Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=manual.soga.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 24, 2025
Valid Until
March 24, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
11:CE:0A:2E:C0:A2:41:38:3C:9F:52:BE:52:51:26:60:EB:18:C6:D4:68:9B:A9:7E:03:22:EF:CA:17:64:C2:77
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
hopdate.co
app.aatlas.com
www.acmatuab.org
beta-japan-labelers.aimmo.ai
alexharrison.dev
www.altajir.li
kanchipuram.aravindtravels.in
app.avo.sh
brent.bhbrain.com
www.bobilutleieren.no
www.bridgehouseambergate.co.uk
staging.buildyourcareerwi.org
www.cardonaindustries.com
www.layco.co.kr
www.codesharper.uk
support.colooder.co.uk
www.elusive.com.np
e.akdenizkimya.com.tr
dev-sso.conectacontrol.com
staging.ctcs.app
www.dmbard.com
e99x.com
whoa.easysignage.app
auth.elmsdev.com
exocet-research.com
www.fizixunknown.com
restaurants.foodstamp.tech
www.fuorstudio.com
licht.futrlabs.de
door.huge.geek.nz
generatorx.tech
www.goagileit.com
www.godba.org
goldenlion.band
gowatchit.de
grupo.my
elias.hessman.se
exp-qa.ideacloud.com
www.ingenuitychallenge.com
ivthe.art
www.jackrmorrow.com
paineldecontrole.jaentendiagro.com.br
www.jeremycrowe.ca
jisspa.com
www.joediv.com
www.jp-ventures.com
www.kitchencalculations.com
firebase.kkumizip.com
lachoutlaws.com
lucaselulu.com.br
mai.chat
www.mainhe.ro
makeupbcn.com
www.cotizador.marcosymarcos.mx
matiasrivero.com.ar
mchtkk.dev
michal-shlomo.com
mishaconsulting.com
mycaddy.org
links.mygithrive.com
get.myndlift.com
stage.newgenus.org
njbestmoving.com
nvitmarketing.com
test2.onb.vc
onyxfitgym.com
www.palettestrokes.tech
camping.pears.me.uk
www.picturepairs.com
www.pintoverflow.com
praatvaak.nl
pure-ha.net
notes.ragavkumarv.com
rethinkacademyasia.com
riqsociety.org
rishabnayak.com
riverpointrvpark.com
robertmaloney.dev
sales.sanee.app
incognito.scaffold.digital
www.shrq.sa
dl.skstoa.com
manual.soga.com.br
app.solarsales-pro.com
www.solenechiche.com
app.songtreasures.no
orange-app.speakylink.com
taxtherobot.org
www.teandradavis.com
www.the-sibundong.com
trinnix.com.br
www.truellista.com
www.tsang.se
valleyvotesproject.com
vivevillasoriano.uy
wanjaslist.com
warpzonefx.com
washchill.site
apps.wery.io
docs.smf.telema-stg.whitecloud.jp
Other domains in certificate