Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=artesanal-imobiliario.qitech.digital
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 12, 2025
Valid Until
February 10, 2026
78 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4F:08:1D:8E:D3:39:77:D3:E5:CB:4C:23:D1:97:7A:A5:29:BB:5F:69:F6:29:CE:94:94:E1:37:56:CF:E7:D5:69
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
thergic.ar
011231.xyz
links.abcollab.com
aiblend.co
app.alpharevo.com
amafr8.co.za
www.ambervalleyschool.org
theta.antoniojkim.com
automaksud.ee
www.aztecasys.com.mx
www.baerell.com
link-dev.bbt-app.com
bizwebbuilders.com
boostocart.com
byhorse.com
internal.byvinci.io
m.c24.lt
duely.certend.com
chatswiss.ch
chessremix.app
cleverr.in
www.rashailinfotech.co.in
kosiachtany-staging.grobox.co.ke
ofis.masterplas.com.tr
www.copilot.money
crittercoast.com
crmhub365.hu
knights.daddoodev.pro
www.daily-pen.com
www.digitrack.online
douglasjacob.com
www.dracompanha.com.br
www.dv4all.com
hub.eleanorhealth.com
erteno.com
www.escolaraphaelrabello.com.br
app.estetix.co
www.euro-cross.de
fastgames.et
a0eg.foodle.su
app.forbeshomes.co.uk
goalyonline.app
goldinfiniti.com
portfolio.golenia.dev
gordonchildcare.com.au
apps.gradi.es
humaka.ro
ibrahimcehic.site
ndh2903.id.vn
www.idealsys.uz
staging.kangacoach.de
karvay.in
inventory.kin.cafe
www.kohinoorr.in
riheonc.kro.kr
lacfirebw.com
laqoo.id
gestor.leandrotech.com.br
www.lighthole.lk
loserthovaobrazy.cz
party.lugand.com.br
my.maare.app
app.mesac.org
misalabs.ai
staging.mlink.no
moregoodtech.com
munice-hluboka.cz
neilapang.online
www.netwerkclub040.nl
onmsoft.com
test.console.order.place
pineapple.pictures
pufulove.top
artesanal-imobiliario.qitech.digital
qotinteriors.com
rizzapp.tech
admin.beta.robertvandenborn.nl
www.rocketeer.fans
rumon.shop
rustaqi.art
www.savintsev.ru
simplestepsedu.ca
www.solanadawae.xyz
www.sridroptaxi.com
docs.storyhunt.dk
health.sumamachi.jp
svjsconstructions.co.uk
www.tamkinexpress.com
telana.cloud
www.telana.cloud
i2.digitalservices.theskyfallen.com
rollup.twsk.io
unicollectors.com
unigreekai.gr
api-omega.upflowy.com
barbearia83.v8app.com.br
wex.vaultps.com.au
welcomehomesecurity.net
vue.xeba.ru
link-brompit.mokitadev.xituz.com
Other domains in certificate