Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.goodideasolutions.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 04, 2025
Valid Until
January 02, 2026
47 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
23:4D:48:92:BF:F2:AC:F5:60:FC:5D:F7:3E:E0:E0:55:AF:06:E1:67:1D:05:84:80:E9:0F:8D:A9:E9:45:8D:4A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dap.mestergruppen.cloud
312.io
www.4chakka.in
checkmyhomes.app.6-degrees.co.za
alexthorne.io
controle-financeiro.allpasso.com.br
old.antaragni.in
artechs.io
app.ashiqkhan.in
www.assureafrica.com
barometric.io
bazinhodelivery.com.br
www.bergquist.eu
pet-bitracker.bitapp.hk
boostmybusiness.org.uk
photo.borne-candela.fr
brute.cz
www.castersociety.com
www.cathar.games
eilonby.co.il
www.7webs.co.in
www.tint.co.in
applink.sscharger.co.kr
www.kahwa.co.kr
explorer.colada.biz
l.condelo.in
assetrx.cratustech.com
nz.creatoradar.com
cloud-analyzer.cybonix.fr
www.damienartero.fr
eagleloan.finance
classdiary.plkcfs.edu.hk
staging.emobot.fr
escrichjimmy.fr
meetings.ewents.io
ferdaaetlan.fo
finception.in
www.finception.in
www.finitel.rs
devapp.finvari.com
a0au.foodle.su
www.franckcolonna.fr
app.freecity.finance
new.friendsup.in
www.fuazaak.in
tslhr.futurereadyxp.in
www.galbalina.com
gdgpune.in
gdrinker.com
www.getsl.ink
www.gloryofgodcenter.org
www.goodideasolutions.com.br
venue.dashboard.prod.hellohub.com
hplogistik.cz
www.humbly.fm
intentional.io
truongminhngoc.io.vn
sos.itmr-dev.de
beta.jawad.in
links.creator-dev.joinroll.com
kfo-hd.de
dev.kiplano.de
www.klaytn.domains
rr.zso8.krakow.pl
krishnakantsalkar.in
www.lafumet.kr
levinundmiaforever.de
www.medistyk.in
www.monklie.nl
whoiswho.moodup.team
sandbox.mypetage.com
app.netanalyze.dk
www.sin.org.in
www.ouimet.holdings
go.pedropablomusic.es
peopleworks.io
www.piyushanand.in
tools.planaday.events
app2.plant.se
sso.preview-solutions.com
timegame.redcraftstudios.de
www.registrdluznikuknahlednutizdarma.cz
panel.rifasdorian.online
auth.safeyards.in
www.sahil-gupta.in
satumatto.fi
www.sebastian-gessenharter.de
shaileshprajapati.in
shpargalka.info
meu.sollo.digital
sunflower1208ayano.com
www.tayco.kr
techedit.io
thecodex.me
www.urbanzi.in
www.usedebo.com.br
tomato.utkarshdeoli.in
members.virtfit.de
walkofwater.info
a82a.yirunway.com
Other domains in certificate