SSL Certificate
Valid SSL · Expires 2026-07-01 · 116 days left
Pass
Issuer: GlobalSign nv-sa · GlobalSign GCC R6 AlphaSSL CA 2023
Valid SSL · Expires 2026-07-01
TLS Configuration
Protocol: TLSv1.3 · Cipher: TLS_AES_256_GCM_SHA384
Pass
Strength: Strong. Encrypts data in transit, protecting against eavesdropping.
Forces browsers to use HTTPS, preventing downgrade attacks and cookie hijacking.
Mixed Content
Insecure resources: None
Pass
All page resources are loaded over HTTPS.
Content Security Policy
CSP header enabled
Pass
Prevents XSS and data injection attacks by specifying allowed content sources.
Clickjacking Protection
X-Frame-Options: Protected
Pass
Prevents this site from being embedded in frames on other domains.
Cookie Security
Secure: Yes · HttpOnly: Yes
Pass
All cookies are protected against insecure transmission and JavaScript access.
Security Headers Score
Score: 100/100
Pass
✓ XSS-Protection · ✓ Content-Type-Options · ✓ Referrer-Policy · ✓ Permissions-Policy ·
Web Application Firewall
Provider: Not detected
Warning
A WAF helps protect your website from SQL injection, XSS, and other exploits.
Server Version
Server software: nginx/1.27.3
Warning
Disclosing version may increase attack surface.
DNSSEC
DNS signed: No
Warning
Cryptographically signed DNS responses prevent spoofing and cache poisoning.
Nameservers
2 nameservers
Info
ns1.cnt.org.br (201.45.202.51) · ns130.cnt.org.br (189.85.93.130)
DMARC
DMARC record found
Pass
Prevents email spoofing and protects against unauthorized phishing attacks.
DKIM
DKIM record found (selector: mail)
Pass
Digital signature verifies emails were sent by an authorized sender and unaltered in transit.