Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=veki-savoro-lancamento.universoesperanto.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
March 30, 2026
Valid Until
June 28, 2026
47 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A7:20:C1:5E:35:B3:44:0C:7C:5F:B3:49:3F:EE:2B:27:27:30:86:B2:AA:ED:96:BC:25:97:CC:41:82:D7:70:9B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
auth.roselifting.com
harvest.a-vision.software
auth.dev.agently.abeja.io
tigercarshow.adet.app
www.africanfinancialbridge.com
agenticfabrica.com
aisystme.com
anhana.jp
www.antoniotorquato.com.br
austhen.com.br
beta.beatrixtoth.com
ym.besthank.com
bidlio.ro
links.bingoplay.app
boostifytunes.com
boulderbocce.com
brandhousemedia.in
entrebrasas.clau.io
commetuveux.com
corillo.app
dms.ctaxcrm.com
pdxdev.cubeapps.com.br
gd.customcardportal.com
www.debiasi-comploi.it
share.delto.com
www.digiclass.no
edusparrow.com
emmavet.com.co
www.emmavet.com.co
www.enrichpoint.com
errbits.com
edu.far.st
finlaro.com
flordealmendro.cl
www.freebudgetcalendar.com
frenchrivieraphotographer.com
pos.gardana.id
homenote.kr
menu.hotelmely.com
huazman.site
homes.hvizdateam.com
hyperschool.in
www.hyperschool.in
imob.iroot.ro
dashboard-remote-expert.k-digitale.com
arrow.keke-dev.net
kirkproac.com
observatorio.konzup.com
la3bangy.com
www.locker.fi
www.mcgassociate.com
mediametrics.click
millett.dev
minhaj-wuppertal.de
homes.minnesotapropertysearch.com
momstyleinspo.com
admin.mynala.co.za
pixels.norangebit.me
nuvixgaming.org
oceanenglish.app
www.orthoascend.io
arsip.orthobaya.id
pingado.cafe
app.pmpractice.org
pmpractice.org
pregoapp.fr
qbiops.com
au1.resbutler.com
reservaescolar.app.br
software.resturun.com
roservicejammu.com
www.roservicejammu.com
school-baker.s3softs.com
saddan.app
www.sandleflower.com
shamamit.com
www.shamamit.com
shreyashsinha.com
code.htmleditor.softbridgelabs.in
stagestack.app
ashoori.suntrix.ai
talkdeeply.app
www.thenexuslounge.com
thespongestories.com
thoughtleadership.com
www.thoughtleadership.com
veki-savoro-lancamento.universoesperanto.com.br
urimal.shop
www.vajrayudstudios.com
vindjouwband.nl
viprasoftware.com
quorum2.votei.app
vzengineering.com
www.warmlink.ai
www.wxsolutions.net
www.xitingtech.surf
xitingtech.surf
zakariachbani.online
zek.technology
web.zenithcloud.fun
Other domains in certificate