DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=painel.festivalfronteiras.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 08, 2025
Valid Until
February 06, 2026 76 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E1:C0:27:66:59:78:10:53:5C:C5:29:01:FE:D2:4B:E3:72:FD:A4:D2:92:FD:27:3E:AB:27:44:53:03:D2:93:96
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
api.divshot.com

Other domains in certificate

www.25irishcardgame.com
abelraberin.com
mining5000.ai.kr
alpha-funding.co.uk
apollonexus.com
painel.kettu.app.br
arc.ventures
www.binaryark.in
portal.cerberus.llc
www.cheriecarbines.nz
www.climaticwatch.com
link.galaxyproperty.co.id
trekly.co.in
www.cawash.co.ke
admin.timetrek.co.kr ai.timetrek.co.kr customer.timetrek.co.kr link.timetrek.co.kr
ensayo.colegiolosleones.cl
pinstal.com.pl
bzkyapi.com.tr
www.conectagrp.com.br
clubsphere.csai.club
app-dev.curipod.com
www.magistral.dev.br
onevid.digitagram.com
www.divinetalk.in
www.dockpost.com.br
www.doormaslak.com
cdlformiga.edcliente.com.br
cdn.elpu7.dev
equiptalk.ai
excelexercises.com
old.hugo.eynard-home.fr
painel.festivalfronteiras.com.br
www.fevece.com.br
fidelidadesotreq.com.br
freedemy.online
www.friendlyfounders.com
www.gaviwinerestaurant.com
greenwakes.site
groglog.app
guestin.net
food.gyanaloy.com
www.hourwisesolutions.com
inventoryhelpr.com
www.hfta.minecraftvippro.io.vn
www.isabelapadua.com.br
portfolio.kactuz.org
kanini.top
ibuhappyku.kemalwicaksono.com
www.limmia.com
link.liveombre.com
www.logostudio.fi
www.manage-it.co.za
www.mentorsoftweb.com.br
milesmarziani.com
mitenchauhan.com
glsess.mycomerp.com
auth.google.mileniumtelecom.net.br
auth.noticiasagora.pt
p2c2.novtrianda.space
nusawan.com www.nusawan.com
www.nutritiousbowl.com
invoice.omnevu.com time.omnevu.com
mta-sts.omniverse.vn
onederful.space
web.orderly.kr
admin.pakistanbooking.com
penguins.im
www.plankyn.com
prettypeacespa.co.za
wrestling.projectrankster.com
www.rd-forms.com.br
api.read-pro.com
www.ring0networks.com.br
www.rockethour.co.za
sabrixglobal.com
grequant.sanviapps.com
scrutnlearn.com
hellogm-auth0.snnanalytics.com
www.sol-airenvironmentalservices.com
spssdissertationhelp.com
surrealblack.com
swarajiva.com www.swarajiva.com
www.i9tecnologia.tec.br
thinkbysketch.com
thanhdat.tinhocnangcao.com www.thanhdat.tinhocnangcao.com
unusly.com
usuallyhungry.com
vacina.vetrina.com.br
vivekrajput.com
itba.vnmentors.com
staff.wrisgh.com
open-diary.yamaterous.net