Skip to content
WebScore LogoWebScorev2
Security Audit

Secure Your Website.Protect Your Users.

Comprehensive security scanning across 8 categories — HTTPS, SSL/TLS, security headers, cookies, DNS, email authentication, content vulnerabilities, and configuration. Each issue graded by severity with specific fix instructions.

Security Report

example.com

A

Security Grade

SSL Certificate
Valid (345 days)
TLS Version
1.3
Security Headers
8/10 present
SPF Record
Valid
DMARC Policy
reject
DNSSEC
Enabled

Full Security Stack

We scan every layer — from transport security to DNS configuration to content vulnerabilities. Issues graded from critical to low.

SSL/TLS Certificate

Check certificate validity, issuer, expiry date, TLS protocol version, key strength, and HSTS enforcement. Graded A+ through F.

10 Security Headers

Validate HSTS, CSP, X-Content-Type-Options, X-Frame-Options, X-XSS-Protection, Referrer-Policy, Permissions-Policy, COOP, CORP, and COEP.

Email Authentication

Verify SPF, DKIM, and DMARC records. Check SPF validity, DKIM selectors, and DMARC policy (none, quarantine, reject) with an email security score.

DNS Security

Check DNSSEC validation, CAA records, nameservers, MX records, plus A, AAAA, CNAME, and TXT record analysis via Google and Cloudflare DNS.

Content Vulnerabilities

Scan for exposed emails and phone numbers, inline and external scripts, outdated JavaScript libraries, and mixed content issues.

Cookie Security

Analyze cookies for Secure, HttpOnly, and SameSite flags. Count total cookies and identify those missing security attributes.

What We Check

Comprehensive security testing across all critical areas. Each finding includes severity, impact, and fix instructions.

HTTPS & SSL

  • HTTPS enabled and redirects
  • Certificate validity and expiry
  • TLS protocol version (1.2+)
  • Key strength and cipher analysis
  • HSTS header enforcement
  • Mixed content detection

Security Headers

  • Strict-Transport-Security (HSTS)
  • Content-Security-Policy (CSP)
  • X-Content-Type-Options
  • X-Frame-Options
  • Referrer-Policy
  • Permissions-Policy

DNS & Email

  • DNSSEC validation
  • CAA record presence
  • SPF record and validity
  • DKIM configuration
  • DMARC policy enforcement
  • MX record analysis

Content & Cookies

  • Exposed email addresses
  • Exposed phone numbers
  • Inline and external script count
  • Outdated JavaScript libraries
  • Cookie Secure flag
  • Cookie HttpOnly and SameSite flags

Find vulnerabilities before hackers do

Scan free in ~60 seconds and preview your scores. Unlock the full report — every issue with step-by-step fixes — for $3, or get Lifetime ($29.99 once) for everything, including monitoring.

About WebScore

WebScoreis a free website audit platform that grades any site across five dimensions — performance, SEO, accessibility, security and Conversion — in about 60 seconds. Run a WebScore scan to see exactly what's holding your pages back and get a prioritized list of fixes, with detailed WebScore reports starting at $3 or lifetime access for a one-time $29.99.

Whether you're comparing WebScore to other audit tools, checking a single page or monitoring an entire portfolio, WebScore turns a raw website score into clear, actionable steps. Get your free WebScore for any URL today.