Free Website Vulnerability Scanner

Quick scan checks SSL, DNS, security headers, and exposed files in seconds. Deep scan adds SQL injection, XSS, SSRF, and OWASP Top 10 testing.

Scanning ...

Daily scan limit reached

Sign up free to get 10 scans/day — or upgrade for unlimited access.

Sign up free View pricing

Redirecting to report...

Frequently Asked Questions

What does this scanner check for? +
Quick scan checks SSL/TLS configuration, DNS security (SPF, DMARC, DKIM), security headers, CORS misconfiguration, and exposed sensitive files. Deep scan (Pro) adds full OWASP Top 10 testing: SQL injection, XSS, SSRF, CSRF, path traversal, and more.
What's the difference between Quick and Deep scan? +
Quick scan runs in ~15 seconds and checks your site's security configuration — SSL, DNS, headers, exposed files. Deep scan (Pro) takes 2-5 minutes: it crawls your site, discovers forms and parameters, then tests each one for SQL injection, XSS, SSRF, command injection, and other OWASP Top 10 vulnerabilities.
Should I only scan my own websites? +
Yes. Only scan websites you own or have explicit written authorization to test. Unauthorized vulnerability scanning is illegal in most jurisdictions.