SSL Verification Bypassed
The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.
Reason:
Expired Certificate - the server's certificate has expired
Open
Cached
·
just now
62/100
SECURITY SCORE
Certificate Information
Subject
CN=dl.normas.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
August 22, 2025
Valid Until
November 20, 2025
Expired
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9B:0F:F6:9B:EE:38:1A:90:85:54:14:C8:8A:30:87:A5:D8:EB:6E:63:FC:A0:74:50:58:00:61:7D:8B:36:F2:F5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
single-society.de
1stmarinecorp.com
a55.dev
ece-events.smvdu.ac.in
airalab.it
www.authentication-egypt.com
www.baby-pouss.fr
bamiri.dev
benjaminfink.me
admin.lippulaiva.bites.fi
www.calebaguirreleon.com
docs.chatcaptain.de
www.chiefsne.ws
iletus.com.tr
x.credilio.in
www.crewbot.in
app.cuadre.io
link.stg.cuci.id
danielborges.net
dhruvdattani.info
tutor.digipanthiya.com
divit-vaghani.dev
sandbox-consumer.divit.dev
www.engineeringyoutheducation.org
platform.ezpays.io
foodit.cl
www.foodit.cl
frallappen.se
funcionalmind.com
scanner-middleware.futura.healthcare
gerseskuvo.hu
gotjob.online
gowithme.app
gwennellis.com
esodoc.htsolution.sk
iasgroup.kz
nguyenthanhtuan.id.vn
imageconverteronlinefree.com
www.rochaequipamentos.ind.br
sdeducation.indiandevelopers.org
kou2kkkt.dev
dev.lajoyapark.com
lajoyapark.com
layeredai.us
laylaf.com
www.lb5.be
www.lfca.ngo
www.medbook-ph.com
www.microlearnable.com
www.morsemangini.com
backend.mortgagebuyersinc.com
mottasolutions.company
myfairybook.com
mystique.com
tcflight.naeron.com
nisargshah.dev
dl.normas.com.br
one-night-werewolf.com
orisoncap.co.za
party-ti.me
perfumetrading.co.uk
tictactoe.peterkajokole.com
admin.pezo.pet
pg-learning.net
photographbyjohn.com
pro-app.info
links.learn.progrit.work
beta.rawfigures.com
www.app.riddly.io
check.riveteducation.org
sagarwealth.com
sanjeevagrawal.com
scottluchetti.com
app.senpai.es
neptune-dev.smartcloud.smartsys.io
www.softwarewagon.com
tracker.stoddartlabs.com
snappy.streamevents.co.za
sunaerial.com
sunshinewithjon.com
defi.taang.dev
www.tankemestring.info
theinfinityrooms.io
tiny-mechs.com
tncsadecv.com
auth.toboggar.com
tokokiosunggasku.com
www.toquemedia.net
portal-staging.touchtech.com
tribal-energy.com
refer.triunits.com
tryprodzy.com
www.ushanktech.com
docs.visionect.com
app-link.vroom.com
webcomponents.dev
werkabots.com
whatsyourwarrior.com
cn.yundaorders.com
yutunghsiao.com
Other domains in certificate