Web Server Hardening, CMS Security and Malware Detection
Free Website Security Test is composed of many useful verifications and non-intrusive tests to check your website and web server security hardening, as well as to verify security of your CMS including comprehensive test of WordPress, Drupal or Joomla.
Similar to ImmuniWeb SSL Security Test, just enter your website URL to launch the test:
Website Security Test fingerprints 100+ most popular commercial and open source CMSs and web frameworks. Therefore, if you have an outdated or vulnerable piece of software, they will promptly tell you what’s wrong:
We also maintain an ample database of the most popular JS scripts, libraries and frameworks and recognizes when a particular version is altered by a third-party code. This service also searches for any known malicious code or malware within your JS and tell you if the JS is loaded from a domain listed in Black Lists.
Additionally, you will also get an exhaustive list of all external content included into your web page, such as images, CSS styles or remotely included JS. The content source is scrutinized for web resources of poor reputation.
This is a simple but a reliable way to spot crypto-jacking or malvertising on your website:
Once done with JS, you see a comprehensive analysis of all your HTTP headers, including detailed review of your Content Security Policy (CSP) and its validity. Differently from other free tools, here you get a CSP effectiveness validation in addition to its syntax analysis:
Furthermore, you arrive to analysis of your and third party’s cookies for various issues such as missing Secure or HTTPOnly flags:
Conclusion: an indispensable free security tool to check security and privacy of your websites.
