Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=m.elfarodelemprendedor.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 15, 2025
Valid Until
February 13, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
02:85:71:D5:3A:28:B8:5C:13:2F:1F:F7:A2:AD:0D:B6:F5:D6:D4:89:11:04:18:A3:5E:49:33:E1:ED:F2:79:8C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
d-meter-demo.hidroconta.com
www.agastiayurveda.org
aicconstructora.com
www.aicconstructora.com
www.alphacarcover.com
www.altekno.net
anasnidir.com
analytics.arabeelearning.com
www.bhidiroglu.com
app2.bisevoapp.com
braianpita.dev
briarv.com
bustertheelf.net
care.ly
carpoolschedule.com
jasoos.chainram.com
cloudgpubenchmark.com
a1carcovers.co.in
www.concremax-gt.com
www.coursengage.com
react.crupai.cz
www.danielobima.com
b2b-dashboard.dawsat.com
www.devhack.co
www.digitxtra.com
m.elfarodelemprendedor.com
www.elitemaacademy.com
saibamais.enercred.com.br
ui.exto360.com
findmyfriends.co
fitvitfitness.com
flipclocklive.com
direct44.fsg4dentists.com
glassmaytes.com
painel.grupolocutorescomerciais.com.br
control.hark.eco
harnois-prouge.com
forget.hotarek.io
howtotalktowhitekidsaboutracism.com
www.hugo-huygens.fr
independo.app
platform.intelliomic.com
app-preprod.investico.com
auth.investiqal.com
biz.iworkie.com
www.juditmerayopsicologa.es
www.jummahprayer.ca
kiosque-sp-admin.kards.fr
www.klaavakiinteistot.fi
new.koova.com
kulnois.com
labbitspace.com
legalaliiance.com
lexiquebac.fr
liveincharm.com
locknotes.app
lukeisawesome.com
finanzas.migueldelagarza.dev
starfoods.mo-stage.com
noggle.gg
www.nohelix.com
rmdra.ondagoapp.com
palmalabs.com
politraq.com
rendymarojahan.com
ridersanddrivers.com
kiraniaga.rollingpay.co
round-robin.page
connect-ng-routes.rxoconnectint.rxo.com
www.shwetsatya.com
spa.sistemasbelkys.com
social-quebly.com
www.solariumvr.com
www.sommersprosse.net
www.sparkspite.com
srfitout.com
staragentai.com
stfolks.com
app.stopfanatee.com
switch-your-isp.com
tarcisioaraujotransportes.com.br
3dviewer.thelinestudio.com
thepearlscollections.com
threepro.my
tinyfal.com
tlm-consulting.de
tonyandjimsplace.com
zaoemenu.triggersplus.com
trisurrey.com
canopy.tychobra.com
gb.uniggardin.dk
unikwud.com
wearefaro.org
www.wearefaro.org
www.wherethewildbeersare.com
dev.wikiket.com
wt.xlntapps.com
www.xpressbolivia.com
www.worldfolio.ylab.app
staging.portal.zapmoto.com
Other domains in certificate