Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=meduzapro.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 09, 2025
Valid Until
March 09, 2026
69 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
38:2D:39:B9:1E:21:F8:6B:B5:A5:D7:5A:54:D8:D7:D1:02:85:34:19:00:2F:70:C9:61:38:F7:A6:BA:52:B0:82
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ketopet.ar
cliente.agendabarbeiro.online
v5.angular.io
appchrepuesto.com
www.asjigabes.tn
www.ballin3leagues.it
mobile.concrete.binni.co
mcd.caryyang.info
cformandoy.com
pdip.greattech.co.id
bud-test.cleanbox.co.il
www.coladilla.com
delix.io
dm-list.ds-carlife.jp
www.e-periwinkle.app
www.ecofire.ro
thermotrack.ecoinnovation.ca
edi.technology
www.eliteventurescape.co.za
preview-login.emporix.io
www.fahimni.org
fidelizzare.app
profile.fielmann-lt.de
app.finertia.io
www.followmeon.in
esdata.fsbd.ai
www.gabriellafacts.uk
gnoah.com.br
www.gokturx.com
lixozero.ijui.rs.gov.br
post.harsimran.xyz
dev.my.hellodigitalbuddy.com
video.homeproduktionen.de
humlander.se
press.hypervr.games
www.imazen.in
oleg-olena.invito.link
irisbar.it
jamesonsaunders.com
www.joeyjansen.nl
kbbudapest.com
msteams.knbases.com
blog.kollectyve.network
koolini.com
app.korolevtennisacademy.com
www.kreadirect.com
blog.kxp.consulting
www.lachlancrawford.xyz
apps.level.travel
librarycatalog.ru
player.lumiere.is
meduzapro.com
mega-pool.ca
orders.miacake.vn
int.mindset.ai
broadline.myworkportal.ie
link-promaster.nibo.com.br
nicolassarria.com
pizza-hunt.games.novonext.com
onchaincanvas.xyz
dev.lernwelt.onecareer.de
orgesuseini.com
pantanorecords.com
js.pbj.live
dev-connect.petleo.app
calci.pfwiki.in
journal.pfwiki.in
www.physiochat.app
studio.pixelixe.com
moore.portfoliolink.co.za
www.preppydream.com
pubthursday.com
centralgan.pujasweb.co
www.qiy.eu
rcloudzen.online
homie.riedel.wtf
www.salatconnect.org
samandcamille.com
www.shb.li
inspecciones.sigovercloud.com
summit.skipcash.com
www.smsenergetics.com
demo-payment.snapmentor.no
snowfye.com
www.whirlingword.sourcekolektyw.art
checkersscratch.sqwadhq.com
cjvbsamco.sqwadhq.com
mcdonaldssamcoadmin.sqwadhq.com
www.sreekids.com
www.rocheemails.ssbyte.com
demo.steara.com
www.sudshare.com
www.synergatesgroup.com
ma.tapcast.io
teamitup.com
v1.the-tricktionary.com
www.thehipgroup.net
td2-website-helpers.timedoctor.com
demomissolicitudes.videolink.app
admin.ranet.wowdesk.jp
Other domains in certificate