SSL Certificate Analysis for emprestamos.com.br - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=votenooncc.com

Issuer

C=US, O=Let's Encrypt, CN=YR2

Valid From

June 10, 2026

Valid Until

September 08, 2026 88 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

56:CE:2F:1E:EF:7E:B2:6A:23:BD:BD:29:D9:3E:A3:06:17:4A:AB:94:5F:0B:78:79:0F:C8:46:C7:25:7C:E1:55

Alternative Names

84 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

84 domains

emprestamos.com.br *.emprestamos.com.br

Other domains in certificate

carlton.com.au *.carlton.com.au *.makemarkwebmail.carlton.com.au *.root.carlton.com.au *.ww25.carlton.com.au

championsnewagenttraining.info *.championsnewagenttraining.info *.hostmaster.championsnewagenttraining.info *.sitemaps.championsnewagenttraining.info

contactgoogle.com *.contactgoogle.com

*.bmc.cpcchina.org cpcchina.org *.cpcchina.org *.ww25.cpcchina.org *.www.cpcchina.org

ediable.com *.ediable.com *.ww38.ediable.com

flyhostess.com *.flyhostess.com *.mail.flyhostess.com *.ww38.flyhostess.com *.www.flyhostess.com

*.en.hianime.cc *.ftp.hianime.cc hianime.cc *.hianime.cc *.m.hianime.cc *.old.hianime.cc *.v1.hianime.cc *.v2.hianime.cc *.v4.hianime.cc *.ww3.hianime.cc *.ww4.hianime.cc *.ww8.hianime.cc *.www.hianime.cc

identi.au *.identi.au *.random.identi.au *.wildcard.identi.au

kloook.com *.kloook.com

marlinsnewballpark.com *.marlinsnewballpark.com *.uk.marlinsnewballpark.com

naughtmachinima.com *.naughtmachinima.com

*.dev.oldtoolstore.com oldtoolstore.com *.oldtoolstore.com *.staging.oldtoolstore.com *.ww38.oldtoolstore.com

oppsplace.com *.oppsplace.com *.www.oppsplace.com

peasants.com.au *.peasants.com.au

*.com.pelisonline.com pelisonline.com *.pelisonline.com *.random.pelisonline.com *.ww25.pelisonline.com *.ww38.pelisonline.com *.www.pelisonline.com

proponentfcu.com *.proponentfcu.com

siteadvisor.au *.siteadvisor.au *.ww17.siteadvisor.au *.ww25.siteadvisor.au *.ww38.siteadvisor.au

studyinjapan.com *.studyinjapan.com *.ww38.studyinjapan.com

theaters.com.au *.theaters.com.au

*.sc.votenooncc.com votenooncc.com *.votenooncc.com

xbh.de *.xbh.de