Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=lebrundelivery.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
55 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
64:A8:66:E1:4D:F5:FF:73:C6:26:C4:45:1D:89:67:82:2F:34:E2:F8:FB:68:68:5E:49:EC:14:39:13:EA:97:BF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
mathewsavage.com
www.200e83rdstreet.com
addiits.com
aj4.co
ajoara.com
www.alejandrorochette.com
alessandrolioce.com
www.anteskoric.com
apoclaunch.com
liveplanet.app.br
assignmentplanner.app
www.atlasdigits.com
pitch.augmon.xyz
avantagescpo.com
bazzflow.com
staging-aida.beings.com
auth.bertelur.com
volleyballbisonsbuhl.deeplinks.bfansports.com
m.bgame168.bet
businessoptimaizer.com
last-fm.carlosagosto.com
dev.chied.info
chinmaygarg.com
www.chonks.nl
web.clye.app
addlicencemy.pointstar.com.my
dakshamdevelopers.com
www.darkhallowcreek.com
davbankllc.com
app.dev-sg.net
dhanacalltaxi.com
didichat.app
digicradle.com
documator.app
collections.dpdlocal.co.uk
www.casacerrada.pucp.edu.pe
blog.en30.net
www.enkeldigital.com
entrepreneurshipbooksapp.com
link.esrwitgoed.nl
vn.eui.app
cfartbooth.fansanico.com
felicette.app
finetunemarine.com
five32.com
forgelogic.llc
app.getcortexapp.com
l-dev.goalbud.org
hackerbaylab.com
homespungames.com
honorablemikeeng.com
hvarconsultoria.com.br
usrmgmt.development.invoigo.app
kevindybeck.com
pizza.keysar.net
laxman.tech
lebrundelivery.com.br
limoinmckinney.com
locofy.ai
lunlundi.com
micocinavirtual.com
qr.micompra.app
minigolflive.com
minimenu.app
userguide.trust.miracl.cloud
miyauchi-akira.app
www.mmo.ninja
link.mycopilot.com
dtfotoasja.myphotopal.shop
oblefe.com
olhofotografico.com.br
www.appozam.org.es
pairing.co
family.peterneumark.com
pixapuzzle.app
innov.plusscommunities.com
predict-game.com
www.pricetool.app
www.bhs.procad.pl
www.profumerianadal.it
testeinvoice.qpos.me
www.rebecca-mastrostefano.it
reinnovatelabs.com
richar-marshall.com
sadqajariya.com
scrolldex.app
shandukani.com
sign.wine
s154w.sistena.app
cms.smartplant.app
www.swagit.io
www.tantelise.cl
www.tarotfied.com
www.thejirka.eu
app.uavplus.nl
dev.unblockme.io
www.websitewiseguys.com
nightcalc.wingmanlog.com
www.1309.in
www.yellowwhale.us
Other domains in certificate