Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=coral120.hrtech.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 11, 2025
Valid Until
March 11, 2026
71 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
42:0C:A4:51:BF:BC:CF:F9:BA:D9:DE:6D:A3:A7:E6:95:D3:B5:97:C4:74:64:93:20:35:B9:A8:D0:3E:97:DA:66
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
pcrapps.in
connect.3diq.com
adityachoubey.com
cgmotion.affexion.jp
app.agenda.cr
www.agustinmalnero.com
andreaskurz.io
app-ever.com
aranjbar.me
www.arquitetura.art
app.asez.ai
www.aviliusconsultancy.com
opioidservicelocator.azahcccs.gov
chufsd.backpackfordrive.app
betteresg.dk
beyondlearning.app
blixo.xyz
blocos.co
bouboulodge.co.za
bucklerash.co.uk
backend.buerli.io
www.cassieesposito.com
www.chessneurons.com
convene-now.cpptl.co
reporting.cyberloop.ai
davidhodge.dev
dont-scan.me
edmusicateachers.com
elanna.com.br
eqcoops.com
equipogs.com
fevfans.jp
generative-ai.company
www.getthezone.app
subscribers.test.ghostline.xyz
golant.app
www.gridshark.app
devtest.grupa.io
dev.hmgrwn.app
coral120.hrtech.com.br
insent-forms-test-url.insent.ai
www.institutopensy.com.br
hwadmin.intelibuy.my
platform.ishealth.app
devadmin.istiqlalhouston.org
juanasher.com
www.keaschool.ru
kilinc.blog
www.lihhatsov.com
madamcurious.com
marswillcode.com
mavacoldbeverages.in
app.menfasting.one
detailz.menucloud.ai
gift.myzeal.app
beta.nahaus.de
nataliewhitten.com
www.nebo-lit.com
app.neurowaste.com
nexusvid.com
nfcschool.com
link-vetor.nibo.com.br
orderr.in
test.postroom.app
belle.proshort.ai
injuly-illness-code.search.q-n.jp
auth.quizbrisk.com
rebalancenow.org
remotehorse.com
jhu.repapp.co
rielpharma.com
www.santosh.app
www.simsouls.com
www.smartiron.app
somosprotagonistas.com.ar
staging-rewrite.somosprotagonistas.com.ar
order.spase.io
stamina-technology.com
www.stellarmobi.com
vorschau.strassenlotse.hamburg
www.strikelinescorer.com
www.sumedhphadke.com
inspectec.supportec.com
horizon.swifttms.cloud
www.tamayodevelop.com
hifind.the-hive-mobile.app
hive-hound.the-hive-mobile.app
art.theorygenerator.com
psychodynamic.theorygenerator.com
event.reg-test.tixologi.com
www.trackmyautoservice.com
sophomore-transfer.nursing.umich.edu
wmadmin.velocityps.com.au
videiracentral.com
warrenlotasentirelyoriginalconcept.world
workforages.com
franexpo.xpresslane.in
xstragard.com
game.yathit.com
zihuatanejo.works
Other domains in certificate