Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=dev.imoveis.chavi.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 04, 2025
Valid Until
February 02, 2026
69 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BF:24:DC:83:F5:78:B9:D6:11:88:EF:7F:BD:F6:F6:3F:7F:17:59:A7:11:D5:B0:32:BA:66:55:25:2B:84:87:82
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=31556926; includeSubDomains; preload
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
abc-map.org
abdcomposites.com
ainewsoutlet.com
www.alfa-taxi.si
altunbulak.co
anili.net
anracaribbean.com
www.aozwithphil.com
attagnant.com
auditoriasyservicios.com
baeckerei-werning.de
geo-quiz.barberos.fr
bare-b.com
app.bitpong.it
caizer.com
callcollab.com
caminedebatrani.org
www.cayler.de
how-you-say.cgfix.com
dev.imoveis.chavi.com.br
cktaxes.ca
virtual.classicelite.com
prod.co-bee.com
ariyalur.yazhdroptaxi.co.in
bodhani.co.in
www.rpdavshahabad.co.in
coachmc.ch
admin.alies.com.gt
accord.cpaasaa.com
dailycodingmemes.com
app.dashowork.com
davidjoudrey.com
link.daymee.app
despo.com.br
web.despo.com.br
dionz.com
diyarapp.com
dlink.douhub.com
dreschermusic.com
erk.gg
www.errsta.com
youthtomoni.fgtc.jp
www.fl-mug.com
fundingbee.my
g.funs.one
3457-k5.gamefp.dev
gamingonthe.rocks
www.gdgcbe.com
course.glowbe.com
www.gnfortress.com
test-sp-origin.gohenry.com
links.goramble.app
stg-links.goramble.app
d4o6sc4c-0qg5i8rw.grafeny.com
gvplprojects.com
inventorycount.hotwax.io
instituthightech.fr
mozaikplay-stage-1.ischoolconnect.com
www.j2rtech.com
j4.lol
time.jeffb.cc
joker123khmer.com
joshgillingham.com
www.kagisoraseroka.com
www.karmicunion.com
keithito.com
www.kevinfiddick.com
wib.notifications.kohl.app
leqvio-locator.com
cursos.marilyncordova.com
links.meetnorth.com
www.motoave.eu
pic-jackpotbet.mentor.neccton.com
export.neobiotechnologies.com
onframefilms.es
painelradar.com.br
pauloregina.com
explore-status.placed.eu
blog.propulsitetoulouse.website
richless.app
sailor-boy.com
optin.sanpachi-design.com
www.sikao.com.co
certificates.plugins.skore.io
bodakathyyoscar.swan.lat
t-flats.jp
tantaroth.com
techscope.shop
therisingstarenglishschool.in
www.tim.phd
palpilates.timp.io
traksharp.com
ww2.twenty.io
staging.public.uveye.app
app.vidyafy.com
www.vidyafy.com
mm.vr-cloud.info
wiretexlvs.com
fb.balm.xx.kg
www.zawada.art
Other domains in certificate