Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.farmstore.kr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 21, 2025
Valid Until
March 21, 2026
78 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
01:89:21:CE:7B:C0:4D:E3:21:B1:37:8C:87:0C:CE:75:71:83:74:FF:8F:5F:7B:8C:82:23:9D:69:C0:86:9A:8D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.playouter.net
miautozen.4tucode.com
www.acerltda.com.co
www.advkaranchaudhary.com
agent-immobiler-avelin.fr
ainhoamoreno.co.uk
ajhadi.space
tool-master.ambihome.net
accounts.dev.marketplace.amobilepayment.com
anthonyapps.com
apalaclinic.com
pop.autobid.com
borisgauty.com
castroangel.com
www.ccgoal.ca
chamaneshaitianos.com
chrishampshire.com
login.cloudsurf.digital
grocerscope.thearchitect.co.in
sudroptaxi.co.in
www.bbsdc1920.co.in
www.h-inno.co.kr
facilities.hpa.co.zw
payments.hypenation.co.zw
codeair.pl
waysoft.com.my
concoct.me
elite-anarchy.connorcode.com
www.coreyandkrishia.com
fg.eblizz.in
agroecologiaemrede.neaes.eco.br
apilegacydocs.evertransit.com
page.fantasiastory.top
www.farmstore.kr
triage.filmusli.com
www.floresrobles.mx
fnbees.sg
marketstar-staging-ideacloud.forgedx.com
devfest2017.gdgnantes.com
www.goeleventhmile.com
grovit.org
hex-perpetual.info
www.heymanitas.com
hs.humanstars.com
hyfdata.com
iacta.llc
iamlocal.online
community.icares.app
icongo.iconparkingsystems.com
dev.incidentic.com
modinstaller.itsanurag.dev
applink.joinbreakthru.com
www.staging-clientes.k-9apps.com
kimboflip.xyz
masakecil.sigi.ledgerowl.com
app.lefutur.org
view.lithodomos.com
corona.lunarworks.co.uk
lymcanarias.com
mads03.dk
staging.mailclerk.app
memo-tweet.com
inventory.mesyeuxtesyeux.com
www.minidot.be
www.mrtporteur.com
www.myangels-daycare.com
noodelo.com
staging.admin.pakhms.com
payment-reference.polipay.io
prandell.app
primocar.com.br
www.qadib.com
qwesto.nl
alink.rcgoing.com
robocob.mx
testing.robotical.io
abfkh.saas-tech.net
widget.simpletexting.com
chat.springpod.co.uk
www.stebam.com
www.stetter.icu
forms.structube.com
www.pimpmyflat.syndic4you.be
bi.tdmobile.work
www.texanblog.com
app.theassistant.com
jovempannewstv.themediatrade.com
tiba3a.tech
stops6.transitappliance.com
levis.truereach.ai
wo.usemason.com
www.valtech-trading.ro
veereshkali.com
www.vikitchen.ru
chama2.vitordino.com
www.vvsanghabellary.org
wiki-cosmetics.com
www.xacarana.com
www.xy.finance
zendare.app
Other domains in certificate