01 WHOIS & DNS              SPF, DMARC, MTA-STS, TLS-RPT, CAA, cert transparency
02 SSL / TLS                cert validity, TLS version, redirect chain, HSTS preload
03 CMS Detection            WordPress, Joomla, Drupal · plugins, login, user enum
04 Security Headers         CSP quality, HSTS, mixed content, security.txt
05 Raw HTTP Headers         WAF/CDN, server, compression, cookie security audit
06 External JS Audit        third-party scripts · Subresource Integrity (SRI) audit
07 Malware & Blocklists     Google Safe Browsing, VirusTotal, signature scan

Backend                     PHP · MySQL
Frontend                    Vanilla JS · CSS custom properties
Hosting                     cPanel compatible
Font                        JetBrains Mono

• ✓okScans are not stored by default — results shown once and discarded
• ✓okNo account required — fully anonymous
• ✓okOnly the last 25 public scans are retained when storage is opted in
• ✓okWe do not sell your data to third parties
• ✓okRead-only surface scan — no intrusive payloads sent to target