Security Test
Website Security Test
Website Vulnerability Scanner
Comprehensive security testing for your website
Security Report: https://example.com
Scan Date: March 19, 2026, 9:25 p.m. | Duration: None
Have you made changes or fixed vulnerabilities?
Run a fresh scan to verify your latest security updates.
Risk Rating
Overall Risk Rating
A+ (100/100)
0
Total CVEs
0
Total CWEs
Risk Distribution Chart
CVE Based Risk Distribution
| Critical | 0 |
| High | 0 |
| Medium | 0 |
| Low | 0 |
CWE Based Risk Distribution
| Critical | 0 |
| High | 0 |
| Medium | 0 |
| Low | 0 |
Unique CVE IDs
Identified
No CVEs mapped
Unique CWE IDs
Identified
No CWEs mapped
How is the score calculated?
Scores start at 100. Deductions are: Critical (-10), High (-5), Medium (-2), Low (-1). To ensure fairness, deductions are capped per category: Critical (40), High (25), Medium (15), Low (10).
Scan Summary
| 1 | Input Hostname | example.com |
| 2 | Scan Start Time | March 19, 2026, 9:25 p.m. |
| 3 | Scan Duration | None |
| 4 | Total Test Cases | 0 |
Target Information
| 1 | Target URL | https://example.com |
| 2 | IP Address | 93.184.216.34 |
| 3 | Hosting Provider | Not Disclosed |
| 4 | Registrar | Not Available |
| 5 | Programming Language | Not Detected |
| 6 | Web Server | Nginx/1.18.0 |
| 7 | Operating System | Not Detected |
| 8 | HTTPS Enabled | Unknown |
| 9 | WAF Detected | Not Detected |
Network & Infrastructure Reconnaissance
| Inline Connection | None |
| IP Address | 93.184.216.34 |
| Hosting Provider | None |
| Server | Nginx/1.18.0 |
| Server Disclosure CVE | None |
| Operating System | None |
| Open Ports | 80, 443 |
| Database Technology | None |
| WAF Detection | None |
| SSL Certificate | None |
Application Stack & Technology Fingerprinting
| CMS | None |
| CMS CVE | None |
| Programming Language | None |
| Technology Disclosure CVE | None |
| Javascript Libraries | None |
| Javascript Libraries CVE | None |
| Openapi Disclosure | None |
| XML RPC Endpoint Detection | None |
Transport Layer Security (TLS) & Encryption
| Mixed Content Analysis | None |
| Secure Connection | None |
| Unencrypted Viewstate | None |
HTTP Security Headers Analysis
| Securitys | None |
| Content Security Policy | None |
| Strict Transport Security | None |
| Referrer Policy | None |
| X Content Type Options | None |
| CSP Analysis | None |
| X Frame Options | None |
| X XSS Protection | None |
Session & Cookie Security
| Missing HTTPonly Flag In Cookies | None |
| Missing Secure Flag In Cookies | None |
| Loose Cookie Domain | None |
Sensitive Resource & File Exposure
| Directory Listing | None |
| Secret Files Detection | None |
| Robots Txt File Found | None |
| Path Disclosure | None |
| Htaccess Exposure | None |
Authentication & Credential Exposure
| Passwords Submitted Unencrypted | None |
| Password Leakage | None |
| Password Field With Autocomplete | None |
Information Disclosure & Error Handling
| Error Messages Analysis | None |
| Cross Domain Inclusion | None |
Application Surface & Method Exposure
| HTTP Methods Allowed | None |
| Enabled Debug Method | None |
| Enabled Options Method | None |
| File Upload | None |
| Client Access Policies | None |
Email & Domain Security Configuration
| Email Extraction | None |
| SPF | None |
| DMARC | None |
| DKIM | None |
Abuse & Rate-Limiting Controls
| Rate Limit Headers | None |
Injection & Header Manipulation
| Host Header Injection | None |
Bot & Automation Protection
| Captcha Detection | None |
Other Findings
| Registrar | None |
Findings – CVE (Common Vulnerabilities and Exposures)
No CVE vulnerabilities found.
Other Security Tools
Explore our comprehensive suite of security testing tools