Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=franciscomacedo.pt
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 15, 2025
Valid Until
March 15, 2026
80 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DF:AF:84:BA:5D:EF:B0:E9:B5:6C:17:BA:00:BA:1E:C3:58:8B:A3:E4:4A:73:77:5D:28:9E:51:85:11:51:37:35
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
focuspet.zavislab.com
www.1stmarinecorp.com
abuabdou.com
www.abuabdou.com
finanace.adad.codes
agios.bio
app.airteam-services.com
www.antrixum.com
theatricalgroup.armenian.ca
ashenhorizon.com
automateyourfitness.wiki
axelrod.net
beaktheapp.com
www.beaktheapp.com
www.borderstatus.com
brzpay.com
malaguena.clau.io
viasonic.co.kr
davesdrywallandpainting.com
deadlevel.com.au
denataleadv.com.br
duan.li
www.emadideen.com
enclaveai.io
engineeringyoutheducation.org
farmtrackpro.com
boa.forja.cc
franciscomacedo.pt
admin.furwoodd.com
ghansonconsult.co.uk
saoluiz-saude.guiasaudemais.com
hammerle.us
hellogaspy.com
platform.dev.hero-workout.com
www.heylesoft.com
applink.indiatv.in
innerproyect.com
services-staging.just.insure
justtwobrothers.us
linkriotkn.kisline.com
www.kultivoia.com
neus.lakeman.sk
lamoretta.com
commission.lancasterbaptist.org
devlogin.lovepopcards.com
lysogenicgames.com
mahsua.com
www.mecanoglobal.cl
app.mellowme.app
www.mfstartups.com
mrdishant.in
mcl.myclubsapp.com.au
auth.ordernow.myomnihub.ai
interview.myproxi.io
studio.myproxi.io
nathandevelops.com
app.naummi.com
www.newworldtravellers.com
ningtamba.com
oaksociety.co.za
onuralpavci.dev
www.outufit.com
www.polyglotton.com
prominenthire.com
purehealthlab.org
app-filtrominas.refiltek.com.br
www.reginabeatriz.com.br
music.rubyred.au
saleemgagguturu.com
sensible-trades.com
www.sensible-trades.com
ampersand-dev.sequoiacap.com
staging.auth.serenefire.com
sevisacorretoradeseguros.com.br
cpass.spiolabs.com
app.sportan.app
www.srikandhaaalayamtraders.com
ny.stubbfrasningiumea.se
stubbfrasningiumea.se
www.stubbfrasningiumea.se
sweetys.mx
mitid-app-switch.sygeforsikring.dk
array-functions.szabonorbert.me
invitation-service.tadatada.com
www.terencekruger.com
books.theheadfamily.com
tomarsuraj.in
www.tryaffinify.com
urbanianmistri.com
venvarsoft.com
versacegroup.au
vebooking-link.vinci-energies.com
www.visheshinternational.com
www.vsg-bg.com
vuelamerica.co
app.woodcockandcavendish.co.uk
app.wotive.com
www.xfactortechnologies.com
brockman4.xplolog.com
yagenjigama.com
Other domains in certificate