Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=fortunefairy.kr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 19, 2025
Valid Until
January 17, 2026
67 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8E:32:E1:27:44:73:B9:03:DD:B6:55:87:AB:17:3B:12:6C:61:DE:EC:22:71:56:8F:E5:5B:57:08:0A:7C:29:E7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.greensborocollegesportscamps.com
story.101rpt.in
kimball-modular.3dcloud.io
lowes-kitchen-estimator-prod-b.3dcloud.io
agenciapacifico.com
ranipet.akdroptaxi.com
support.anakindonesia.com
www.anaprestesregulacao.com.br
www.arkityp.com
arktech.ng
arsiacoding.pt
www.atendeagenda.com
app.awesome-table.com
www.baankurapublicschool.com
bakerspconlineservices.com
www.beepcollab.com
carpoolify.de
zone.chance-store.jp
quanly.checkpay.vn
www.circleofdevs.com
airx.co.in
digital.india1.co.in
link.chillar.co.in
crickingdom.io
www.dailyjotapp.com
danielle.mt
delhipolicepublicschool.in
survey.detecht.se
gate-prod.digipufr.com
docsugi.com
ds39.nl
www.epc247.be
2020-annual-survey.essilen-research.com
admin-test.fishfacts.fo
admin.flypepea.com
fortunefairy.kr
gblimpiezadetapizados.com
www.glen-liu.com
haxnovr.io
hermandapp.es
ict4dsa.com
phucthaimre.id.vn
itsjustadream.xyz
www.jakehoffman.dev
tnt.koode.nl
kornerstoneanalytics.com
laboratorioclinicoalvarez.com
www.lanave.ink
learnthemenu.org
sartorius.luova-gifting.com
macrowars.com
www.marnen.org
mdctofficial.com
medfiles.app
melvix.nl
www.message.watch
prisinnsikt.mestergruppen.cloud
raffle.mmc-oman.com
console.mtrfreight.com
quality-links.mycarmunity.com
pic-novoline.mentor.neccton.com
id.neman.hr
prescription.netssand.com
nineseven.de
duenow.nohtek.com
www.oconeepharmacy.com
www.olymposberries.com
guhelp.personalarch.com
albums.processing.studio
www.ptech21.com
quentin-charton.fr
quickpromenu.com
relliott.net
rgvstorage.net
www.rovis.dev
sangmenu.com
www.securelifesettlement.com
selvitravels.in
www.shahjahanmirza.dev
shtanko.dev
siyoung.org
www.soccerball.app
driver.ssms360.com
townhomes.stevenbrekalo.com
dashboard.subscrib.ly
tangzhisheng.com
app.the-publicator.com
tillhub.de
tonhozi.com
download.travel-lb.com
document-submission-web-page.review.trustdock.io
uberpro.tucar.dev
u-trainer-fitness.de
uxfacts.com
www.viraltrade.in
vprice.vnappmob.com
www.wch-holding.com
s.wemall-dev.com
wheavil.me.uk
www.workandtimemanager.com
Other domains in certificate