Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=istvangombocz.hu
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 06, 2026
Valid Until
April 06, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FB:9B:CE:54:5B:DC:EE:6E:4B:08:C3:8E:DD:F9:D6:47:C2:0A:85:7E:0E:CD:43:CD:DA:E2:4D:4A:A9:39:F0:3F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
thefreetoolchest.com
ainovel.ru
dmgt.akhilpawar.com
www.akshaybadgujar.com
www.alloatech.com
auth.anyrent.cz
astro71.in
regist.betflix168.win
bodamartaysergio.info
www.cape.org.uk
gcp-us-east1-16.dev.app.carto.com
www.constructdatabase.com
datalynn.org
retailers.designideas.net
dreamdroptaxi.in
www.dreamdroptaxi.in
www.dropmecalltaxi.com
eddywithay.dev
operations-develop.electriphi.dev
blog.espireads.com
www.estudioconus.com
pre.estumomentu.com
admin.everestunited-taekwondo.com
shape.dev.everywear.com
frame99.in
gzg.fsv-aptor.com
jyothsna.gbnsolutions.in
www.goodpointsglobal.com
www.groupe1chantilly.fr
qa-api.guustav.com
www.harrisonkain.com
www.hillmetalcorporation.com
www.icaresportsuae.com
auth.imagecortex.com
imaginharia.com
istvangombocz.hu
iu2bc.com
izjava.si
www.jakesphysicsnotes.com
www.kaichef.com
kawaguchikobeer.com
www.khauho.com
kiblerconsults.com
pwa.kirbyfoods.com
farmer-dtm.kisannetwork.com
lecturesoft.org
www.lichenlogic.com
training.looker.com
lottiemary.com
magalybelmontes.com
www.mangoorpapaya.com
map-shaped.com
www.me-overseas.com
mentorher.in
meradiet.kr
www.mithibaicultural.in
mosaiken.es
time.mrdoff.se
me.naresh-kumar.ink
www.niradiamondjewelry.com
nodesai.de
safety.nucor.report
www.olenasaki.com
onoctopus.com
paipoojaghar.com
pamorenergy.com
photoshot.me
planandgo.it
rafiddaoud.com
www.repatraka.net
resrom.com
www.roblesfacundo.com.ar
samewave.app
samg.us
gambling.schabanak.com
template.app.servicekudos.com
sharedholidayhomes.com
sheheryarfakhar.com
shreekrishnna.in
www.sli-assessment.com
www.smartsolarexperts.in
www.smile-africa.com
www.sonnewatt.de
spurintel.com
test.sriniwas.xyz
tellmore.today
theaurem.com
thebascostory.com
thedentalgarage.com
theyoungsphere.com
thinkmosaiclabs.com
www.tigran.tech
app.trakkassets.com
staging-danapoint.trueomni.com
app.visno.no
links.vistafinance.io
www.ycryptx.com
zenreki.cash
nazo2020-block.zerokitsunehal.org
zinyskin.com
Other domains in certificate