Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.vidatrilegal.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 04, 2025
Valid Until
March 04, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B9:1E:03:A0:96:1F:25:67:30:16:84:89:A1:78:DC:1A:36:8E:5C:15:3C:BB:DD:42:55:42:94:4F:61:9D:23:94
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
sai.gorbetdesign.com
www.11plus19digitalmarketers.com
ac-managerhub.co.za
idtdna.aptitudelabs.com
www.automata.gg
dojo.azartypiano.com
assets-acute-pain.bgclicks.com
publishers.blockchain-ads.com
gog.boix.dev
www.bussiness.page
www.c3l.io
chalpal.co.uk
www.chalpal.co.uk
firebase.champ.nl
cherryfield.eu
cnxcross.chiangmaimaker.com
chordassist.com
www.claybeabout.com
cognitiveindo.com
www.coinomi.org
brand.compensate.com
www.coreide.com
www.daisyhollman.com
www.davidsargent.com
www.depuracepa.org
www.dhiram.com
www.duckseeker.com
eaglepixls.com
dev.edinburghmc.org.uk
elektroamper.hu
candlelight2020.elvismatters.com
orbit.emsden.com
www.entregali.com.br
staging-wishlister.espino.codes
www.gael1130.com
www.goodvibeslab.app
go.govregs.com
haoelectric.ca
hub.hoxbycollective.com
kokomono.hudehisa.com
www.hughsie.com
isid-ai.jp
www.istikametsmmm.net
jh-onehub.com
kaalvooreendoel.nl
app2.kolayrestoran.com
upi.kyssa.in
www.longtran.me
noisyatoron.mahrsrv.xyz
dashboard.mal-pay.com
www.matchmania.io
link.memorialsoft.hu
myiceberg.ai
myvineyards.org
nara.ltd
pic-lottoquebec.mentor-stage.neccton.com
console.novalogic.dev
www.ordering.pearpartner.com
www.penboox.com
delivery.pretz.me
www.prochris.com
www.prompt-camps.com
www.propertyinv.co.uk
www.random-song.com
redlines.au
oandp.revaturelabs.com
stepup.salem.edu
sbfsolon.org
www.shijiaguo.me
blog.shubham.codes
admin.simyra.co.uk
aspen.sleek.llc
vellore.southindiacabs.in
spinnaker.cpa
dev.steve-lewis.uk
stompscanner.com
surfitapparel.com
www.swissgrip.fi
app.tauchapp.com
text-tweaker.com
thaiscorato.com
thebakerfam.net
www.therentdeck.com
app.thirdpartyprofits.com
www.toggletooth.com
www.trainrexofficial.com
travelventura.se
twbediting.co.za
goto.upstreamapp.com
www.veteran-acquisitions.com
app.vidatrilegal.com.br
villasikapukhill.com
www.merchant.wavecxm.com
www.wrapfreaks.lt
auth.writi.io
televerse.xooniverse.com
www.xooniverse.com
app.yamm.com
www.ymotongpoo.com
veg.your.vet
Other domains in certificate