Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=eletrokferramentas.com.br
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 12, 2026
Valid Until
April 12, 2026
51 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
68:B0:9F:E6:1A:09:62:1B:4D:5C:0E:7D:57:AD:1D:C4:E7:D5:97:59:38:58:05:7B:71:4A:0D:78:E8:A2:9F:C4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
fdeex.com
*.fdeex.com
*.www.fdeex.com
airfranceklmvirtual.com
*.airfranceklmvirtual.com
*.assets.airfranceklmvirtual.com
*.m.airfranceklmvirtual.com
*.myteam-software.airfranceklmvirtual.com
*.v2.airfranceklmvirtual.com
amazoncout.com
*.amazoncout.com
*.ww25.amazoncout.com
*.ww38.amazoncout.com
blzbets.com
*.blzbets.com
*.mta-sts.blzbets.com
*.vpn.blzbets.com
*.wwww.blzbets.com
cartaohavan.xyz
*.cartaohavan.xyz
*.aveanna.dcisoftware.co
*.cfms.dcisoftware.co
dcisoftware.co
*.dcisoftware.co
*.sipexternal.dcisoftware.co
*.ww25.dcisoftware.co
dreambellas.com
*.dreambellas.com
eletrokferramentas.com.br
*.eletrokferramentas.com.br
erlundhouse.co.uk
*.erlundhouse.co.uk
grabsymmetri.com
*.grabsymmetri.com
*.geinou.hosizorano.com
hosizorano.com
*.hosizorano.com
*.leap.hosizorano.com
*.media.hosizorano.com
*.orion.hosizorano.com
*.vega.hosizorano.com
ivv.to
*.ivv.to
*.new.ivv.to
kaysjewlery.com
*.kaysjewlery.com
*.aela.kea.au
*.balali.kea.au
*.gala.kea.au
*.kauthela.kea.au
kea.au
*.kea.au
*.naguce.kea.au
*.sathire.kea.au
kinderleeds.org
*.kinderleeds.org
*.app.momentumcashflow.club
*.mail.momentumcashflow.club
momentumcashflow.club
*.momentumcashflow.club
*.test.momentumcashflow.club
omzarncas.com
*.omzarncas.com
pronmate.com
*.pronmate.com
*.school.pronmate.com
*.wildcard.pronmate.com
retgdsence.com
*.retgdsence.com
*.admin.reuniones.online
*.auth.reuniones.online
*.conference.reuniones.online
*.cpanel.reuniones.online
*.mail.reuniones.online
reuniones.online
*.reuniones.online
*.webdisk.reuniones.online
*.ww25.reuniones.online
rolexsmm.com
*.rolexsmm.com
thinkers-tech.com
*.thinkers-tech.com
tiendamagik.com
*.tiendamagik.com
*.download.tuhunaer.com
tuhunaer.com
*.tuhunaer.com
wuyun001.com
*.wuyun001.com
Other domains in certificate