Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=links.dinerama.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 17, 2025
Valid Until
March 17, 2026
58 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4F:D6:97:01:83:49:FD:21:72:83:90:AD:CA:CE:0C:CC:0C:38:88:4D:65:D0:11:9D:15:CE:C5:DB:D4:7D:F5:2E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
meta-destiny.com
www.meta-destiny.com
100xsteven.com
seo.7sindhu.com
advavinashkhedkar.com
aiudalabs.com
time.americantiledepot.com
hapi.apialerts.com
hapi.apialerts.dev
approperties.agency
artfaktor.org
www.atenascontroledeentregas.com.br
app.batchinvoice.co
www.boomerangchat.com
business.buddypass.tw
www.calibresecurityservices.com
erp.casaanne.com.br
www.centuracores.com
certificadodereciclagem.com.br
maishamabatifactory.co.ke
www.policy.co.ke
www.stitch-it.co.kr
www.coacter.com
www.lynbertoptometrist.com.my
goth.com.tr
timon.constructions.se
www.devlogix.co
www.devputers.com
links.dinerama.com.br
dondet.vip
www.druidz.app
times.edu.pl
embody-now.com
www.esteticaautomotivaindaial.com.br
prepdn.www.facires.com
www.fitself.me
freesepa.com
streamlab.gakuseiguild.co.jp
instrumentarijum.galis.rs
www.geoadept.net
www.gestaovisol.pt
www.getchori.com
guiadocoracao.online
dashboard.happydeliveries.com.au
happydeliveries.com.au
erp.hemox.cl
okvl.id.vn
dev.iownbiz.com
ishizaki-portfolio.com
lp.j2rengenharia.com.br
jazedesigns.com
osh.kexpiral.com
app.konieczjutrem.pl
linearvalue.services
www.loondit.com
www.lotandco.fr
maisonbleu.store
www.mandala.one
www.medicaldevicewatchdog.com
wms.munix.ai
myfavtutor.site
t1.cns.net.tw
nexdor.us
nexlume.studio
www.nexlume.studio
register.nortic.se
www.nosotros.pe
www.preone.eu
qrsv.art
qubit-dna.net
verse.quranpath.me
auth.resumatcha.io
orderpro.sahlhub.com
www.saleplaza.com
coinflow.sandunsiwantha.com
sava-sh.agency
scoot-er.com
sheeptrack.net
info.siepalcross.com
www.smtdetector.com
admin.socialonbrand.com
solarinsight.co.za
synalogic.ai
www.synalogic.ai
quorumhealth-staging.synctalk.us
quorumhealth.synctalk.us
tehnoklas.tech
tembok.app
akro.timp.io
artemisa.timp.io
bewildstudio.timp.io
movete.timp.io
saudesport.timp.io
sincronia.timp.io
app.trampix.com.br
www.truecolours.org.au
share.unscript.ai
e-academy-7d3.my.voicezero.site
wavelabai.online
wiseglobalresearch.in
Other domains in certificate