Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=margariinteriorismo.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 01, 2025
Valid Until
December 30, 2025
47 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FB:6E:C8:50:ED:2B:0C:22:A2:10:64:CB:06:3C:F7:C0:A6:7F:48:98:CE:D9:B5:89:78:17:2D:D6:BF:8A:FD:04
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.torvgarden-tannklinikk.no
mybobs.3dcloud.io
www.4track.mx
admin.360.audion.fm
adrien-clavaguera.fr
www.akabuti.com
www.alezy.ru
aloisiodecoracoes.com.br
americanbandinstrumentrecycling.com
link.andme.org
apostoladodelapreciosisimasangre.com.ar
experience.beautifulcode.co
bitcoin-pt.com
eservis.caracal-machines.cz
blog.che.mk
www.chowdashi.com
chrisogdenfilms.com
lens-by-example.chrispenner.ca
wfmannotation.clearquote.io
igat.co.th
www.ligled.com.my
sga-admin.connectblue.com.br
www.covaliu.dev
daanrutten.com
depfly.com
www.digigurus.net
tam.eddress.co
www.dashboard.etc-cat.com
leapfire.exelor.com
fallrise.in
auth.fanspo.com
ggx01006-002.gadabout.games
app.get21stnight.com
url.getemit.com
gottatrip.com
grandmamarilynn.com
grenutvikling.no
gundu.id
haikuthunder.com
www.igruyere.ch
app.inbodyhome.tw
indiakka.com
isxo.dev
smp.j-wave.co.jp
xujhs-famday.jameventsph.com
janebrinquedoseutilidades.com.br
www.kentkad.im
keskn.uz
kumaravelumapathy.com
order.la-cherie.in
labson5th.com
www.laquintacumbres.com
maaat.nu
3d.mabiloft.com
margariinteriorismo.com
www.marsolier-electricite-fougeres.fr
test3.matchtal.com
www.medule.com
app.memento.ge
michaelwebcork.com
miku.fashion
www.milestores.com
duovoice.mmcallsapp.com
smartchat-stage.mysmarthotel.co
fireworks.nabehide.com
nse-edc.in
dev.nuuphealth.com
www.o-o.sh
www.ono.ma
pascalnjue.com
pimpmyhouse.be
etcheby.pinkbeton.com
hourskeeper.polycents.com
signin.purple.fit
auth.qistudy.com
sa.rba.su
app.regnspotter.dk
reyemb.io
docs.rookout.com
sinan-club.com
birthcertificate.sirancheevi.com
lanouvelleboutiquedevitrolles-transdev.sky-boy.com
www.spartanjs.org
steelemart.in
mjhealthtesting.studiossolution.com
www.substytucjeprocesowe.pl
www.thehotelsmanager.com
www.theorigami.io
tomas.do
tashcoleman.tombewley.com
www.toraholmberg.se
document-submission-web-page.review2.trustdock.io
universoy-78.fr
www.whist-score.dk
stg-rirekisho.yagish.jp
www.yalla-content.com
amaira.yanalcom.com
www.yentrox.com
j.yookos.com
youup.fun
Other domains in certificate