Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=parceiros-dev.meupetshop.online
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
50 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AE:8B:84:B4:69:A8:B6:D5:2B:61:DC:DE:E8:65:29:21:C8:6F:EC:8C:15:20:DC:60:4E:4D:70:C9:53:B5:47:9B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
nwageffects.com
www.afiewura.com
admin.devel.agorify.com
apmf-fabry.org
auth.basis-development.bike
battalion.org.au
video.beet.live
berlinovka.de
buildman.co.jp
bushi.solutions
bytepic.dev
app.canedconsulting.ca
operations.capgridsolutions.com
manage-feature-dev.captego.com
studio-feature-prod-eu.captego.com
carbondalebikeproject.org
careanalytics.co.uk
app.carsplenty.com
cgs.gg
www.chrisgerber.io
churr.space
www.citygeometrix.com
everyonesnft.theclub.com.hk
coststewardship.org
crispoo-uat-table.crispnow.com
www.daoexchange.app
www.deletefacebook.me
www.delpierre.net
app.devogotmefit.com
www.dieting-for-engineers.co.uk
downloadpayback.com
ecolier.eu
score.ekc2000.nl
elektrik-soforthilfe.de
customer.emanageone.com
www.test.admin.engineersinsight.co.uk
auth.google.especialplay.com.br
www.eurasiasolution.com
links.finebar.pl
ariam.galvanorte.com.br
admin-demo.gemsotec.com
glamgirl.online
link.gowagr.app
www.guardianssmc.com.br
haeywa.in
questionnaire.release.haleoclinic.com
inmobiliaria-resar.com.ar
fireauth.instanteat.it
irripasture.com
jonathankoch.net
market.jooba.ai
grade.jungsub.com
www.justpresswork.com
kobba.io
letsgovodice.com
mariehamnairport.fi
mariobabuljak.com
appredirect.memberjungle.com
parceiros-dev.meupetshop.online
miguelpachecogomes.com
mindyourpost.com
www.mrcritic.app
www.naimsedan.com
visitas.nubaltic.com
edm.o2o.vn
www.on-fire.io
perfectduo.dev
pickmeup12345.com
pinapp.tech
pittystop.com.br
www.pkzcurrency.com
staging.next.playbook.vc
pollamundial.org
www.priffe.exchange
share.pwunigo.com
cdn.queensherainfotech.com
rainbowtravelservice.com
plugin.ratality.com
receptchecken.se
coca-cola-inference-test.roboflow.one
www.rochypizza.com.au
shiseido-live.ch
shrocery.app
smartbibles.com
loxam-rental.speakylink.com
admin.spotyourdeal.com
stakehex.today
svelta.com.br
analytics.swankpos.com
support.swiftly.africa
www.systemdesign.no
tech-tools.dev
app.time4pet.com.br
untypisch.at
vicpoolcomplianceinspections.com.au
wakuwakustudyworld.co.jp
weald.world
pgdcalc.wustl.edu
rirekisho.yagish.jp
zugoe.com
Other domains in certificate