DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=app.resideway.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026 54 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B9:D3:F4:44:3B:E7:F8:11:6D:2E:6C:B1:EE:D6:66:4A:22:D8:79:5C:CA:2D:6B:54:2B:48:A8:B9:D4:E7:86:DE
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
425kidschess.com

Other domains in certificate

alastaircallum.com
cfr.allinmotion.nl
elecciones.ambito.com
app.amplisend.com
previewer.appscreens.com
lock.baytaindustries.com
mx.admin.bee-seller.com
www.admin.bloksapps.com
www.casaadevesadesanabria.com
www.cgcmmap.com
cibankdash1908.chatinfinite.net
admin-v2-dev.selectstar.co.kr
phonepointer.coderesting.dev
wc3icons.coffbox.win
loans.mfl.com.fj
smartnas.smart.com.kh
monocle.deepcellbio.com
scheduling.desertmermaidaquatics.com
digitalronesans.com
myrea.disign.tv
www.dourpuffgirls.com
dowerglen.co.za
www.ekuitycapital.net
emiratesvisa.com
dev-bo.immi.enigmarnd.com
fairhire.me
app.faxgun.com
www.fikhrie.net
bridge.fndrsng.com
galvanize.me
www.germanhood.com
goal-mapper.com
app.gostackr.com
get.govtphoneoffer.com
stage.guessmonster.com
docs.gxbank.my
ma.hepcon.app
bobs-photos.ic-miller.net
20225220trinhtuanphong.id.vn
apps.inoculens.com
b2b.jacto.com
jade-unicorn.work
coronavirus-us.jamesonsaunders.com
justpresswork.com
www.k8sdb.com
app.kajaycouriers.com
survey.karriereheld.me
www.kiperapp.com
kubherachits.com
dev.lernit.app
loiane.training
apply.loxclubapp.com
lydiagregory.dev
dotfiles.meisterveda.com
pubanalyze.mmrstg.com
www.mtgtradingpost.com
www.nerdsio.com
oneclickinterviews.com
app.onfakt.fi
outdock.com
p-b-a.jp
palomaeki.com
parkipen.org
passportdispensarytour.com
www.pedro.gr
www.pes-s.in
www.prosperintheland.com
rancholg.com
www.recoveringtheplot.com
app.resideway.com.br
reviewtour.net
rizzonline.co.uk
upaay.roadcast.net
app4.safetytek.ca
scala-algorithms.com
see3ee.com
app.sheshank.org
sirawit.dev
brandee-berry.solerabank.com
soluciontecnologica.ec
soumalya.com
www.spacebrain.me
shop.sphoorti.in
springfieldmutual.com
www.storytimewithfriends.com
app.tartufabile.it
www.thecostofcare.org
toppings.tv
chat.truvisor.vn
turbinastudio.com
twolights.dev
asah.unismuh.id
staging.uptrust.co
www.veeabo.com
auth.vinkas.com
waymuscle.com
www.wheelofnames.info
wingdrone.com
app.test.zeffi.dev