Open
Cached
·
just now
95/100
SECURITY SCORE
Certificate Information
Subject
CN=www.conectaula.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 31, 2026
Valid Until
May 01, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A8:3F:95:A6:A5:5C:AC:03:4E:37:B5:01:B0:62:87:23:89:FB:1D:49:46:46:2B:DE:3A:BF:50:C3:DC:8A:3F:99
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=31536000; includeSubDomains; preload
Content-Security-Policy
Good
default-src; script-src; style-src; +9 more
default-src 'self' https://*.firebaseapp.com https://*.googleapis.com https://accounts.google.com; script-src 'self' https://*.firebaseapp.com https://*.googleapis.com https://www.gstatic.com https://apis.google.com https://www.googletagmanager.com https://accounts.google.com https://js.stripe.com https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com; font-src 'self' data: https://fonts.gstatic.com https://cdnjs.cloudflare.com; img-src 'self' data: blob: https://*.firebasestorage.app https://firebasestorage.googleapis.com https://randomuser.me https://images.unsplash.com; connect-src 'self' http://localhost:* http://127.0.0.1:* https://*.firebaseio.com https://*.googleapis.com wss://*.firebaseio.com https://*.google.com https://*.google-analytics.com https://www.google-analytics.com https://*.firebasestorage.app https://firebasestorage.googleapis.com https://*.cloudfunctions.net https://accounts.google.com https://api.mapbox.com https://api.stripe.com https://*.sentry.io; frame-src 'self' https://accounts.google.com https://*.firebaseapp.com https://js.stripe.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; upgrade-insecure-requests
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
camera=(), microphone=(), geolocation=(), payment=(), usb=(), magnetometer=(), gyroscope=(), accelerometer=()
Recommendations
- • Strengthen CSP by removing 'unsafe-eval'
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
livehomier.com
compro.192.works
8five8tx.com
eve-industry-check.agnalim.com
www.ami.software
articled.app
awtradecentre.co.uk
baobunburger.de
bookvitals.com
shop.bormiobike.eu
firebase.cashnow.ai
wdiwt.cbong.dev
charlielewiswrites.com
cmxx.ca
www.cbaconstruir.com.py
redirect.pagodespues.com.uy
link.compradaqui.com.br
login.concertoanalytics.com
www.conectaula.com
www.dammy.co
dartmap.com
devtricks.eu
www.digitalslake.com
verify.dollie.app
engym.com
sprint-poc-wrh-admin.exitest.com
fancydemo.app
fc-me.com
www.feelthe.surf
www.firelize.com
www.fixonal.com
www.floridata.com
www.funforgelabs.com
goldminefest.com
grosenia.link
hub.homebox.co.uk
app.homecourt.ai
www.hypeenterprise.com
indocempaints.in
www.infomusiconline.com
app.inksideoutapparel.com
auth-firebase.innovamat.com
jack-spratt.com
jrunited.net
kxzz.dev
www.loli.tokyo
lonelygamer5th.com
int-key-link.lukb.ch
www.maed.tg
testapp.makusafe.com
link.memobako.app
michaelecon.com
survey.mini-morilife.com
muuuh.com
www.myiottrack.com
images.myjobscorner.com
natur-institut.eu
pic-sportwetten.mentor.neccton.com
weaver.newpast.co
www.ninfaspt.com
noweapon.earth
planshopcook.com
www.pollive.com
www.projectzomer.nl
www.quieromatch.com
www.ratemycx.com
www.saipience.com
get.savetofuture.com
everton.scouthub.app
scrollableapp.com
seanfinegan.dev
securitybestpractices.com
award.shiftlab.tech
www.shirtlessoldmen.com
hosei.shitatekan.com
silvercornergifts.com
management.smile-package.com
snindfab.com
snowgame.design
bodytrace.storyhealth.ai
pet-monster.studiocloud.dev
my.d1.stx.world
admin.supernovamining.com
sweetsugarapps.com
tapneatgy.com
theflipside.cc
demo.tiptraxx.com
app.tlsstore.net
www.toammall.com
www.tucasa.dev
www.urbanabodenashville.com
florenza.v8app.com.br
versametrics.com
alpha.versify.app
virtualhousie.in
clients.wardootech.com
whatproblem.dev
whitekite.in
www.wilsoncode.com
www.zuihou.jp
Other domains in certificate