SSL Verification Bypassed
The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.
Reason:
Expired Certificate - the server's certificate has expired
Open
Cached
·
just now
62/100
SECURITY SCORE
Certificate Information
Subject
CN=kombooster.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
August 25, 2025
Valid Until
November 23, 2025
Expired
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
43:E6:20:12:EE:16:93:DC:46:19:C5:0F:FF:D5:7A:DC:CC:F4:18:60:8F:90:9C:EF:7A:ED:FB:D7:45:E4:03:E0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
liidutpl.ec
afyrat.se
www.assassin.company
atamawari.com
autisticdev.com
bastadmakerspace.se
www.boldandbright.co
links.car.info
staging.open-us.cardiosignal.com
checkinevent.com.br
www.ciclometrics.com
configurator.climatemachines.com
studiorami.co.il
codenurtures.com
coderbot.tech
iwo-ote.excelcomms.com.my
corkboardnotes.com
www.cyclistsafetypatches.com
deadline-queen.com
design-languages.com
app.didrow.com
www.dreamtv.mn
driverado.com
netrunner.edlb.dev
gruporoble.elequipoatomico.com
devinvest.elevationai.com
www.empiretruckingllc.com
www.ethbet.network
lernen.faqyou.de
fashonst.com
fidelitustransactions.com
www.forge.me
freeyourvulva.com
gargoyle-music.com
static.glimpseparentalapp.com
grocerxl.com
www.hecmapp.com
honeycombwoods.com
houze4upro.com
ihome-rf.ru
imperiovapeo.es
injusticebanks.com
insighealth.com
staging-v2.insightech.com
legacy.insighty.studio
integrationsninjas.com
jcamautosports.com
links.joyark.com
anime.juliotati.com
kemplet.com
khmerdc.com
register.knownuggets.com
kombooster.com.br
kylecubit.dev
laprecioussalon.com
www.leadershipboot.com
web-proxy.livekid.com
lk.sv
www.mdg-group.fi
mmxxemosworks.com
www.multiline-trading.com
www.myflexitime.com
admin.naduvi.io
www.nakurz.cz
pic-smoosino.mentor-stage.neccton.com
non-vpn.com
procurement.nutiliti.com
www.opencollector.jp
ownrentkenya.com
www.panhouse.dev
quickrisk.module.staging.pentech.hu
www.qration.me
app.qualiscore.com
hotelsavoy.ratality.com
rattlesnakemilk.com
rdservicess.com
reefrevive.org
platform-v2.sacurn.com
www.sagradalanzadaelche.es
www.saysmt.com
www.seevoi.com
www.shoplocalmo.com
sntssseccion26tab.org
uplink.straylight.systems
test.app.surfpayapp.com
admin-dev.marathon.thai.run
testnet.token10.xyz
tokyofrequency.com
www.triple-freezer.com
qa.turiconnect.com
twistedsolutions.se
dev.dhp.quiz.thrive.uk.com
www.verein-wichtig.at
www.viadellazzurrabeb.it
www.vibelign.com
vipin.link
cdn.fr.voxelmax.com
www.wedevelopsmartapps.com
www.wordblitz.com
partners.zyffy.com
Other domains in certificate