Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=giganet.ceosconnect.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 05, 2025
Valid Until
January 03, 2026
50 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4B:DC:2D:E9:83:C1:51:BA:CD:9D:2D:EA:0F:8C:01:2B:AB:7D:AF:77:01:C9:0B:C7:F5:3A:D4:6A:B2:32:09:CC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
scan-master.ch
creator.6cuts.com
admin.shopping.a-sta.com
www.accnorthphoenix.org
aprenderedivertido.com.br
krivora.aryansoni.fr
www.bakesbytash.com
baraan.af
www.basicdisarm.com
gold.betelwise.com
send.burakustuner.com
www.catastrophicinjury.org
giganet.ceosconnect.com.br
cisvilavelha.com.br
global-construction.com.ua
compliantpdf.com
www.compliantpdf.com
www.cristodesanagustin.com
www.datadriven.com.mx
datbikers.vn
www.debtkarma.io
dinamym.com.ar
developapp2.docuslice.com
doublecat.com
durkvanderploeg.com
www.durkvanderploeg.nl
glicemia.dxmed.com.br
easy-web-tools.net
dgree.ecoderce.com
vibe.edu.lk
ercancoruh.com
eternaltv.online
auth.etflife.app
www.examora.in
backoffice.fastgivemoney.tech
www.finsightsfx.com
freetools-pro.com
www.hamrohelp.com
mestrado.henriquemiossi.com
hpflexipack.com
auth.hrestart.com.br
flashcards.izzet.tech
www.flashcards.izzet.tech
kailaasarp.in
kheiflabs.com
www.kmfire.cz
amano-reha.lfv.jp
luxevitaglazing.com
www.v1.mapresselocale.fr
rahul.marketkyakehtihai.in
medzperfect.com
app.mentalizze.dev
mentalizze.dev
mesalocahtx.com
mistergreen.es
auth.mkmfloor.com
mkthiagoshot.com.br
mohammadalijarjoumah.com
www.nexmoby.com.br
www.niallbeard.co.uk
www.obidoner.com
www.ongakuconnection.com
parlacen.int
resume.petemdev.com
event.pixeen.com.br
plotlin.com
pnkstrstrategy.xyz
portatrade.co.uk
www.prasentace.cz
pre.quiquepintor.es
riadattou.com
rondarastreadores.com.br
www.rustcursus.nl
screencandy.tv
confresa.bioponto.sistemasnemesis.com.br
ssppassword.store
stellawire.com
aida.d1.stx.world
stzengenring.com
techmedicsa.com
www.thevirtualoperator.com
timeby.app
torsik.com
www.trompe.fr
upcycledart.nl
www.upcycledart.nl
social.v4.company
vishnuprasadkp.xyz
entrena.voicetest.org
www.webhost.com.au
weekend-editions.com
wetters-lieve.info
apps.wittysparks.com
app-dev.womenscareergrants.com.au
app.womenscareergrants.com.au
web-dev.womenscareergrants.com.au
www.workoutmuscle.com
yoninshogi.com
zannalabs.com
znamtypa.pl
Other domains in certificate