Analysis Results

https://www.fireofficerleadershipacademy.com/

Analyzed on January 14, 2026, 12:50 p.m. Click "Rescan Website" to get the latest data

Analysis Successful
Network Information
IP Address: 172.67.138.231
IP WHOIS Information:
  • ASN: 13335
  • ASN Description: CLOUDFLARENET, US
  • Country: US
  • Description: Cloudflare, Inc.
  • CIDR: 172.64.0.0/13
Ping Test Check AbuseIPDB Other Websites on Same IP
Domain Information
  • Registrar: GoDaddy.com, LLC
  • Created: February 07, 2023
  • Expires: February 07, 2027
  • Last Updated: April 01, 2024
  • Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited clientRenewProhibited https://icann.org/epp#clientRenewProhibited clientTransferProhibited https://icann.org/epp#clientTransferProhibited clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited
  • Name Servers:
    • MERLIN.NS.CLOUDFLARE.COM
    • NAOMI.NS.CLOUDFLARE.COM
DNS Records
Learn about DNS Records
A Records (IPv4 Addresses)
Domain IP Address
www.fireofficerleadershipacademy.com 172.67.138.231
www.fireofficerleadershipacademy.com 104.21.78.253
View DNS History on DNS Archive
Check GeoIP Blocking
Blocklisting Status
Learn about Blocklisting Status
Overall Status: CLEAN No blocklisting detected
Services Checked: 2
VirusTotal: CLEAN
Domain is clean according to 0 scanners
No threats detected by any security scanner
Google Safe Browsing: CLEAN
Domain is not blocklisted by Google Safe Browsing
No threats detected
Hosting Information
Provider: Cloudflare (high confidence)
Detection Method: HTTP Headers
Matched Headers:
  • server: cloudflare
  • cf-ray: 9bdd429b2e635d05-atl
Company Information:

Global CDN and security provider offering DDoS protection, SSL certificates, and performance optimization services.

Website
Portal
Contact:
Social Media:
SSL/TLS Security
Learn about SSL/TLS Security
TLS Version: TLSv1.3
SSL Certificate:
  • Certificate Type: DV (Domain Validated - Basic Security)
  • Subject: fireofficerleadershipacademy.com
  • Certificate Authority (CA): WE1
    Google Trust Services
    US
  • Valid From: Nov 26 14:27:32 2025 GMT
  • Valid Until: Feb 24 15:25:51 2026 GMT
  • Serial Number: 25F085046D29346E1330B12E65315CC7
SSL Certificate Expiring Soon!
Your SSL certificate expires in 40 days.
Please renew your certificate before Feb 24 15:25:51 2026 GMT to avoid service interruption.
Content Management System
CMS Detected: WordPress
Active Theme: bb-theme
Detected Plugins (3):
bb-plugin cookie-law-info memberpress
Themes

1

Plugins

3

WordPress Security Analysis
FAILED
Learn about WordPress Security Analysis
XMLRPC.php Security Test FAILED

XMLRPC.php is accessible and vulnerable

HTTP Status: 200

Recommendation: Protect xmlrpc.php via firewall rules or disable it completely. Consider using security plugins or server-level blocking.
WP-Login.php Security Test PASSED

WP-Login page is not accessible (HTTP 403)

HTTP Status: 403

Recommendation: WP-Login page is properly protected.
User Enumeration Test PASSED

User enumeration is properly protected

Test Results:

Endpoint: https://www.fireofficerleadershipacademy.com/wp-json/wp/v2/users

Status: PASSED

Message: Endpoint properly protected (HTTP 401)

HTTP Status: 401

Endpoint: https://www.fireofficerleadershipacademy.com/?rest_route=/wp/v2/users

Status: PASSED

Message: Endpoint properly protected (HTTP 401)

HTTP Status: 401

Recommendation: WordPress REST API user enumeration is properly secured.
Failed Security Tests:
  • XMLRPC
Request Assistance
Security Headers Analysis
Need help understanding security headers? View our comprehensive documentation to learn about each header and how to implement them.
Present Security Headers
Referrer-Policy
X-XSS-Protection
Permissions-Policy
Content-Security-Policy
Missing Security Headers
Strict-Transport-Security
X-Content-Type-Options
X-Frame-Options
Cross-Origin-Embedder-Policy
Cross-Origin-Opener-Policy
Cross-Origin-Resource-Policy
Request Assistance
HTTP Headers
Learn about HTTP Headers
HTTP Response Code
200 OK - Request successful
HTTP Protocol Version
Excellent! Your website is using HTTP/2

Your website is using a modern HTTP protocol version, which provides better performance and security features.

Security Protection Detected

The site is using Cloudflare CDN & WAF 👍

Information Disclosure: Server Version

Header: x-powered-by
Value: PHP/8.1.33

Server Type: PHP

The X-Powered-By header reveals server version information, which can be used by attackers to identify vulnerabilities.
Gzip Compression Enabled 👍

Great! This site is using Gzip compression to improve performance and reduce bandwidth usage.

Header Value
nel {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
date Wed, 14 Jan 2026 12:50:38 GMT
link <https://www.fireofficerleadershipacademy.com/wp-json/>; rel="https://api.w.org/", <https://www.fireofficerleadershipacademy.com/wp-json/wp/v2/pages/14>; rel="alternate"; title="JSON"; type="application/json", <https://www.fireofficerleadershipacademy.com/>; rel=shortlink
vary Accept-Encoding,User-Agent
cf-ray 9bdd429b2e635d05-ATL
server cloudflare
alt-svc h3=":443"; ma=86400
report-to {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=WTyBA62X9HGPOjS2e%2F8NXOnwpaRrDL1ne%2FuImCu3wG8WluJfpbuq4M%2BpyxLxumdhyxxrWhXl%2BHCTVlMSiyjFN2Oi54bek15dMupoxjc7Da%2B92PRY9vXcyElOprdCIG%2FxRd9dsw%3D%3D"}]}
content-type text/html; charset=UTF-8
http_version HTTP/2
x-powered-by PHP/8.1.33
cf-cache-status DYNAMIC
referrer-policy strict-origin-when-cross-origin
content-encoding gzip
x-xss-protection 0
permissions-policy private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")
content-security-policy upgrade-insecure-requests;
Service Disclaimer

Free Service: This website security analyzer is provided as a free service to help website owners and administrators identify potential security issues and improve their website's security posture.

Donations: We welcome and appreciate donations to help us maintain and improve this service. Your support helps us keep this tool free and continuously enhance its capabilities.

Affiliate Links: We may use affiliate links for various security services, hosting providers, and security tools mentioned throughout this analysis. If you choose to purchase any of these services through our links, we may receive a small commission at no additional cost to you. This helps support the development and maintenance of this free service.

Support Our Service

Help us keep this tool free and improve it further

Buy us a Coffee Make a Donation via PayPal
Please wait, running the scan...
This may take a few moments