Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.gestao24h.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 06, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
31:5F:E1:E0:6C:40:2A:33:31:D2:DA:8B:34:50:0B:71:67:74:C9:95:1D:3E:19:D4:C6:55:D8:11:0F:0F:CD:AA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
followuson.in
4kg.in
8kg.in
addonacademy.in
tkt.almosafer.com
alpeincameo.com
amocustoms.jp
link.anenta.com
illusionrun.anifestmalaysia.asia
anthonydellavecchia.com
askchrisn.com
greenscapes.beetek.net
www.bettoday.com
exhibitor.bim-app.at
pm.stg.bizflex.app
boeconsulting.no
building-your-future.pt
chengandmark.com
app.cinenow.ca
app.ckoapp.com
palmarrestaurant.clau.io
www.cloudadvize.com
cloudquetzal.com
www.coastandvineschurch.org.au
ankitacharya.com.np
quiz.intex.com.pl
crumplepaper.com
cryptohire.me
www.cybsec-tech.com
devcur.io
dillonbyron.com
link.doctoralia.co
dreammo.eu
ecloud.education
www.everhealth.net
familydatabase.net
admin.felipebuffet.com.br
demo-lite.finlup.id
fireadmin.io
floring.hr
followmeon.in
followusat.in
app.gestao24h.com
www.grandmasjid.com
grayhut.ca
develop.provider.guestgenie.com
appointment.hairtect.jp
movie.handong.app
widgetsgi.headstart.biz
mak-chemical-external.hmgrwn.app
indieflavours.pl
jeremias.page
beta.jetsyt.com
open.magari.kadengeyaa.com
kkcabinets.ca
nordunet.app.konch.ai
spartan.ksot.net
liseknipt.be
localfox.in
sulu.ltl-xpo.com
mariz.io
inside.miyauchi-akira.app
motelpedrasnegras.com.br
station-manager.mylock.es
bienvenido.mymoons.mx
auth.mymove.eu
naturepass.no
notakaos.com
www.odmrestaurants.com
www.otomateme.com
demo-docusaurus-blog-reactions.ovisly.com
pathtofit.me
perfectgifting.com.au
pisscoin.ai
lpny-1023.porcupine.live
primeiramedia.com.br
protectorsofbalance.de
readyassist.in
rizz.cc
nem.rnetian.in
robotdepingpong.com
manual.runloop.com
get.safarpoints.com
app.scoolio.de
snap3d.io
sprel.pro
www.stb-burgwedel-meyer.de
stitchandshare.com
dash-jp-qa.swyft.com
www.technicalwritingtraining.ie
telic.co.za
tillhub.ch
fsg.minhacentral.trausedu.com.br
www.tribbum.com
tools.trinityinsight.com
uncleuncool.net
www.viethc.com
reviews-axo-dev.wallia.io
www.yoann-joly.fr
www.zabeducation.com
Other domains in certificate