Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=resenhadabolsa.com.br
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 03, 2026
Valid Until
April 03, 2026
41 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
05:73:07:8F:91:47:EE:B3:2A:C2:66:48:71:5B:A9:22:1D:88:AE:C7:DD:AA:1B:B7:E6:E5:63:10:CD:1E:79:EE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
iclio.net
*.iclio.net
*.backoffice.iclio.net
*.comune.iclio.net
*.mx.iclio.net
*.random.iclio.net
*.ww16.iclio.net
academypositions.eu
*.academypositions.eu
*.ww38.academypositions.eu
addida.com
*.addida.com
*.hostmaster.addida.com
bogatey.com
*.bogatey.com
*.sitemap.bogatey.com
*.adobe.casualfoodietruck-redcrow.com
casualfoodietruck-redcrow.com
*.casualfoodietruck-redcrow.com
costadelsolfoodtruck.com
*.costadelsolfoodtruck.com
*.ww16.costadelsolfoodtruck.com
crotours.eu
*.crotours.eu
*.crotourscom.crotours.eu
*.crotoursorg.crotours.eu
*.org.crotours.eu
dubai-news.today
*.dubai-news.today
*.webdisk.dubai-news.today
footballlinks.net
*.footballlinks.net
*.mail.footballlinks.net
*.metric.footballlinks.net
glaziermelbourne.au
*.glaziermelbourne.au
halwa.world
*.halwa.world
*.jenkins.mctools.pro
mctools.pro
*.mctools.pro
*.sitemaps.mctools.pro
*.usa-ny-02.mctools.pro
*.www.mctools.pro
*.ci.nerjareality.com
nerjareality.com
*.nerjareality.com
*.ww38.nerjareality.com
*.2fe925ca03.news-hucufa.com
news-hucufa.com
*.news-hucufa.com
*.mail.pizzakitchenla.com
pizzakitchenla.com
*.pizzakitchenla.com
pmstudio.com.au
*.pmstudio.com.au
*.w.pmstudio.com.au
*.notexistsapp.psscomara.com.br
psscomara.com.br
*.psscomara.com.br
*.wildcard.psscomara.com.br
*.en.resenhadabolsa.com.br
*.resenhab3-com-br.resenhadabolsa.com.br
resenhadabolsa.com.br
*.resenhadabolsa.com.br
*.server.resenhadabolsa.com.br
*.tarifacaob3.resenhadabolsa.com.br
soaicacomic.xyz
*.soaicacomic.xyz
*.random.technicshare.com
technicshare.com
*.technicshare.com
*.orgwww.testprepwi.org
testprepwi.org
*.testprepwi.org
*.services.thebusinesshq.xyz
thebusinesshq.xyz
*.thebusinesshq.xyz
*.ww25.thebusinesshq.xyz
*.ww38.thebusinesshq.xyz
*.mamma.vgy626x.com
vgy626x.com
*.vgy626x.com
*.ww16.vgy626x.com
*.ww25.vgy626x.com
*.ww38.vgy626x.com
*.pop.wove.co.uk
wove.co.uk
*.wove.co.uk
Other domains in certificate