Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=www.mifacto.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
March 15, 2026
Valid Until
June 13, 2026
47 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0C:5C:DD:08:36:13:7B:7F:EC:AF:60:0F:66:D9:DE:27:28:4C:22:0B:DA:A3:46:F0:41:B1:65:30:B1:86:05:59
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
app.sync1.com.br
sutradhar.100.pn
portfolio.abhilashsingh.in
echeancier.ad-education.com
gym.agape.uno
www.blog-stage.airesdigital.com.br
poyan.algo-ai.work
app.annieandnate.wedding
www.appcode.ro
manage.aprisa.com.tw
raeber.avdis.ch
playground.axtmann.me
demo.badgewell.com
www.app.bandquarters.fr
beehus.controladoria.beehus.com.br
carblau.com
www.casagrandeleiloes.com.br
app.catchme-app.de
clokd.life
www.criticallyconsciouscomputing.org
www.crud-analitica.com.br
app.cruto.io
www.cucipetzi.de
readycaregiver.debraanne.com
readypetcare.debraanne.com
www.dedicio.com.br
www.disfoil.com.br
test.duckmouse.no
www.afe2022.eef.or.th
www.elamax.com.my
admin.dev.enerlytics.no
service.fitnessdoctor.com.au
flownext.hu
uat.checkin.foresthillschool.edu.kh
gentlegraphics.co.ke
projects.sebastian.ghiveci.com
goldenpromosgp.com.br
rekola.gympn.cz
www.happy-dental.eu
higpremium.com
ihmc.cc
web.appcaben.infobrcorp.com.br
www.inludo.net
www.investeer.io
www.jemi.co.il
rezepte-x.jjax.de
juhtech.top
julitedalachapa.com
lk-panenka.cz
sv.logicalley.se
magnaworldwide.com
realitytvproducer.makerinator.com
www.manchstudios.com
app.moveon.marktplatz.com.br
www.mcads.co
medical-sante.co.jp
mejoratumemoria.life
residentgoldcoast.melbookings.com
www.mifacto.com
www.token.minigo.store
assessment.mumie.net
processor-dev2.myya.com
links.ninjateriyaki.com
ofthegrid.art
www.okinari.com
www.oryx.xyz
www.panda-patrimoine.fr
pandidaktirion.gr
landing.parfums-asie.fr
console.platcel.com
platcel.com
platcel.com.pe
www.platcel.com.pe
qrmake.xyz
eldo.ratality.com
renode.co.jp
safelnk.fyi
santa-hawks.gr
dogcal.santoso.us
develop.addons.sellia.ai
about.set.live
sharpeyemate.sharpeye.co.nz
solusdesign.eu
sorteostrend.com
firebase.sandbox.szumma.com
kooperation.terratwin.net
www.the-oracle-engine.com
www.thedantas.com
tictactoeextreme.com
www.tictactoeextreme.com
recout.toliver.hu
trimzy.co.in
test.veridico.cl
www.verseatility.co
apteekki.videoapteekki.fi
voyagertarot-creations.com
www.wannath.com
wiseapps.info
login.wizaker.in
convite.yamamura.com.br
Other domains in certificate