Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=cliente.dev.jumaentregas.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
49 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C8:DB:C6:86:73:A0:A9:48:E1:8A:84:3E:00:92:85:63:39:D9:42:7C:59:56:5F:A6:FE:ED:88:28:5C:AD:47:C0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
globalgarner.com
2016.dddeurope.com
int3kles.3kles-consulting.com
www.aarifcarpenteria.it
test1.adaptivemedia.dev
sigma.beroepscode-v-en-v.appdashboard.nl
aureusventures.co.uk
uat.arion.aviapartner.aero
bechan.cl
blogeukono.com
admin.campingappen.se
www.cctruckingapp.com
www.chapeletperpetuel.com
chrisjward.com
theodysvadhyay.co.in
app.coachchat.ai
danmeter-canada.com
devegabarcelona.com
v2.nashicorp.dp.ua
overtime.dude333.com
eesur.com
feedersplusllc.com
admin.finlit.ac
finramos.com
app.firstdraftpro.com
app.focusmethode.nl
www.fou.sh
www.gamesforbrands.com
gceagletech.com
george49.com
hsbc.getviral.me
buy.go2nft.io
www.hilgerto.dev
www.hyria.com
icubetechnologyinc.com
www.ilikepixels.co.uk
isaiahcolson.com
jayohen.com
www.josiahholland.dev
jeremi.joslin.fr
cliente.dev.jumaentregas.com.br
leondejuda.com.co
www.localhostltd.com
www.lovenats.com
lrsstech.com
lsgfarms.com
mandee.ai
cardmanager.marcello.dev
matrixengagementgroup.com
app.maxiteller.ng
twinkle.mayakapps.com
www.menyoo.link
forms.metfi.io
www.mhodges.dev
chess.monsoonmalabar.com
multistreamers.com
www.mythfall.com
nandnandanarts.com
stage.nextsong.live
www.nocodejobs.app
www.numsters.com
ojaimountainestate.com
app.onlask.fi
ontrack.jp
www.oronnadiv.com
ortkamp.com
applinks.payed.in
www.api.hml.dashboard.payos.app
penduduk.id
www.peofficial.com
click.pikmo.app
planitscrum.com
www.planitscrum.com
pmhlda.com
alibus.pp.ua
prahoukrizemkrazem.cz
qavels.com
rachelstratemeier.com
reidandrew.com
riantono.com
www.mi.rocola.es
www.singinglessonscambridge.com
it.skygo.com
slabclimbing.com
smartconsumerbuzz.com
smssrilanka.com
cardshopclient.ssbyte.com
storeathought.com
www.surakh.com
app-stage.talent-alpha.com
companion.torre.ai
boats.torrensrowingclub.com.au
tramitesmonica.com.ar
tusharck.com
str8sports.uniformlab.net
venusholidaymart.com
facebook.viasacra.band
www.booking.wapleystables.co.uk
mui.wertarbyte.com
rozhladna.zdruzenieturizmu.sk
Other domains in certificate