Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.ibarbster.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 29, 2025
Valid Until
January 27, 2026
66 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
90:83:9F:9D:B8:59:57:78:17:B8:08:B8:21:8A:F8:9F:3C:FF:2D:61:BA:0A:E7:1B:C5:5F:02:2C:6F:08:7F:28
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
backend-dev.uugot.it
dsp.admaxhub.com
join.admaxhub.com
login.admaxhub.com
ssp.admaxhub.com
www.admaxhub.com
astorgafuentespieruccini.com
blog.bared.com.au
beacondrive.in
www.bgcmanila.com
email.bgjooon.app
route.bolsiyo.app
www.bpcar.bz
www.brancabilance.it
budgey.app
carteconfituur.be
gcp-us-east1-19.dev.app.carto.com
www.clay10.co.uk
www.codewich.com
hangma.com.np
tradefy.com.tr
platform.remaxvista.com.uy
communicationsskillstraining.ie
www.conhecemais.com.br
www.coralit.hr
deepcapital.ai
moofy.dgiapps.com
portal.doxbox.org
clasificados.elsoldetulancingo.com.mx
www.etceterology.blog
eventvio.com
mta-sts.eyspa.cl
fiyonlab.com
www.flaschenteilungen.de
fmahub.com
demo-tesa.get-ikigai.com
esg.globalpccs.com
booking.healthcorner.be
homerehabconsulting.com
hornusser-urtenen.ch
hotelbooki.com
hristiyana-ivanova.com
hypnodron.com
residentlog.ianovir.com
app.ibarbster.com.br
trinhmanhdung.id.vn
ilmondodeigemelli.it
www.it-knows.net
jacktraina.com
jeroenmeij.nl
chats.kaadi.app
kaledu.in
www.kaminosoft.info
keepbox.app
app.lasclases.com
www.lindenhatzolah.com
www.linsaem.fr
bridge.locker-token.com
lynk.design
www.maquettejs.org
www.mdln.financial
missioncall.app
musicrewards.com
muximaglobal.com
nahush.in
onsen-mania.com
www.oops.vip
orbismindstech.com
owlandscroll.com
www.pafam.xyz
parkjiwoong.com
patient-statements.com
www.pkycurrency.com
processtv.art
pteno.com
www.questionable.io
amplify.redsols.com
nexusplay.rosatocorp.com
www.sbdevelopment.cloud
iotsphere.silicon-power.com
simonacozzolino.com
app.strukto.io
panel.sulibari.hu
swankeypankey.com
swistible.com
staging.app.tate.it
tempbuttonhq.com
heisable.thewellsilverspring.org
www.tinkertech.dev
www.tkymwebzine.com
s.tnn.in
dev.app.tradecheetah.com
trimonke.com
typebeer.com
onboarding.unframed.online
www.parc.valpas.ro
lehman.dev.vega-labs.com
admin.wi-flix.com
xi-or.com
zarhatech.com
Other domains in certificate