Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=brasas.bz
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 24, 2026
Valid Until
July 23, 2026
78 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5A:51:36:A0:BB:F7:40:54:A6:AC:A9:6E:8E:73:23:63:CC:9A:8C:AC:89:29:7A:5A:2A:E1:9F:0E:9E:97:62:C6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
it-base.it
redirects.aardling.eu
adrian.im
www.advantaio.com
founder.aisharktank.fun
gestaochips.ama.adm.br
www.anartofliving.org
deeplink.anekonnect.io
arquests.lv
atmozstudio.com
auradot.in
app.autocs.io
auvura.org
webautorizador.avus.com.br
azora.app
painel.bondy.com.br
www.bonviewchurch.org
brasas.bz
www.brewerme.me
www.byadigital.com
servicioalcliente-serviciotecnico-dev.cc-irdigital.pe
www.charisma-arts.org
speccon.cnfg.app
confluencelab.org
internal.cphtrackers.com
datacapabilities.com
stock.datcang.vn
www.denkenkakomon.com
devsmoon.in
diyhugo.com
www.dogfacegolf.com
distribuidorarubens.edsys.com.br
www.ezamindar.com
fantasycompanion.net
frisup.in
www.germinia.es
staging.gpaelevator.com
graspnow.in
supersecret.gwjgames.com
staging.auction.holmasto.fi
horo.jp
dev.ibuildit.xyz
www.hims.ida-org.com
bestellen.indishbielefeld.de
jackpt.in
jeepusedspares.za.com
jockegustin.se
jonnyoc.co.uk
www.jonnyoc.co.uk
jonnyoc.uk
www.jonnyoc.uk
dev-update.k-9apps.com
kaworld.app
us-trip.kro.kr
reacttest.lab2zero2.com
snappy.liteclerk.com
lotto.lyib.com.tw
api.medme.life
account.stag.mirageid.com
monchisworld.net
auth.batteki-staging.neopa.jp
www.nickbrunston.com
www.ningenet.com
cdp.orbitist.com
partyservice-riesenbeck.de
phsardigital.store
pointingoutway.org
shrt0.portalcoj.com
cookies-consent.pria.cz
pureethic.in
rapidgateway.pk
deals.redsols.com
crm.sanghaviirealty.in
servy.co.za
skingenie.app
link.springpod.co.uk
txduyenhai.ebot.stedu.vn
www.textilsanramon.com.pe
www.thesense.jp
www.top-ten.app
auth.trustory.kr
tryaurelia.app
urbanfarmer.co.nz
pharma.at.utah.gov
app.vadi-school.com
vadi-school.com
www.vaskerum.dk
www.velpattasu.in
venezuelaconecta.com
victory-style.co.rs
www.waldorfgabrielamistral.cl
app.ideabook.walt.fyi
chesster.waymondrang.com
auth.western3.com
home.winchae.com
wordpicnic.com
yellowwhale.us
app.yenshop.jp
displaytools.ziyucao.com
www.zzz.team
Other domains in certificate