Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=jr123milhas.com.br
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 07, 2026
Valid Until
May 08, 2026
82 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D7:AC:03:CB:7C:89:C8:46:66:BC:6B:10:88:09:9C:29:CC:95:FD:07:6D:7B:41:5A:DE:B6:36:D4:6A:B6:46:BE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
compartilhar.com
*.compartilhar.com
*.cc4access.compartilhar.com
*.por.compartilhar.com
*.rdsconnect.compartilhar.com
*.remotegateway.compartilhar.com
*.vpn.compartilhar.com
*.xn--v-vga.compartilhar.com
amerollc.com
*.amerollc.com
*.ww25.amerollc.com
*.api.bellavitaspa.com
bellavitaspa.com
*.bellavitaspa.com
*.crm.bellavitaspa.com
*.dev.bellavitaspa.com
*.mail.bellavitaspa.com
*.test.bellavitaspa.com
cruises-za.icu
*.cruises-za.icu
*.demo.cruises-za.icu
*.notexistsdemo.cruises-za.icu
*.www.cruises-za.icu
*.app.euadoroensinar.com
euadoroensinar.com
*.euadoroensinar.com
*.staging.euadoroensinar.com
*.ww7.euadoroensinar.com
*.www.euadoroensinar.com
*.6.har.us
*.esliye.har.us
har.us
*.har.us
jr123milhas.com.br
*.jr123milhas.com.br
*.ns1.jr123milhas.com.br
*.ns2.jr123milhas.com.br
lizzo.live
*.lizzo.live
luxurymap.net
*.luxurymap.net
*.www.luxurymap.net
*.mail.mintvcdsgconadep.com
mintvcdsgconadep.com
*.mintvcdsgconadep.com
*.meatgeethe.rbpark-hillhotel.com
rbpark-hillhotel.com
*.rbpark-hillhotel.com
*.restaurant.rbpark-hillhotel.com
*.alpha.scenstsy.us
*.board.scenstsy.us
*.ceciliaward.scenstsy.us
*.cscudder.scenstsy.us
*.csmallfundsteam.scenstsy.us
*.darcyforbush.scenstsy.us
*.krhiles.scenstsy.us
*.maryfonseca.scenstsy.us
*.melanieantonacci.scenstsy.us
*.random.scenstsy.us
scenstsy.us
*.scenstsy.us
*.tkallred.scenstsy.us
serverkel14.com
*.serverkel14.com
*.ww25.serverkel14.com
*.hostmaster.stroj.pl
*.mail.stroj.pl
*.root.stroj.pl
stroj.pl
*.stroj.pl
*.ww25.stroj.pl
*.admin.t9.vc
*.api.t9.vc
*.app.t9.vc
*.backend.t9.vc
*.hostmaster.t9.vc
*.old.t9.vc
*.random.t9.vc
t9.vc
*.t9.vc
*.admin.u4gn.com
*.bootcfg-plow.u4gn.com
*.fe-newlookword.u4gn.com
*.field-f0-issues.u4gn.com
u4gn.com
*.u4gn.com
*.www.u4gn.com
westciv.com.au
*.westciv.com.au
Other domains in certificate