Your Website's
Security Score
Get an instant security grade for any website. We check SSL/TLS, security headers, DNS records, and more — completely free, no signup required.
SSL/TLS Certificate
HTTPS, redirect, HSTS
Security Headers
CSP, XFO, XCTO, and more
Email Security
SPF, DKIM, DMARC records
Cookie Security
Secure, HttpOnly, SameSite
Technology & Content
Stack detection, mixed content
Attack Surface
Subdomain exposure, DNSSEC
How the Security Score Works
What does the scan check?
We perform non-intrusive checks on your website's SSL/TLS configuration, HTTP security headers (CSP, HSTS, X-Frame-Options, and more), and DNS email security records (SPF, DKIM, DMARC). These are the same checks that security auditors look for during SOC 2 and compliance assessments.
Is this scan safe?
Yes. We only perform external, non-intrusive checks — the same information any browser or email server would see. We don't attempt to exploit vulnerabilities or gain unauthorized access.
What if I get a low score?
Each finding includes a specific recommendation for how to fix it. Most security header issues can be fixed in minutes by updating your web server configuration. For a deep vulnerability assessment with 48 scanning engines, sign up for Vulnios (free).