
logicgame.app
sehatlinks.medcords.com
michaeltansell.com
mobilkonsult.com
monle.shop
email.motorsmeet-infos.fr
mpsnajibabad.in
muslimsofireland.com
precitas.mymoons.mx
products.myxplor.com
www.nektar-soma.co.jp
neuromodulacionsonora.com
www.norlist.kz
www.nrwellness.com
www.number-boat-share.com
home.nurdiansyah.net
nutty.cool
www.oc.dev
gas.onchi.me
www.oslojazz.no
pppaaattt.com
www.prophecysports.app
link.protranslate.net
www.psielianesiqueira.com.br
ked-agenda.publicissapient.fr
admin.realhappy.net
rechargemn.com
opshelp.rentalsunited.com
resoluttech.net
rolldnd.org
rtbyte.xyz
erp.salt.agency
app.schoolassistant.io
sector3software.com
seipunia.com
sidekick-stage-eu.admin-portal.sidekickhealth.com
skillopro.com
beta.skybolt.net
skypunchgames.net
accesos.snoopconsulting.com
spn-technology.co.nz
stanford.ir
admin.staq.com
svgmovestudio.com
dev.t-soft.io
www.the-predictor.com
uat.themeatstory.com
app.thestacksmith.com
jamescb76.tiremonitorsystem.com
svarka.vn.ua
vsol.in
dev.mis.wegcambodia.com
beta.weloveideas.com
xchai.me
www.yashalum.com.mx
Other domains in certificate