Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=scrap.faciles.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 24, 2025
Valid Until
December 23, 2025
31 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
78:BC:54:7E:DB:CA:CD:C8:A3:49:E9:C0:34:2A:87:EF:38:23:41:97:02:55:B9:99:33:5A:79:5E:78:54:0B:11
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
lernzettel.org
alcodio.com
www.almalakysoap.com
www.amaril.co.jp
www.dashboard.analyzee.io
anumberedcompany.ca
www.anumberedcompany.ca
www.anumberedcompany.com
benabbou.com
www.beyondwoods.in
bitofgaia.com
boooaat.com
boris-customer.com
brandsocial.com
www.brglnd.se
www.browsandyou.ca
caesar.pro
app.carestart.com.au
demo2-haco-supo.cdbg.jp
crm.edgelab.com.ua
api.complete.ist
www.constanzarassi.com
app.construwise.com
dp.d-doc.io
debabydoctors.nl
www.dental-art.education
dk-synthesis.com
www.dose.management
www.duplaem.hu
finuse.ecredito.io
auth5.google.eitvcloud.com
cls-workspaces.equiem.mobi
scrap.faciles.com.br
ferienwohnungen-rotter.de
app.flowledger.io
static.cabanacraft.frontfacer.com
geniusrepair.it
i.getalcoupon.com
www.goldplains.ca
www.gpi-code.io
dashboard.heymayo.com
www.hiy0ki.tokyo
www.humancloud.network
www.hzahar.com
imarchine.imartec.es
dkv.impargo.de
magic.inbox-marketing.de
inspiral.ly
www.jkmindustries.in
todo.kubukoz.com
www.dev.liftclass.com
www.logicomerinvest.pt
jackbox.looking4answrs.nl
beta.madadcare.com
www.mindmilieu.com
www.rtc.montblancexplorer.com
mosunhomes-realtors.com
mukuwemoyoengineering.co.za
dev.neno.schule
www.netgotiate.pro
bo.transitia.nodoia.co
www.oneos.com.au
sgourmet-rating.onlineapp.cc
pb-mc.stage.openkind.me
tech.olabi.org.br
links-pickup-sports.ossystem.ua
myako-scorm-ps.ovdns.co.za
peripatoeducacional.com.br
www.periscolaire-chenoise-cucharmoy.fr
paperness-links.poeticnetworks.io
caro.popoko.live
archcoffee.prokuma.dev
vixtra.qitech.digital
www.readytogifts.com
www.robertheathtruckingclassaction.com
share.rsa-sachsen.de
fichas.runtime-services.com
sky.santhoshsiva.dev
semaphr.com
chooza.smjukebox.uk
tools.sotiriskipouros.com
studeai.site
sudburyschoolofmusic.com
sutjob.com
bodahildayorlando.swanmoments.net
order.tablenos.com
tanko-tech.hu
www.themadnest.com
auth.tikbuy.com
trippeaks.com
dino.uideal.dev
www.uiuxstudio.net
deliverables.unwritten.media
veapre.com
app.vidyagiri.com
pdl.voltlines.com
wdeboer.dev
yanbuild.com
demo2.zentorks.in
demo3.zentorks.in
Other domains in certificate