Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.pendikkaynarcaasm.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
50 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
30:1E:AD:D2:28:E9:BC:45:6D:A1:A8:04:D3:15:BA:0D:D3:CF:5A:DF:D3:93:C3:3A:0C:AE:9D:E7:62:B3:B3:E5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.communicate.elevationai.com
11521807.peerly.app
woodmark.3dcloud.io
ftc.accesscontroll.com
alephzero.ai
staging.dashboard.altscore.ai
cao-metalektro.appdashboard.nl
dividend.beeman.app
support.bpm.app
broniow.ski
buethsoftware.com
labspatient-beta.chronometriq.com
cine-match.com
admin.preprod.clevernet.app
gorillasports.com.ua
www.qaschool.com.ua
commonthread.group
datalogy.bg
www.masopust.ddmpraha.app
dissect360.com
www.dnsrecord.how
www.doctordoggy.dog
app.dog-dates.de
domysumaarchitects.com
app.emporix.io
auth.exercite.me
expense-robot.ch
farinaandfondant.co.uk
www.findme.movie
www.gainhealthnet.com
goto.goaldsport.com
pagos.elsalto.gob.mx
gub.app
heywyer.com
staging.ineed.co.uk
qualification-agnl-de.input4you.be
mta-sts.intalite.co.uk
www.jadesignature5105.miami
www.joshbtay.com
jyothulanehrufoundation.org
kamala2024.info
auth.kikemaya.com
portal.kivacrm.com
ins.kukui.com
faceid.laniakea.tv
www.learnwithmerlin.app
mach-das-leben-an.com
dsmap-staging.mapquestasia.com
www.marakumi.com
marsilletravel.com
test.millisite.com
beta.mojoule.com
mondaypicks.com
mormoph.com
mrbarry.com
auth.mynixos.com
n66.is
nitetrainpizza.com
stores.ordertray.com
otobesa.com
www.owrs.co.uk
www.paulisac.com
www.pendikkaynarcaasm.com
cms.plannt.app
premierechoiceconsulting.com
www.pristine.design
streetbangkokissy.order.pulp.eu
pushtable.com
quickpass-admin.com
mobile.redriver911.com
dev.risevestorsmf.com
robensy.com
app.rockstar.bingo
app.scan2go.fr
serviciosrandy.com
demo.shadecharger.net
www.shaunak.work
shiitake.dev
www.simas.dev
acme-corp.blaze.solerabank.io
portal.sosharu.com
streetartworldmuseum.com
www.surfa.co
swoopdaddy.com
syscap.com.mx
ludo.thearnab.com
year12websites.therealmrking.co.uk
trainapp.fit
www.trainapp.fit
cashback-link.tripster.live
odinmalargue.turnosweb.app
u-mts.com
link.upos.io
viscocity-vapor.com
app.agensia.web.id
wnewman.dev
workboxapp.com
discord.wyld.land
zarag.dev
zarataahhut.com
Other domains in certificate