Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=sistemasaudiovisualestijuana.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 04, 2025
Valid Until
March 04, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A2:05:B1:65:DD:1D:CB:25:B0:4C:D9:D4:D7:FF:84:C4:0F:B3:90:58:4A:90:43:C3:4E:0D:6D:0C:37:22:D1:25
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
formetto.headsup.technology
www.2planner.com.br
8five8tx.com
www.acilcekicigelsin.com
ext.stt-gdc.acuizen.com
www.ahmadrifaii.com
www.aimct.co
www.akanni.marketing
alamut.nl
www.allchain.cloud
listen.appsidious.com
app.argonav.io
articled.app
www.panel.bniqroo.com
bookvitals.com
firebase.cashnow.ai
charlielewiswrites.com
goza.clau.io
cmxx.ca
partner.inforsys.co.id
www.nutrasphere.co.in
codeswitch.in
dailypickem.net
dartmap.com
www.barriere-tp-personnalisation.dfd-group.com
verify.dollie.app
www.edop.edu.rs
electricfun.io
eh-widget-demo.ellipsishealth.net
engym.com
www.ezgotaxi.in
falktime.se
fancydemo.app
fc-me.com
www.firelize.com
www.fixonal.com
www.floridata.com
www.fuelandcarbonsavings.com
glm-productions.com
www.go-kundenportal.at
www.harteliebe.com
hizen.io
hokuway.jp
www.hotel-palmiers.com
www.infomusiconline.com
internetfriends.social
api.invue.live
www.ishida-it.com
dev-partnerweb.isthara.com
room1.dev.kidskey.co
klareo.com.br
www.klareo.com.br
www.leader.live
beta.lemonator.lemontree.fi
lgrdicelab.com
lonelygamer5th.com
links.lucydevteam.com
www.ludohall.com.br
www.lunaconnect.ie
campaigns.mailtrap.info
ramongarcia.marcafranca.com
app.megalink.io
melodyml.com
pizzacala.menui.de
mgportfolio.us
michaelecon.com
www.mint-teams.com
platform-gateway.monscierge.com
muuuh.com
stage.money.mvtech.dev
mylife-timeline.com
www.oliverlorenz.com
omamacoconsciente.com.br
push.alerts.apps.kan.org.il
posmik.org
www.psifernandamartins.com.br
puppy-tracker.com
quiklogs.com
www.raykadmis.com
www.saletaneczne.com
everton.scouthub.app
www.seaviewindian.com.au
shahcopperpipeclassaction.com
sistemasaudiovisualestijuana.com
www.skillsleague.ninja
smarterlyapps.com
bodytrace.storyhealth.ai
erode.tatataxi.in
kanyakumari.tatataxi.in
madurai.tatataxi.in
tenwallets.com
theflipside.cc
thegoodlife.vandervlugt.dev
alpha.versify.app
watumedia.com
app.works.report
notease.wrth.dev
www.xsbay.org
business.zeaeye.com
zootasyland.com
Other domains in certificate