Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=auth.google.escolegisrr.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 06, 2025
Valid Until
January 04, 2026
43 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4D:C9:C5:A6:F5:82:87:70:CE:6C:5E:65:55:29:C5:85:26:1D:11:79:9D:D9:FF:32:2F:CA:CB:4C:DB:C4:55:E9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
mwillmott.co.uk
www.1fs.co
affy.xyz
redgive-z.aiblood.app
www.avarance.com
batesysbbq.com
www.binghana.com
mas-dandi.biz.id
www.bizzybooks.com
bradstock.org
referral.brosispku.com
escapes.buyfromscott.com
cadencepm.net
centeravid.com
www.centum.pe
chiyuanxiang.lat
app.choosesameday.com
5th-birthday.clay10.co.uk
claytonkucera.com
claytonsurgeon.com
www.takechargewellness.co.tz
cobstudyhub.com
coworking-passport.net
analytics.cresicor.ai
cros-compass.com
darnelleaton.org
daviorze.com.br
share.dnwplatform.com
www.elitecloseprotection.co
www.eroul.ro
auth.google.escolegisrr.com.br
www.exgo.one
signup.exspressocafe.com
labs.farmerjoe.com
info.fibal.app
fishingcatconservancy.org
flaschenteilungen.de
foureyesgames.com
applinks.glaston-r.net
www.glupy.com.br
goye.ai
happiestneurons.in
www.healthcareherohotline.com
ba.htoenjes.de
chat.nhatphan.id.vn
adm.infococloud.com.br
www.jaredxford.com
my.joan.app
frankstjerne.jonasstjerne.com
www.kababnajar.com
ugm-pretest.klarway.com
www.lankastatistics.com
www.lasercow.com
coupons.lifestylestip.com
lista-chwilowek.pl
lucidity.ink
www.luminarysuites.com
marcsinterweb.de
kalendarz.mmauto.pl
url.nandhoman.nl
www.newmaison.jp
thirtyyears.cacc.org.nz
patina-45.de
www.pawtales.gr
pieceofcake.llc
staging.pixhoto.com
www.demogratia.platfor.ma
poeticapp.ink
prudental.al
qubecv.ai
web.haoqi75.qzz.io
chat.rothlbaby.com
www.saletaneczne.eu
sanjavierprotect.com
app.scaler.com
staging.club.scorelit.com
stage.selfmadeacademy.se
www.seloeureciclo.com.br
www.sensovibeai.com
www.sently.io
invites.smashapp.com.au
soloadventure.app
rrtest.sqwadhq.com
www.students-tutorial.in
api.submitely.com
www.sumproagency.com
supplier.taporty.it
tenha.casa
app.therooftop.io
www.thesimpleengineers.de
www.threetravels.com
tlstarget.com
app.tpcm-usa.com
app.utrayn.com
www.vascsolar.com.br
www.app2.rex.vet.br
app.welloop.se
centroespacialdelta.yesmkt.net
www.yewonbiz.com
resources.zeguro.com
Other domains in certificate