AI ClicksScan · Detect · Secure

Cyber Security

HTTP Misconfiguration Audit

Six categories of server-level security misconfiguration checked from the HTTP response and page HTML. No vulnerability exploitation: passive header and HTML inspection only.

Checks included

  • Server header version disclosure (Apache/2.4.x, nginx/1.x)
  • X-Powered-By header exposure (PHP/7.x, ASP.NET)
  • phpinfo() output visible in page HTML
  • Verbose stack trace or exception in page HTML
  • Clickjacking protection (X-Frame-Options / CSP frame-ancestors)
  • Content-Type sniffing protection (X-Content-Type-Options)
  • Cache-Control directive presence
  • Mixed content (HTTP references on HTTPS pages)

Run the scan

Cyber Security Scan· cyber security checks only
Deep scan: Pro plan →
Create free account·Sign in·3 free instant scans left today

Paste a URL above and hit Scan →

Cyber Security Scan · Instant scan returns in ~5 seconds

TLS · DMARC · DNSSECAI content detectionBlockchain intelligenceGEO / llms.txt