About SecureWebScan

SecureWebScan is a free, anonymous website security scanner. Paste any URL and get an instant A–F security grade with actionable remediation advice.

What We Check

  • SSL/TLS — Certificate validity, protocol versions, cipher strength
  • HTTP Security Headers — CSP, HSTS, X-Content-Type-Options, and more
  • DNS Configuration — SPF, DKIM, DMARC, DNSSEC, CAA records
  • Server Configuration — Software disclosure, open ports, HTTPS redirect
  • Cookie Security — Secure, HttpOnly, SameSite flags
  • Content Analysis — Mixed content, CMS detection, JS libraries
  • Exposed Files — .env, .git, backup files, API endpoints

How It Works

All checks are passive by default — we only inspect publicly visible information like HTTP headers, DNS records, and SSL certificates. The optional admin path probing performs active checks by requesting common admin URLs.

Our scanner identifies itself in all requests with the User-Agent: SecureWebScan/1.0 (security-scanner; +https://securewebscan.com)

References

Contact

For abuse reports or questions: [email protected]

To request your domain be blocklisted from scanning, contact us at the above email.

© 2026 SecureWebScan. Free security scanning for the vibe coding community.

Terms · About