Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=evento-develop.arco.org.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 28, 2025
Valid Until
January 27, 2026
74 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A6:E1:7A:B1:96:C3:83:EA:3E:4E:45:15:A6:E3:CA:4F:90:D6:83:BE:68:5E:83:BA:45:F6:C2:E0:5A:CF:55:0A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
portal.cobrolink.com
www.a6labs.co.uk
portal.aconteccont.com.br
aiworkflowtoolkit.com
www.alessiobertolini.com
auth.anexplorer.io
dev.developer.audiomob.io
panel.azbox.io
fit.beong.vn
www.blacksapphiregoa.com
qa.espace-client.boschetti.swiss
companiaplus-loyalty-web.cbdata.cz
booking.ciaurumessina.it
cms.sistema.cim.br
myteample.co.kr
www.turtlebooks.co.kr
getthru.co.th
recruit.trustagent.com.vn
crispcode.io
cryptoflowapp.com
curiousbk.dev
drycompass.ddrcss.com
diecoming.com
blockie.doscontrauno.com
dostavkiplus.com
dsheils.com
vorwerk.dynamogramm.com
auth.edteacher.pl
minequestpro.eliasteeny.com
spin-the-wheel.html5.emallstudio.com
ezschool.info
fccapp.fcccauca.org
finda.cloud
livematch.footballcoachs.com
message.footballcoachs.com
fort-x.tech
gamecounters.com
www.ggsnt.com
faina.test.graphite.space
stats.guibo.travel
www.iaminx.com
tastymenu.jayendra.in
admin.jazaninv.sa
jeroenwolf.nl
www.jondarrer.me.uk
www.kartech.jp
linkriotdg.kisline.com
mta-sts.knox-consult.com
lacatleya.com.co
lesamisdejennyalpha.fr
www.loicmotheu.dev
luxaeroexchange.com
www.luxaeroexchange.com
moonspay.moons.pe
morgan.ninja
dl.morr.my
www.my-wish.fr
webartino.namishkumar.in
twin.cns.net.tw
pco.nicolsonconstruction.com
www.oggie.ai
dev.til.ojisan.io
evento-develop.arco.org.br
www.oyald.org
auth.dev.piclar.com
www.test.pikkopay.fr
app.pipu.com.br
www.placementmaster.in
order.posbel.be
www.qthevote.org
quakermaps.com
simpplegames.r-e.kr
marinahoteleslascondes.rflex.io
takeout.rokubungi.jp
www.scgdigital.io
sendsmail.com
webhook.staging.shimejis.xyz
knowledgebase.smart-operator.ai
okyhebpbpvbdwo4htiwa.smartimob.io
signin.test.songbattle.io
www.basen.sparkntnu.no
salem.supercabs.in
store.swimfortri.co.uk
live.syndic4you.be
thefilter.me
thenerdlabs.org
thewebarchitect.dev
www.thomasmorus.be
auth.timetime.in
www.tnsmobilesolutions.com
torusinnovation.com
bukken.v0idi.fi
veglegeszsirbontas.hu
survey.velocityps.com.au
fm.stage.voiapp.io
walpet.dz
www.wenching-yen.com
www.wheretobonaire.com
marabraz2.xptoconsig.com.br
www.zeroridez.com
Other domains in certificate