Analysis Results

Export PDF Report Rescan Website Analyze Another Website

https://www.fireofficerleadershipacademy.com/

Analyzed on September 13, 2025, 9:30 p.m. Click "Rescan Website" to get the latest data

Analysis Successful

Network Information

IP Address: 104.21.78.253

IP WHOIS Information:

ASN: 13335
ASN Description: CLOUDFLARENET, US
Country: US
Description: Cloudflare, Inc.
CIDR: 104.16.0.0/12

Ping Test Check AbuseIPDB Other Websites on Same IP

Domain Information

Registrar: GoDaddy.com, LLC
Created: February 07, 2023
Expires: February 07, 2027
Last Updated: April 01, 2024
Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited clientRenewProhibited https://icann.org/epp#clientRenewProhibited clientTransferProhibited https://icann.org/epp#clientTransferProhibited clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited
Name Servers:
- MERLIN.NS.CLOUDFLARE.COM
- NAOMI.NS.CLOUDFLARE.COM

DNS Records

Learn about DNS Records

A Records (IPv4 Addresses)

Domain	IP Address
`www.fireofficerleadershipacademy.com`	104.21.78.253
`www.fireofficerleadershipacademy.com`	172.67.138.231

View DNS History on DNS Archive

Check GeoIP Blocking

Blocklisting Status

Learn about Blocklisting Status

Overall Status: CLEAN No blocklisting detected

Services Checked: 2

VirusTotal: ERROR

HTTP 204 from VirusTotal API
API request failed

Google Safe Browsing: CLEAN

Domain is not blocklisted by Google Safe Browsing
No threats detected

Hosting Information

Provider: Cloudflare (high confidence)

Detection Method: HTTP Headers

Matched Headers:

server: cloudflare
cf-ray: 97eabf5eab29675a-atl

Company Information:

Global CDN and security provider offering DDoS protection, SSL certificates, and performance optimization services.

Website

Portal

Contact:

Social Media:

SSL/TLS Security

Learn about SSL/TLS Security

TLS Version: TLSv1.3

SSL Certificate:

Certificate Type: DV (Domain Validated - Basic Security)
Subject: fireofficerleadershipacademy.com
Certificate Authority (CA): WE1
Google Trust Services
US
Valid From: Jul 31 06:15:02 2025 GMT
Valid Until: Oct 29 07:09:29 2025 GMT
Serial Number: 074ED69E79EE2EF10D4D0498932AB642

SSL Certificate Expiring Soon!
Your SSL certificate expires in 45 days.
Please renew your certificate before Oct 29 07:09:29 2025 GMT to avoid service interruption.

Content Management System

CMS Detected: WordPress

Active Theme: bb-theme

Detected Plugins (3):

bb-plugin cookie-law-info memberpress

Themes

Plugins

WordPress Security Analysis

FAILED

Learn about WordPress Security Analysis

XMLRPC.php Security Test FAILED

XMLRPC.php is accessible and vulnerable

HTTP Status: 200

Recommendation: Protect xmlrpc.php via firewall rules or disable it completely. Consider using security plugins or server-level blocking.

WP-Login.php Security Test FAILED

WP-Login page is accessible without CAPTCHA protection

HTTP Status: 200

Recommendation: Implement CAPTCHA protection on wp-login.php and consider using a firewall to block brute force attacks.

User Enumeration Test PASSED

User enumeration is properly protected

Test Results:

Endpoint: https://www.fireofficerleadershipacademy.com/wp-json/wp/v2/users

Status: PASSED

Message: Endpoint properly protected (HTTP 401)

HTTP Status: 401

Endpoint: https://www.fireofficerleadershipacademy.com/?rest_route=/wp/v2/users

Status: PASSED

Message: Endpoint properly protected (HTTP 401)

HTTP Status: 401

Recommendation: WordPress REST API user enumeration is properly secured.

Failed Security Tests:

XMLRPC
WP-Login

Request Assistance

Security Headers Analysis

Need help understanding security headers? View our comprehensive documentation to learn about each header and how to implement them.

Present Security Headers

Referrer-Policy

X-XSS-Protection

Content-Security-Policy

Missing Security Headers

Strict-Transport-Security

X-Content-Type-Options

X-Frame-Options

Permissions-Policy

Cross-Origin-Embedder-Policy

Cross-Origin-Opener-Policy

Cross-Origin-Resource-Policy

Request Assistance

HTTP Headers

Learn about HTTP Headers

HTTP Response Code

200 OK - Request successful

HTTP Protocol Version

Excellent! Your website is using HTTP/2

Your website is using a modern HTTP protocol version, which provides better performance and security features.

Security Protection Detected

The site is using Cloudflare CDN & WAF 👍

Information Disclosure: Server Version

Header: x-powered-by
Value: PHP/8.1.33

Server Type: PHP

The X-Powered-By header reveals server version information, which can be used by attackers to identify vulnerabilities.

Gzip Compression Enabled 👍

Great! This site is using Gzip compression to improve performance and reduce bandwidth usage.

Header	Value
`nel`	`{"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}`
`date`	`Sat, 13 Sep 2025 21:30:45 GMT`
`link`	`<https://www.fireofficerleadershipacademy.com/wp-json/>; rel="https://api.w.org/", <https://www.fireofficerleadershipacademy.com/wp-json/wp/v2/pages/14>; rel="alternate"; title="JSON"; type="application/json", <https://www.fireofficerleadershipacademy.com/>; rel=shortlink`
`vary`	`Accept-Encoding,User-Agent`
`cf-ray`	`97eabf5eab29675a-ATL`
`server`	`cloudflare`
`alt-svc`	`h3=":443"; ma=86400`
`report-to`	`{"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=VwWZoanWBhuvUEqIOVB61Zf2dE4HuDt084elDYEzPehZwAeLSmXzGZ7FPB2Xq0O5iqLTClsjV%2FIIzKY1sWao8JauoGIeRa9DjBU%2B%2Bmtbw29PagzN5ea8Q7Kt%2BuXBBA4f9Xa1ow%3D%3D"}]}`
`content-type`	`text/html; charset=UTF-8`
`http_version`	`HTTP/2`
`x-powered-by`	`PHP/8.1.33`
`cf-cache-status`	`DYNAMIC`
`referrer-policy`	`strict-origin-when-cross-origin`
`content-encoding`	`gzip`
`x-xss-protection`	`0`
`content-security-policy`	`upgrade-insecure-requests;`

Service Disclaimer

Free Service: This website security analyzer is provided as a free service to help website owners and administrators identify potential security issues and improve their website's security posture.

Donations: We welcome and appreciate donations to help us maintain and improve this service. Your support helps us keep this tool free and continuously enhance its capabilities.

Affiliate Links: We may use affiliate links for various security services, hosting providers, and security tools mentioned throughout this analysis. If you choose to purchase any of these services through our links, we may receive a small commission at no additional cost to you. This helps support the development and maintenance of this free service.

Support Our Service

Help us keep this tool free and improve it further

Buy us a Coffee Make a Donation via PayPal