Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=live.torriani.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 18, 2025
Valid Until
February 16, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F4:A8:B6:9D:61:3F:22:EC:F2:E7:7E:BF:7B:7B:A3:A3:F6:3E:E0:0D:A2:D1:34:35:71:3C:A4:91:FC:E2:5E:B9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
babskompany.com
701fitness.ro
abraservicos.com.br
addmii.com
jobs.adenhq.com
agentsavvy.com.au
www.amilasiriwardhana.com
amis-citeflavigny.org
chromecast.aquinventures.ltd
portal.artoptical.com
www.blocktech.com.br
badmin.capacitampe.com.br
www.cathyphung.com
cenixs.com
beta.cloudnosys.com
acerealtors.co.in
cms.aglomeracija-pitomaca.com.hr
ahmetozsoyinsaat.com.tr
webapp.staging.conroo.com
swire-kh.dashleads.ai
hello.delcom.nl
www.shop.durerkert.com
app.e42.io
app.educationwise.xyz
elhuguito.dev
wallet.emoney.ge
endometriosis.app
betaadmin.eximso.com
filmfloridakeys.com
velocity.finclear.net
blog.fishverify.com
ai.foryouth.net
www.funerariasantacecilia.com
app.fuzion.photo
www.gamegou.com
gelatoh.co.za
www.genaxai.com
public-martan.gocad.de
gon.org.au
grupogreek.com
cambio.hanneskoksch.de
hasandemircioglu.com
staging.horsebee.com
congvinh0502.id.vn
www.imc9dejulio.com.ar
interplay-app-dev.interplay.io
isaacchukwuka.com
jeanie.dev
www.jeu-laysgourmet-monoprix.fr
josessolmaximo.dev
juguitodeterapia.cl
get.keto-diet-app.com
mc-rankings.kro.kr
kulabu.dk
dhiyoyostudio.admin.kwikmedia.in
www.letsaspiro.com
lien.cl
lilsappys.com
mindmint.eu
www.musicmergers.com
datlich.ansinh.net.vn
www.npcpower.se
ofiebaako.com
art.onthewall.io
padel4play.com
petitssaints.com
philteng.com
kumhoresort.plaidai.io
leaders-dev.plaidai.io
www.prinslinus.be
www.progettopat.it
sapphire.propelledbrandsdev.com
app.rdlianz.com
renagouves.gr
app.repezy.com
www.ricardojustino.com.br
www.rj-japan.com
anexo4clusters.rudigualter.com
anexo5clusters.rudigualter.com
safeco.tech
admin-demo.salesserver.net
demo.salesserver.net
songs.schoolofsong.org
showsoldprice.com
login.simplificaespanha.com.br
login.simplificaeua.com.br
login.simplificaitalia.com.br
thelocalapp.au
www.thelocalapp.au
www.thelocalapp.com.au
live.torriani.com.br
links.uat.myid-idp.unifiedpost.com
www.urbanodelivery.com.br
victor-nguyen.ca
www.villajaidee.com
functions.virtualman.ai
vucna-sluzba-matkovic.com
www.warriors-for-christ.com
school.withreaders.com
senangpayreturn.zehoe.com
Other domains in certificate