Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=brei.pro
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 27, 2025
Valid Until
December 26, 2025
34 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DE:10:6A:59:AD:66:9C:C2:2A:81:D1:C3:9B:2E:06:64:EE:9B:E5:69:B7:D4:B8:D4:4B:2A:9C:8B:87:80:55:07
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
app.aw-anotherworks.com
dev.afirmis.com
alamininfortech.com
www.almeraim.info
superstore-demo.amicaldo.net
andersonmontana.com
andresmonnier.com
www.apnax.net
appfaa.com
www.appsforheroes.com
argus-pwa.xyz
demo-stage.artpix.pro
asianinterstellar.com
www.athere.io
babitapack.com
reservation.biei-carshare.com
www.boldambition.net
brei.pro
cashup.org
menu2000.cateringportal.io
www.centroespacialdelta.com
chaloreview.com
www.chaloreview.com
ciskodisco.com
cleardayapp.com
www.srijesh.com.np
tai.cotuongoffline.com
datavalue.ar
staging.desertmermaidaquatics.com
test-display.deskintelligence.com
diakonia.uk
www.dotmystyle.com
drgoof.com
link.dzikra.app
eddiedemo.com
www.escuela.app
famsync.online
finanz.nu
corporate.first-iraqi-bank.co
generationbuilder.net
leadin-preview.gfn.de
www.globetrotters.ai
portal.goaldsport.com
gongter.com
goodbye1040.com
hanassos.com
hechizos.tech
hmcq.io
www.huntrz.io
graffiti-reward.icists.org
image-lab.org
carfactory-dev.imagin.studio
vagusoverseaseducation.ind.in
jadiaksi.com
jugglevision.ai
kamenski-logistik.de
ar.kjc.dk
moodle-dev.klarway.com
www.krokis.org
propoze.larva.cloud
smart-campus.liidutpl.ec
experiment.loudly.nl
admin.lstn.xyz
huonglee.m1studio.co
manalkerzazi.ma
auth.matecito.co
dl.mccoy.io
joc-plantes.mercatherbes.cat
mesbro-radio.mesbro.in
signup.mesquiteobgyn.com
portal.midiagnostico.cl
nattie.us
www.nearxfar.co
test.mytasks.netresult.app
cairoscan.nt-me.link
okodetech.com
app.omedo.co
onestopcarwash.co.uk
talaria.openconjecture.com
www.oppositeday.co
app.paulopensearch.org
polycam.ai
www.quantumfy.co
www.rabbitson87.dev
try.reach-digital.co
saiftech.org
spreadthelove.samwise.today
ppp.small99.co.uk
firebase-staging.socios.com
softbluelight.tech
kent.studentphotographer.co.uk
www.studioludens.com
tasmeem.ma
interested.teveri.com
gcp.torque360.co
www.trailside.ca
twodi.us
singing.weberlolz.tw
app.wisebuy.tech
www.xxandark.com
Other domains in certificate