Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.casadeseveri.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 22, 2025
Valid Until
March 22, 2026
69 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B7:D4:5D:E8:DD:35:20:F5:AD:55:FB:AD:08:49:27:33:B4:A2:04:FF:4C:F0:43:D6:5E:B3:63:19:50:81:B8:C6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
invoyze.com
www.agilevision.tech
ahsanusman.com
www.aightbetnow.com
www.aituring.co
www.alvaroalbiach.com
amajgroup.com
app.amplifimusic.com
andspacehk.com
cheatforpiccombo.apptget.com
wcag.appzi.com
portal.staging.athena.com
www.autotcn.com
fintech.azoft.com
beltri.com
dev-online.bigordr.com
pm.bizflex.app
www.it.caldera-studios.com
calibertollers.com
www.camargocorretori.com.br
www.casadeseveri.com
overture.chan.gallery
clinicadentalealbania.it
anatomyappcp1.clinicalphysio.com
l.clinikk.com
staging-accounts.codedesign.app
collective-intelligence.com
construcaobr.com
consultoriaenaccyon.com
www.crustfirst.com
uber.cupperapp.com
dev.ro.dispoprod360.dataauchan.fr
datacuts.io
www.nsail.decoderesolvency.com
dhermik.com.br
digitallywoven.com
email-singlelogin.doctors-finder.com
dragonsbeardcandy.com
alone.easewin.co
reefersphoto.eastseareefers.com
englishlawcorp.com
flextimservices.com
traveljapan.fly-ana.com
francisjain.com
gabrielpetersson.com
mypage.geniusfinder.me
2c2.getemplaza.com
3c3.getemplaza.com
gobitcoinsv.com
frame.groenebon.nl
gurudada.com
iarslanaly.dev
intermediumemp.com.br
events.introwise.com
link-beta.istegelsin.com
www.j0ey.co
www.jeti.app
leigh.net.au
mazda-performance.lernit.app
liveops.mobi
www.logically.app
www.lukasgeiger.com
www.magictypist.com
clinic.play.medeintegra.app
ministudio.cl
www.mminfraprojects.com
admin.msellernote.com
www.mt-experiment.dev
www.mymanaged.site
abi.nicolaischmid.de
foos.ogaspaas.com
dd.paperstac.com
pdb.pepperpin.com
app.phenomenalearning.com
www.playproductions.co.uk
qr-dashboard.polipay.io
quailrunventures.com
rainbowpackersandmovers.com
rasmuslian.com
www.readb.co
dev.recirclable.app
recipes.renoescamilla.com
salavat.sh
sardaarjirestaurant.com
satoshishellz.com
shivshaktiinfra.com
aanpakbijplaatsingen.dispatchx.skialabs.com
songbuddies.com
dev.stakecare.app
app.stylecarousel.com
games.teammurosta.com
tracking.thanhdt.dev
www.thebase.ist
apps.thefoodfellas.co.uk
www.thelateshifters.com
www.thisisfrozen.com
auth.tly.at
www.toonswinkelstandtechniek.nl
app.trustline.id
wunschtraum.rocks
Other domains in certificate