Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.projetoeestilo.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 15, 2025
Valid Until
March 15, 2026
64 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BD:1D:C7:93:07:B8:74:50:5A:57:17:24:1A:01:24:69:3A:B3:82:0E:C1:30:7B:55:18:57:5A:60:06:BB:B7:EE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
eject.io
amsprojects23.co.za
www.amsprojects23.co.za
www.atcgardening.co.uk
go.atos6.app
bigtreescorvallis.com
link.bipsoin.fr
blackfootmarina.com
bluemarlinarcade.com
bmq.city
auth.bogoseo.net
bridgingdivides.lk
dev.admin.castersociety.com
covid19.cheart.io
club-roots.co.uk
basheer.co.in
vsrgroups.co.in
craftdelivery.ca
www.crawlsec.com
www.ctconversao.com.br
developers.curioswitch.org
dabblesoftware.com
www.designem.io
www.dominicpocaan.dev
donachicapizzaria.com.br
dryinkdesignlabs.com
erp.gardneracademy.edu.ec
beta.eggkat.com
emanistanton.com
api.foodmycraft.com
fortunecarz.co.nz
galaxyforge.org
gbr.works
stagingdirectory.getquip.com
glp1microdose.com
pwa.goodmovesapp.com
funwithai.harshpatel.ca
www.himalayparmar.com
www.ilyaselaissi.me
www.inpuntadago.it
www.italyexpat.com
jandme.in
jevans.uk
www.kabir-ai.com
teclab-demo.klarway.com
work.leanlancer.com
lettler.com
www.levonkesh.com
www.lifecycle.co.uk
lightbee.lightkey.es
www.m18.tech
www.matasmatienzolaw.com
ar.measuremapapp.com
apollo.staging.moonisgood.com
munichpubsportscup.rocks
mysalesapp.online
www.mysalesapp.online
neverhappy.net
nguyenminhduc.me
incart.nine42.com
app.noterouter.com
www.novartdesign.com
www.opglobalexportimport.com
arkanoid.otherg.com
padmaodzerchoeling.in
mt.pbc-union-wien.at
projectesg.ca
www.projetoeestilo.com
www.radiotania.com
app.rockitship.co
saatanaan.fi
www.sainiphysios.com
salesmrkt.com
shikdertech.io
www.sidekick.health
invoices.signroots.in
chat.somehow.dev
www.ssucamps.com
stephrems.press
swl.surprise.com
calendar.swpotato.one
www.syslogics.net
dashboard.takyon.io
teameapp.co
bsu.teamgaryvee.com
www.theafricanmanpodcast.com
themrtcreations.com
www.thenexigent.com
scientific.theorygenerator.com
kinect.tixologi.com
tvremote.me
twolions.co
boletos.uanl.mx
360d.vikkon.mx
viraltrade.in
trivia.vz-experiences.com
wacco.help
wesmarks.art
admin.work.life
testnft.xdc.org
Other domains in certificate