What is the website security checker for
Identify and check website security issues on your site and find pages with missing security policies
Avoid losing rankings due to website security issues that are commonly penalized by search engines
Minimize the risk of fraud through attacks using leaked user data and stolen login credentials
Check pages for insecure elements and prevent browser security warnings from impacting your revenue
Website security standards are being enforced by modern browser nowadays
If you ignore to check the security of your website, the intensified browser enforcement could seriously harm your business – e.g. if the browser omnibox shows your ecommerce shop as insecure.
Website security analysis
Unsafe resources & mixed content
Find pages that embed unsafe resources like images, iframes, CSS or JavaScript that might be blocked by browsers or trigger website security warnings.
HTTP to HTTPs migration
Identify URLs that have not been properly switched from HTTP to HTTPs and therefore still pose a security risk.
Insecure Cookies
Discover all URLs that send cookies over an insecure connection or miss the secure flag, and can probably be stolen by an attacker.
Unsafe forms
Discover all pages that contain forms that could leak data through an unsafe HTTP connection or expose data through GET parameters.
Strict transport security checker
Identify all URLs without a strict transport security HTTP header, which enforces HTTPS for subsequent request, or specify a duration too short for HSTS preload.
Content security policy checker
Discover all pages that do not specify a content security policy HTTP header and therefore use the default policy of the browser, which is less strict.