Free Website Security Scanner Tool by Get-Tools
Want to know how secure your website is? The Get-Tools Website Security Scanner performs a comprehensive analysis of your site and discovers potential security vulnerabilities in seconds. Completely free with no registration required.
What Does the Scanner Check?
Security Headers
The scanner verifies the presence of essential HTTP security headers including Content-Security-Policy (prevents XSS attacks), Strict-Transport-Security (enforces HTTPS), X-Frame-Options (prevents clickjacking), X-Content-Type-Options (prevents MIME sniffing), Referrer-Policy, and Permissions-Policy.
SSL/HTTPS Certificate
Checks whether the site uses encrypted HTTPS protocol, validates the SSL certificate, its expiration date, and issuing authority. Sites without HTTPS put user data at risk.
Exposed Files
Searches for sensitive files that may be accidentally exposed, such as environment files (.env) containing passwords, exposed Git directories leaking source code, database management pages like phpMyAdmin, backup files, and more.
Technology Detection
Identifies technologies and frameworks used by the website through header and page content analysis. Exposing software versions may help attackers target known vulnerabilities.
Cookie Security
Verifies cookie security settings including the Secure flag, HttpOnly flag, and SameSite attribute that protect against various attacks.
Scoring System
The scanner gives the site a score from 0-100 and a grade from A to F. Grade A means excellent security practices, while F indicates serious security issues requiring immediate attention.
Privacy and Safety
The scanner only checks publicly available information and never attempts to exploit any vulnerability. Scan results are not stored or shared. The scan is completely safe and doesn't affect the target website's performance.