Instant security insights for any public URL
A non-intrusive scan across security headers, SSL/TLS, open ports, email & DNS posture, subdomains, exposed paths and more — with a risk score and an export-ready report so you can prioritise fixes faster.
Start a scan
Enter a URL to analyse
Headers, ports, SSL, email/DNS posture, subdomains, exposed paths and more — with a risk score.
Security Headers & CSP
Header coverage, CSP quality, CORS, mixed content & SRI checks.
Cookie Security
Flags missing Secure, HttpOnly and SameSite attributes.
Port Scanning
63 common ports probed for exposure and risk level.
SSL / TLS Audit
Certificate validity, expiry, cipher and protocol checks.
Email & DNS Security
SPF, DMARC, DKIM, DNSSEC and CAA record posture.
Subdomain Discovery
Enumerates subdomains via Certificate Transparency logs.
Exposed Paths
Probes for .git, .env, backups, admin panels and more.
Tech Fingerprint
Detects servers, frameworks, CMS and libraries in use.
Risk Score & PDF
Composite score, grade and an export-ready PDF report.