Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.yapanzeka.com.tr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 20, 2025
Valid Until
December 19, 2025
36 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A1:3E:07:A1:D5:46:BA:57:2A:C6:F3:41:60:05:0E:09:16:A6:ED:44:21:D5:9D:CF:AD:D4:56:85:8F:84:91:30
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.eagl.it
1smallstep.jp
4apaie-rhconseils.fr
login.aadharbanks.in
pensioenbij.abc-professionals.nl
v3.agent.aeroglobe.pk
www.agridigital.co.za
www.ahmetozsoyproje.com
www.anomic.rip
rest.appgua.com.mx
mainnet.board.arianee.com
www.arx.wtf
family.bethanydawn.ca
www.betia.net
beyubyzen.com
tmatelinks.bobavoice.com
bovengemiddeldintelligent.nl
www.btjt.no
projects.colorhub.online
cmsunical.com.ng
algannem.com.tr
www.yapanzeka.com.tr
sputnik.commulino.de
www.condopal.it
www.crowncasino.mx
dagobertoviloria.com
www.dataelevate.ai
www.ddzone.xyz
desserti.io
dieczichopads.de
www.dipani.org
www.dmytrosekhno.com
ekoputos.lt
www.elke-rehhorn.de
www.fbxenterprises.com
cewe.felixxgroep.nl
fyllamelee.no
gary.paris
live.gavlhuset.dk
gferrami.com
www.gjsinfra.com
godinland.lat
www.haven.dk
henryapi.com
home-internet.tokyo
jacobpeter.hu
jf-welding.com
monaideimmo.jlabs.fr
mile.johnmasters-select.jp
cs.jonas.ar
joshuahonguyen.com
kinedirkeeckhout.be
lachevaliniere.com
www.leesander.com
dashboard.lesq.my
letterkeyring.shop
lur.wtf
instahollymodels1i.meander.media
stag-dl.medipass.me
dev.dap.mestergruppen.cloud
blog.mightystoic.top
firebase.mightystoic.top
muanhanh.store
dev.graphql.naked.insure
lime.nectarition.jp
noguttsnoglory.com
nomadverse.org
www.numerolab.com
onewaydroptaxiservices.com
app.onzsam.hu
internal.orderit.ie
polhill.org.nz
staging-rjp.pinhome.id
plana.pixsel.net
lp5.postal.gift
www.puntobicycle.cl
quantumcats.dance
www.retout.co.uk
sandlines.org
www.sarahreimann.com
scyre.com
videoplus.secureadn.com
sharpmotionstudio.com
sleepybearjew.com
snowcall.org
www.springvilleflyingclub.com
st-zeno.de
supercodingball.com
wruevents.swapp.work
switchcode.in
graficos-develop.taniafruchi.com.br
tipandtale.com
transitkingtycoon.com
vamsigastroandlivercare.com
emetteur.vigie-app.fr
prismic-demo.webpunks.it
www.yaimocollins.nl
yieldpoint.ai
www.admin.yoyoreact.com.au
zrm.vn
Other domains in certificate