Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=link-hcagicont.nibo.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A5:CF:BA:73:16:34:4C:F5:EC:A1:2B:29:8D:C9:34:17:0A:7B:27:5A:B1:EB:35:E4:F3:AF:2A:76:91:48:92:A3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
docesensacao.app
ahbiologics.com
boardsnthangs.com
willseed.boat-admin.app
app.bodyfast.de
bonnaud-estates.com
www.bytecodesystems.com
chamaldev.me
demoschool-admin.classet.in
hidayah-admin.classet.in
www.clearpathfcuclassaction.com
www.clearviewgrain.com
tarusdesigns.co.ke
app.floraum.co.kr
scoreboard.colinsu.dev
shabdapaheli.teslatech.com.np
connectblue.com.br
www.covontario.ca
support.dative.me
davidmendoza.org
www.dementiazambia.org
www.dimensionsaviation.com
diversidemy.com
dot-app.jp
newtonian.dynamicliquids.com
ssa.eestec.ro
www.englandguru.com
witana.eolykab.co.za
fasterglobalentry.com
website.frec.app
futuras.com
guest.gr.chat
www.grafixshop.com
www.hackerbay.com
happyflat.in
admin.hataluck.jp
www.innfactory.cloud
go.ipcmobile.com
pharmacy.ishealth.app
jackspublishing.com
justbetweenus.app
kan-cheong-staging.com
kepatotorica.vip
kidsakademy.com
kuttinkorners.com
www.kyuen.co.uk
scores.lebolle.live
dev.ledgernalysis.io
letterspoint.wiki
lungesandlegends.com
www.mcard-rhr.com
iptv.mdn300.uk
www.medsarthi.com
milanvanani.in
app.miniracechallenge.com
www.muhamadfarihan.com
link-hcagicont.nibo.com.br
dev.niftycannon.app
pealton.oz-tms.com
pandabookmarks.com
paraisodemascotasmedellin.co
www.pathtofit.me
mexico.patitosfuriosos.com
fr.pdfsnake.app
servo.pdr.cloud
pescasublanzarote.com
pikoboard.com
play-dixit.online
nakedveganburger.order.pulp.eu
london.qdx.co
redpandacompress.com
www.repuestosotomayor.com
ricetech.ca
www.rockxing.com
data.sb34.work
seattleslabjack.com
www.skyemotors.com
www.sommcoder.com
squarecomputers.in
app-fresta-dev.stailer.jp
static.9232.work
storytelling.red
swap.ski
cangrejocascarudo.taki.club
firecontact.techunico.com
tightknot.org
www.trellixo.com
trotechsinais.com
dshare.truetour.app
tuscanhound.com
ubernihilist.org
uddl.ca
bhecn.unmc.edu
vatsrealityhomes.com
vrshare.app
watkanloekwel.nl
app.woltuse.io
workingholidaycanada.org
wyvern.events
app.yomiuri.co.jp
Other domains in certificate