WebAudit

About

Most websites are one misconfigured header away from a serious vulnerability — and most developers don't find out until it's too late. WebAudit scans any website in under 2 seconds and gives it an A+ to F security grade. No login, no setup, no waiting. Just paste a URL and instantly see what's broken, why it matters, and exactly how to fix it. It checks HTTP security headers, TLS/SSL configuration, DNS records (SPF, DMARC, DKIM, CAA, DNSSEC), cookies, CORS, and server fingerprinting — then explains every finding in plain English. Free tools included: CSP Validator, Security Headers Generator, Security.txt Generator, Versus Mode to compare two sites, and a Score Simulator to see how fixes improve your grade. Pro and Agency plans for developers and agencies who need PDF reports, detailed fix guidance, and multi-site monitoring — without the enterprise price tag. Built by an indie developer. Free forever for core scanning.