Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=cadastro-develop.rogeriossantos.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 06, 2025
Valid Until
January 05, 2026
34 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F1:09:18:37:6C:4A:9F:F2:34:E5:C7:05:89:B4:FB:CB:23:3E:61:E7:32:95:DD:A7:FF:17:01:6D:47:A4:1E:D8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.havenga.ie
hon-roomplanner.3dcloud.io
www.alonsorangel.com.br
arunkumarsampath.in
asaa.at
www.babiesboard.net
bakestreet.co
www.batikal-app.com
bharatgadde.com
www.bikejo.com
boilingmetal.jp
www.botanycoempresas.es
b2b.canwedo.net
casting.dev.castingapp.com
www.chollosmaniacos.com
uat3.weget.co.th
www.codevine.net
sahrupesh.com.np
cosmonioushighgame.com
cybearjinni.com
admin.dearstranger.life
assets.deeplink-oni-test.com
www.digbuild.net
www.digest.com.br
dnainvesting.net
portal.staging.donationpoint.app
dparagon.net
effective-enterprise.com
shoptimizer.eggo.land
ericpattmon.dev
bluesky.fcproject.online
a0bq.foodle.su
fulsiane.fr
gabble.games
www.gbup.app
happy-birthday-bhindiiiiii.geekytwin.com
gjelle.no
goagenda.net
admin.homebarber.fr
dashboard-dev.homescycle.com
dashboard.homescycle.com
dev.homescycle.com
iwwimarket.com
jaspero.hr
www.jkelderman.co.za
jordanstorz.com
jurnai.pro
kmstats.net
staging.firebase.liberty-rider.com
www.littlestitches.uk
www.llamafood.com
lucrific.net
mafqod.site
markermanager.com
www.marvinneumann.com
www.matematicalogica.com
medexauto.lv
kuku.memory-lovers.com
mpoindo.org
rift.mrvillage.dev
app.murallink.com
emmanuel.novasystemsb.org
oliversride.dev
www.hkcie.org.hk
tmp.shandejohor.org.my
ru.parcelplus.app
patativacomunicacao.com.br
pawconnect.pk
prixy.store
qa.ptb.kids
skills.qupaya.com
www.revisehigher.com
staging.roadmapper.fr
cadastro-develop.rogeriossantos.com.br
www.romstash.com
saisonski.fr
www.savvysale.ca
cents2bills-dev.sipora.io
skystars.tw
d3-playground.spandl.ca
api.iot.spried.com
team.starcode.de
tecso.co.uk
db.terrytan.dev
www.textable.app
thevobot.in
warepair.thomasjuhoonkim.me
site-generator.threestars.uk
app.tododoc.com
travelli.nz
trc-ev.com
auth.tutorcircle.hk
best.univdev.page
videsicommunity.com
vinamravaani.com
organiser.vinucode.in
www.vtpatient.app
www.wastless.com
webgrounder.com
help.zync.pro
Other domains in certificate