Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.copafacil.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 22, 2025
Valid Until
January 20, 2026
70 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A1:F4:38:8B:60:4E:9C:22:F2:FB:15:8E:77:05:71:D4:BC:A2:BF:FE:FD:79:8F:D3:D3:1D:44:25:F5:95:C2:7C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.bookmypharmacy.com
dev.sessiontelecoms.28east.co.za
fullgauge.2na8.dev
alijamali.ca
www.anthillsolutions.net
aplaneta.lv
axisroot-holdings.info
www.bhmun.org
botmeldtech.com
www.brandversetech.com
www.brng.app
www.camerondaycustomwebsites.net
cafearlo.clau.io
portal.cleanspect.net
www.clinicaoralprime.com.br
okr.coda.global
www.copafacil.com
www.devhaven.io
dexwears.com
link.doctoralia.cl
easypeezy.app
elevenelevenstudios.in
enan.me
www.endak-hosha.com
favataza.nl
food4up.com
gettaskly.app
www.globalwomanarena.com
golfi.me
www.greatguys.in
equipment.harecord.com
herbsforheart.in
www.heyreklamajansi.com
hkrr.fm
www.hotelroyalgardendaman.in
www.hybelutleie.no
details.instantjobfinder.net
app.investium.ai
www.jdfenergiasolar.com.br
journalofme.com
ouistiti.julientela.fr
www.kine-microkine-allain.fr
whs-fulfill.ktech-thp-dit.com
jian-moi.kuruvi.app
linjal.app
www.maderesort.com
marziacompassi.com
meetain.io
dev.misasuntos.es
moinote.in
mojaid.net
nippe.no
espace.o-toulouse.fr
opelsofttechnologies.in
vacant.owenlee.net
oximeeg.com
links.planmyfun.app
app.portfolio-overview.com
pragatisecurity.com
profumeriagenovese.it
ipp.staging.qashier.com
www.raffloor.am
auth.readybee.ca
revealbible.com
roman.rocola.es
uat-forms.roxabo.com
admin.savedby.io
scorepanda.site
www.shackers.xyz
shivanshikainnovations.com
simplydiary.me
janjiwa.sinimatika.com
sinimatika.com
www.skatecityng.com
solacer21.com
foundation.v2.qa.somostera.com
www.source-fellows.de
speticcleaning.com
supranav.in
analytics-web-qa.tabii.tech
teamtails.app
www.tearsolucoes.com.br
tenjometro.com
thanklify.com
thembamentor.in
booking.thetravelwhisperer.com
www.tnphs.net
tryvom.in
meet.ubunifu.dev
link.unipad.io
untried.in
www.urlencoderdecoder.com
www.weathersearcher.com
www.webadventureworld.com
nlh.whyq.com.au
evtest.wonder-sys.com
www.ws-url.de
prerelease.xclusive.dev
easy.zen.sk
slsa.zktx.io
Other domains in certificate