Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.serviciosnotarialesnj.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 02, 2025
Valid Until
March 02, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
11:99:05:1A:28:6B:E0:DE:C2:00:2B:BA:C5:7B:11:C8:D3:51:E4:AA:A4:0E:90:D3:3C:1D:14:64:BC:70:DF:37
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
au.hemisphere.digital
www.20pointtracker.com
www.2r1k.com
abstrakty.com.mx
www.adendev.tech
www.ancient-world.co
www.appsforbb.com
www.argesware.com
arthurmonteiro.com
easyinvoices.avnirexhepi.com
tester.awto.app
www.bigbang-company.com
www.bonestudio.online
casruval.com
politicadeprivacidade.cataki.org
bmwgroup.cateringportal.io
admin-demo.circonomy.co
www.controldevelopers.com
www.cornuletedecasa.ro
cosmeduae.com
www.crumbprint.com
www.digimedical.it
www.doug-orchard.com
www.eeccontractors.com
dsign.executive81.com
microblog.felipefm32.com
www.fifthaeon.com
uatims.finncub.com
www.finplaninteligente.com
fortum.ee
www.forvandle.com
link.gapizza.com
link.genkifit.app
www.giggleandquill.com
gmptrack.com
app.gravity-cloud.com
snap.hamid.tech
www.heavygo.com
hfssadikoglu.com
hitcher.app
link.hypehype.com
www.idahocovidtest.com
app.inciprocal.com
ingecamtec.cl
inmobiliariadescubre.com
jayrajdevelopers.com
johanbrinch.com
www.kards.co
kesiflerdunyasi.com
keystoneskipatrol.org
kikakushare.com
knjpartners.com
www.knk-richtfest.de
kovovelic.sk
lanceiros.com
leermann.com
licensingcuracao.com
localkuya.com
www.logicaljupiter.in
spanningtree.lucask.dev
madchasselures.com
bestellen.maerchenwelt-essen.de
matchpublive.com
melty.date
metaitofficial.com
michaeldonahue.com
mineo-engine.com
mrbernson.com
natural-rebel.ch
www.noodle-it.co.za
www.orderease.show
ouchui.ch
staging.paco.cool
live.pheno.ml
popkode.fr
piggybank.potatoma.com
projektwporzadku.pl
rcd.cool
www.react-rainbow.io
feedback.realworld-one.com
www.regil.us
myportal.salem.edu
www.serviciosnotarialesnj.com
app.smartplant.app
hauniv.snapmentor.no
www.stavlic.hr
wordpuff.syntaxpunk.com
www.thehumancloud.org
www.thewheelist.com
www.tunes.blue
www.tvorimejilovsko.cz
usac.app
gigpig.versori.com
vibescommunications.com
vinayagacrackers.com
vksportsacademy.in
nutrilloauth.waafi.ca
iconicmints.wsjbarrons.com
app.yayshop.io
careers.zubairautomotive.com
Other domains in certificate