Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.mauriciobecker.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 13, 2025
Valid Until
January 11, 2026
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B8:0F:C5:42:D3:A2:55:C9:B8:75:9B:9B:FA:EA:51:6D:8F:10:49:2D:27:E4:E5:13:07:0D:E7:A3:77:31:96:8C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
glombardo.xyz
lakeshore-roomplanner-cert.3dcloud.io
automataife.aife.io
armysportscamps.com
beertocode.in
home.chatwithhma.com
sabordelaternera.clau.io
vegas.crime-cases.de
ecdc.datatechvibe.com
ddlogistics.com.mx
desertdiamondautodetailing.org
www.joaoguilherme.dev.br
stempeluhr.digitaix.de
api.pay.docspoint.in
thoothukkudi.dropstaxi.in
edsonayllon.com
egomundi.ro
www.elmonogourmet.com
emetmortgage.com
falconeracing.lk
staging-app.finkraft.ai
flexnetwork.shop
www.flossypork.com
link.folhavitoria.com.br
archivio.fondazionegentilini.it
novohorizonte.g2canal.com.br
geriact.com
app.getsystem2.com
www.glitchfirestudios.com
grahambull.com
greghemmes.com
guide2sarajevo.com
app.hazardfit.com
homebooks.in
in-a-row.io
app.investtor.com
console.ipsos-autoconnection-development.com
darys.jesusbossa.dev
www.jmd.is
www.kitsunecompany.com
lbconline.lbchome.com
maintenance.legendscommunity.app
www.lendingboxx.com
linje615.se
locksmiths.sg
logopaedie-lohhof.de
www.marzouka.com
www.mauriciobecker.com.br
concept-site.mdstmarket.com
dev.meharsinghhospital.com
michaelwillmott.co.uk
dragstyle.mimxr.com
minecraft4nerds.co.uk
www.mitenand-arth.ch
www.modeonbanda.com
www.monkeytungsten.com
gschool-dev.msaliceb.com
airglass.myphoto.com
www.nexivr.com
timer.nibli.net
notiva.dk
referrals.nowchayn.com
www.nutfunc.com
dabbaflow.opencolearn.com
pix888.net
fctry.polyluma.com
premierelabph.com
link.presslabs.dev
www.promotoralarapida.com
prospectautoservice.com
puffavax.com
pyts.link
rapidpay.pk
app.rekindlelearning.com
www.remixit.io
teletrabajo.rflex.dev
rikukallio.fi
evento-develop.rogeriossantos.com.br
www.schulden-hilfe.at
securachain.tech
massdoms.sexycoder.com
slicedstudios.com
slicznazabierzow.pl
pager.smartlinepro.com.br
dev.smartodr.in
www.thuglife.finance
true-as-steel.ch
gimnasiomineral.turnosweb.app
valithunai.com
bill.vilasalzburg.ro
visualist.app
auth.staging.warp.dev
www.tukarfollow.web.id
dev.view.wec360.com
app.westlandfreight.com
www.whdreams.com
wizonchain.com
start.wonderschool.dev
organization.develop.wowworks.ru
www.zubagh.com
Other domains in certificate