Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=girassolrestaurante.pt
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 28, 2025
Valid Until
January 26, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D2:FB:CB:7E:CE:C7:76:39:9F:35:76:93:43:95:9E:6A:B5:57:43:75:6B:DC:7E:D5:CA:60:C9:2A:0F:8C:54:70
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.seerium.com
65bunjitsu.tokyo
www.alanclan.org
euro2020.andmap.co
apointhome.com
app.bankio.ro
benzoinfojapan.org
app.bridal.vision
www.buum-e.com
www.campfirecrew.be
ccjopartnerstrading.com
ijoma.cdtbrasil.com.br
www.profesori.centrulminerva.ro
www.cetadcontrol.com
media.ch.se
www.chintzbaby.co.uk
donamarle.clau.io
viluppuram.yazhdroptaxi.co.in
kakaom-expo.co.kr
korkyra.com.hr
p2dev.ufirst.com.my
www.transferhelper.com.tw
crunchapp.co.za
www.datawarehousegh.com
www.dmnsh.in
doticon.work
search.doutor.es
www.droon.org
edine.app
enblick.com
www.enblick.com
staging.enercred.com.br
company2.ensvee.com
app.eucs.online
app.expensi.fyi
www.fitlink.io
zh.futurecoder.io
paudalho.g2canal.com.br
gadcooper.dev
www.gadcooper.dev
girassolrestaurante.pt
coloradohills.gtingenieros.com
sameer.hitechfreak.com
www.horses2go.mx
www.humanlylead.com
imadopted.org
line-app.in-plus.co.jp
www.integrityautoatl.com
thefirst.iobird.com
dashboard.ipercash.com
jimnyclubece.com.br
www.junaid.ltd
suckhoe.kasoft.vn
www.kinote.us
www.kokuhaku.co.jp
www.lamouline-manager.com
loveeveryone.love
chiara.luey.us
matsuhisa-japan.com
www.matsuhisa-japan.com
staging.meetshepherd.com
minbin.co
www.moneymatters247.co.uk
www.monkeymonie.com
www.nativaflowers.com
optimumotrlogistics.com
www.optimumotrlogistics.com
www.data.counsenuth.or.tz
quiz.oskarnordgren.se
anh.qanguyen.net
quyenxdclass.com
www.rabelais.kr
lojafantasma.raioxnegocio.com.br
dev.live.randstadservices.com
stgondoku38252.ricrio.jp
www.rockallfilms.ie
www.roundnetclubzurich.ch
scroll-worx.com
sensviz.com
shanthiaquatech.com
www.shardsofclarity.com
somamedicinaintegral.com
office2-dev.sovoro.kr
streets.stablenq.com.au
starlineba.com.br
im.statu.su
stegenga.io
text2video.online
thebarestapp.com
www.thecloudymethod.com
tillcorp.net
loft-pilates-studio.timp.io
tobik.dog
rfbonus.ugo.company
uideal.dev
unlistedgarage.us
issues.w3e.tech
yokwejuste.me
partner.stg.youdeserve.today
tusba.zmanimbeithakneset.com
Other domains in certificate