DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=bmfsistema.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 12, 2025
Valid Until
January 10, 2026 49 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F1:81:49:DE:FE:0C:01:20:74:E7:12:B7:E0:2F:A3:5B:B5:99:01:71:E7:93:7B:59:E2:BA:1F:01:38:1C:6B:3F
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
prioritise.dev.gearedsoftware.com

Other domains in certificate

shopping.adamino.dk
plataforma.aeroclubedemarilia.com.br
app.agendaconectada.com.br
www.alaingutharc.com
amyasnikov.com
asselnatural.com.br
cup.asv-leichtathletik.eu
dev.attentiveproposals.com
www.aulify.com
www.aworanapp.com
bathyaldistrict.com
bmfsistema.com.br
gdeditor.chililisoup.dev
cleanandout.co.uk
clearskycarriers.com
www.bookmysport.co.in
hinco.co.kr mydbc.co.kr
core-registry.codegreen.org
codeloomlabs.com
tierraguarani.com.py
deals.commo.dev
crudd.dev
davvie.com
www.blog.designideas.net
pantheon.developforgood.org
dudy.kr
www.mongolaldar.edu.mn
euro2006.net
www.f8digital.se
www.famo-kosmetiikka.fi
creator.futurised.au
www.ganpatiwovenpolypack.com
gdsc.hu
www.getmille.com
giveawayworld.org
business.gkangadi.com
www.goodpace.run
gorillasports.mx
gorillasports.online
gorillasports.org
gorillasports.us
www.gracevedo.dev
greenfootindia.com
www.grikk.co.jp
hilmers.de
admin.hlm.at
members.humanimpactpathway.com
iprocopiou.com
www.jaak-it.com
bible-quiz.jiunkae.com
judybrooks.com.au
admin.justsomehelpnj.org
www.keevon.com
www.kinabaluconvention.com
waterworks.klinger.ooo
had.kmoch.cz
www.licancura.cl
booking.linkednet.com.au
management.live.inc
dev.loss-off.com
manochaacademy.com
app.marblemeal.com
list.midmichrentcars.com
vincent.demo.movello.se
muhammetgok.net
www.neeske.co.za
support.nenga.nohana.jp
env.nucor.report
bolig.ogaspaas.com
kisa.mm.org.tr
polysquat.com
nines.pradeeplabs.com
login.quickturn.tv
www.roland-strasser.com
ulima.collaboration.sasaki.com
www.scenarioprotocol.com
www.shubhranshu.com
signup.shuttlecloud.com
admin.skmdsports.com
lasi19.snola.es
happylemon.studiossolution.com
stunnx.com
www.svtortue.ca
swmipep.com
auth.taggad.se
www.talentinum.com
www.tecni-clima.cl
test-targets.dev todomvc-vanillajs.test-targets.dev
reservas.turistorexp.com
heartfitnessindoor.turnosweb.app
dev.unlockvolume.com
internacional.votando.com.br
mistermoney.xptoconsig.com.br
staging-backoffice.yumitos.com
www.zarithreads.ai
www.zaywindiy.com
aaron.zhechen.org