Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=coisasdatecaloja.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 12, 2025
Valid Until
January 10, 2026
61 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E7:2F:4D:E7:D1:83:2A:33:E9:90:CF:38:5D:3B:6F:22:6E:A5:C8:3E:5D:82:E6:B9:7C:B6:EE:A0:17:C6:81:44
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
abkrugsindia.com
0322.loan
101cre8ives.ca
adamdetrick.com
afrograilarts.com
akka-demy.com
admin.aletheamedical.com
www.alexkessock.com
www.alliround.com
aoismail.com
apolloconnect.com
appdesign.io
games.astil-industries.com
www.athleteslaunch.com
staff.atlasnxt.com
awab.dev
www.badzac.com
www.banklog.mp
basaita.com
beermoney.pro
api.beework.app
betterdrivingtheory.com
bcard.betterxsolutions.com
bettinamessmer.ch
borntocompile.com
bpm.fun
www.buybillboard.net
admin.campy.app
caselyst.com
caylerandsons.com
cevidental.es
www.citizenshipcanadatest.ca
cityphil.com
kariakoonline.co.tz
coachlydia.com
codajewelry.com
coisasdatecaloja.com.br
admin.cordondeplata.com
link.couchsurfing.com
crewmind.co.uk
www.drprakashplasticsurgeon.com
www.easy-flashcards.com
support.ehryourway.com
equinecaremanagement.com
www.ffocus.app
qa.static.firesidechat.com
fixbvb.com
florencerugifttest.com
flutteruniv.com
getbalemuya.com
m.glsnow.app
live-dev.growflow.com
sso.habitify.club
jobs.hola9.com
inovae.in
beta-driverapp.itf-as.com
jameswiesedds.com
www.staging.jampad.app
575tter.koukilab.com
lynnotechnologies.com
firebase-demo.mhiebl.com
mikegtr.com
evaluer.mitsubishidrummondville.com
musclify.in
mybudgetassistant.com
ksa.mytrudoc.com
uae.mytrudoc.com
aia.nexlab.tech
ngagegame.com
www.nighttimedrive.band
www.ourpokergame.com
spells.pathfinderpad.com
pickapier.com
www.playmahjong-online.com
purrin.clinic
creative.quapni.com
readersquest.in
reddinghomeloans.com
www.redpatitas.com
life.relastle.com
saludresponde.rflex.io
ryanskeg.com
www.shannon.fail
sharminsultana.com
link.shomvob.co
www.skloutown.com
staff.devc.skool.sg
smartplus.inc
softprotectiamediului.ro
somosunogo.com
sourceforce.no
auth.dev.sportinghood.com
admin.standart.sportkit.app
www.streame.org
tabata-planner.com
tallied.app
www.techtaco.com
lw-bs-demo.wpnc-uat.site
yesdoc.com
yomato.in
Other domains in certificate