Audisto Crawler Hints
Website Security Checker Find & Fix Security Vulnerabilities
What is the security checker for
Ensure HTTPS Implementation: Detect mixed content issues, insecure form submissions, and improper HTTPS configurations that could compromise user data security.
Validate Security Headers: Monitor critical security headers like Content-Security-Policy and Strict-Transport-Security to protect against common web vulnerabilities.
Protect User Data: Identify issues with cookie security, credential exposure, and form submissions that could risk user privacy.
Monitor Security Standards: Track security best practices across your website to maintain robust protection and build user trust.
How to check website security issues at scale
Security builds trust
Website security is crucial for protecting your users and maintaining their trust. Our analysis helps you identify and fix security vulnerabilities before they can be exploited. While our quick check provides immediate security insights for single pages, our full crawler ensures consistent security across your entire website.
Critical Security related hints
<form> POST to HTTPS from HTTP
The form posts to an HTTPS URL, but resides on an HTTP URL.Learn more
<form> Unsafe GET to HTTP from HTTPS
A form uses the GET method and submits itself to an HTTP URL, but resides on an HTTPS URL.Learn more
<form> Unsafe POST to HTTP from HTTPS
A form uses the POST method and submits itself to an HTTP URL, but resides on an HTTPS URL.Learn more
Content-Security-Policy HTTP header missing
If the Content-Security-Policy HTTP header is missing, the URL is flagged with this hint.Learn moreSafe HTTPS webpage loads unsafe resource
If an HTTPS webpage contains an unsafe resource that is loaded using HTTP, it is flagged with this hint.Learn moreStrict-Transport-Security HTTP header is invalid
If a Strict-Transport-Security HTTP header is not properly defined, the URL is flagged with this hint.Learn more
Problem indicating Security related hints
<a> link contains user and password
An anchor's href contains user and password, such as http://user:password@example.com.Learn more<a> link uses file: protocol
An anchor's href uses the file: protocol, which is used to open files on the user's computer.Learn moreCookies send over insecure connection
A cookies send over an insecure connection was found.Learn moreCookies set with secure flag over insecure connection
A secure cookies send over an insecure connection was found.Learn moreStrict-Transport-Security HTTP header has short duration
If a Strict-Transport-Security header is set to a short duration, the URL is flagged with this hint.Learn moreStrict-Transport-Security HTTP header sent more than once
If a Strict-Transport-Security HTTP header is sent more than once, the URL is flagged with this hint.Learn more
Informational Security related hints
<a> link uses data: protocol
An anchor's href uses the data: protocol.Learn moreCookies set without secure flag
If cookies are set without using the secure flag, the URL is flagged with this hint.Learn moreStrict-Transport-Security HTTP header missing
If a Strict-Transport-Security HTTP header is missing, the URL is flagged with this hint.Learn more