Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=alvimfazio.com.br
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
November 18, 2025
Valid Until
February 16, 2026
40 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4B:77:F5:8D:96:EB:70:43:F8:AD:17:97:B8:89:44:74:EC:71:F9:50:EB:75:AB:C0:97:18:D4:60:87:15:26:75
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
pet-universe.wiseutils.com
www.7treesinvestment.in
acciodev10.acciojob.com
acciodev7.acciojob.com
acciodev9.acciojob.com
deeplinks.adam.ai
adsyncmedia.in
alvimfazio.com.br
milist.anthonyierace.be
beatstacks.com
www.biancazephyr.com
khanakdentalclinic.bitkhanan.com
www.bkcentregas.com
www.bkcentregas.com.br
blackzora.com
admin.book4dance.com
sn13.cafexapp.com
www.certifiedproducts.website
closize.com
taxi123.co.il
lytfix.co.ke
codebind.net
www.consultify-ai.com
auth.croissant-meets-coconut.com
whatsnext.daryanritul.in
deventzstudio.com
dooboo.io
app.easyprocess.in
crm.dev.shelf.evtit.com
bowling.games235.com
omnomconnectxmas.games235.com
cv.gerald.sh
gerald.sh
portfolio.gerald.sh
get-experts-opinion.com
golidawayi.com
grpromoters.in
healthyfi.me
support.covid.helena.org
hydrocawach.com
www.ivegtech.com
www.jvtradenexus.com
maramon.knova.link
xn--ondej-kcb.kuk.la
www.liftexpo.es
www.liturgicalapp.com
weather.livingacademy.org
url.manima.de
auth.maradona.life
marden.in
www.marden.in
sms.mikrologic.com
miraserv.com.br
mohamed-amoussa-dev.fr
mojestoisko.pl
www.muldong.com
laluarts.nawebb.com
api.nima.codes
basketball.nukta.pro
www.oddlier.org
demo.oleyn.org
caopgdr.orikami.nl
dev.part3.io
pgrams.io
wedding.phantranhongphuc.com
www.quantumlabs-ai.com
app.is.rbs.cm
www.scopify.com.br
archeus.seelay.in
portalsocioinnova.sgroneclick.com
www.portalsocioinnova.sgroneclick.com
mrkt.shiprocket.in
shivamobile.com.br
sinergiacci.net
registration.delbe.skipr.co
demo.spv.no
www.superfreshagro.com
secure.superpath.io
www.tathastugreens.in
taxcircle.in
theb3.studio
wunschliste.trautwig.de
arcard.tribedemos.com
verify.trustlend.us
backend.tupulizie.com
ventureiq.io
dashboard.waffle.city
dashboard.wifipublicitario.com
xn--42cg6bq1c0as4ck8e8d.xn--o3cw4h
www.xn--910bt5dgz6b.com
xn--b1aqcl.net
qr.xn--elmnpolku-w2ab.fi
xn--fhlen-verstehen-gestalten-fwc.de
xn--jagrhr-duac.nu
auth.xn--mayho-ndb.com
xn--nnqt1l.xn--q9jyb4c
xn--no-sia.net
www.xn--o80bp9m9nk8kj.com
www.xn--sts-600okr.com
hotspot.ynriver.com
Other domains in certificate