Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=glanzonline.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 09, 2025
Valid Until
January 07, 2026
52 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C4:01:B2:D5:C2:73:5C:08:15:32:F8:FB:45:35:10:6B:1E:39:96:13:44:DB:0E:30:61:8B:45:2A:56:2C:1F:41
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.squadronconnect.com
app.bagchecker.com
jms.beetek.net
beweedwell.com
procore.concrete.binni.co
dev.link.block-chat.net
brd.so
www.brettspielbonanza.de
www.charbeldaoud.com
admin.cidimagenesrd.com
app.clinicalfox.com
octopus-dashboard.datafirst.co.th
page.coachx.live
codeabsolute.in
resume.codecapi.nl
comparar-precos.com.br
cursolumen.com.br
www.cytweb.com
myhw.elpit.sk
erfahrungen-mit-corona.de
test.everydish.app
test.failbot.link
fcrypto.world
fibicus.de
beta.developers.finqware.com
geomobs.com
www.getmytata.app
glanzonline.com.br
glaubensfutter.de
halcore.ai
si.hireplace.com
huggableheart.com
kibbcom.in
www.kuto.app
www.lapse-app.com
lastflow.com
restauranteesplanada.lupi.delivery
www.marcchung.com
masonic-tools.co.uk
api.mirageid.com
mitani.fi
synco.moeving.app
www.moonbear.cn
app.multimediatext.com
app.mycancerhaven.org
www.nefropedia.com
globalnews.ninjacart.com
oguzyildiz.dev
www.oksy.in
ite-dv7.owqlo.com
panaceantech.app
driftx.dev.papper.site
partiapolexit.com
app.patronus.cloud
familytree.peirce.xyz
pelzvire.tv
links.stage.petally.petabyte.vet
petspos.com
www.piperfinnoffers.com
arcade.playvue.com
www.prepry.app
www.proauto.app
test.psypack.com
www.rabbiyisraeli.com
www.ergo.reip.at
rentogpt.com
www.rentout.homes
platform.replai.io
retrotime.app
booking.ridinginwales.com
root.limited
rf.rudra.sh
scouts442.com
sdglobalsystems.com
www.sexyangry.com
help.shed.no
vilje.shed.no
www.finance-tracker.shelbyshipley.dev
admin.shroompany.com
skaburske.com
www.smartercontact.com
dev-stage.sonat.com
sunshineranchdenton.com
www.taxicena.com
loanapp.teexponent.com
thecodeyard.com
www.themomentcondo.com
torrenceb.com
tuko.studio
googleads.utmsmartmanager.com
vesoir.com
rdm1-orders.waiterpro.com
chamber.weberlolz.tw
whitepeak.co
www.widescreenmusic.com
playground.williamd47.dev
wrc-tsukuba.com
wwmemorials.co.uk
www.yottabytessolutions.com
zef.watch
Other domains in certificate