Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.zoepereiracaterers.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
54 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
57:A1:02:1F:8C:0C:33:9B:3E:5B:EE:4E:F7:E3:DF:62:DA:CB:A9:A3:40:39:89:69:4C:4C:8F:46:0D:8D:8A:CD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
sharemylocation.org
www.3dmusica.com
www.accountsmachine.io
www.aidenkwok.co.uk
qa-labelers.aimmo.ai
alugaja.app
motionflow.anthonytambrin.com
www.anunphop.com
admin.apcouleddjellal.dz
apotheken.apoly.at
www.aponiar.com
app.arryt.uz
www.aryell.ca
wbasp07.as-protection.de
coachplanner.athlete-era.com
assistant.atomnest.com
company.avenue-99.com
www.bavat.at
beperkttoegang.nl
stg.csm.bitkey.site
carplayapp.us
web.cklab.com
havenice.com.my
yusufaydin.com.tr
p71-prod.credeo.io
dashpool.fr
www.early.cl
www.edilizie-pulizie.it
ente.com.mx
legal.etable.app
mealpairingplatform.feedingcanadiankids.org
www.fiittt.com
prod.app.fiveinthirty.com
fb.flatmatefinders.com.au
dev.football-live-score.com
georgesautobody.com
freibad.radenthein.gv.at
www.hokuway.jp
howdelayed.is
www.sedk.ihhsfair.com
invenstory.app
links.creator-stage.joinroll.com
www.kabirgogia.com
demo.kanana.dev
dispatch.kaptyn.com
www.kevinvillarreal.com
www.kusdiana.com
ironhack.lapieza.io
laurasirola.com
liftin.link
www.luluenterprises.shop
www.malahatnation.ca
cqrity.maoli.ws
www.meldio.com
adminportal.micronocinc.com
auth.milehighhub.com
noticiasdeverano.com
market.nsi.rs
partiful.app
todolist.phunh.com
gtg.playreplay.io
www.postsop.com
cubera.quakerproject.com
trade.resfinex.com
www.rohinigosain.com
academy.salem.edu
cab.salem.edu
search-now.app
www.sharez.one
shristi.info
shuoqiportfolio.com
kasumigajo-park.signsense.jp
skillquery.com
www.snapnfund.com
go.sparksip.org
admin.staging.splainer.in
www.srisainarayanahospital.com
stayfloripa.com
wedding.steadyliao.com
tabulate.me
www.teamlifting.com
techforsocial.com
techovating.com
testmylink.com
www.thetentrenters.com
new.thethoughtfulrider.com.au
tinataxcpa.com
miansai.unabacus.com
universal-travels.in
r.usp.pl
venturiautomation.com
haven.viancorp.net
villuppuramdroptaxi.com
ptimer.webxsid.com
sunset.yoyaku.cc
app.yuzuyou.com
www.zaythedev.com
zeny.in
dev.zig-zag.ai
www.zoepereiracaterers.com
Other domains in certificate