Website Security Check - How secure is my website?

With the Website Security Check you can determine how secure your website is. For example, we check whether malware was found on your website, whether your site appears on blacklists, how secure your SSL certificate is or whether you use the correct HTTP security headers. A complete list of all security checks can be found in the next section.

To start the check, simply enter your domain in the field above and confirm with ENTER. As a result you will get the following information:

Malware & Phishing
We check whether malware has been found on your site or whether your site has been classified as a phishing site.

We check whether your domain, IP, mail server or name server has landed on one of the known blacklists. This can be an indication that malware is being distributed or spam is being sent through your site.

SSL Certificate
We display information on the publisher, host name, signature algorithm used and key size. We check whether the certificate or certificate chain is trustworthy and whether the certificate is still valid.

SSL Protocols
We check 6 different SSL protocols for their use and give tips which should no longer be used for security reasons. The protocols are SSLv2, SSLv3, TLS 1, TLS 1.1, TLS 1.2, TLS 1.3.

SSL security vulnerabilities
In addition, we check whether your server is affected by one of the known security vulnerabilities. The tested vulnerabilities are Heartbleed, POODLE, FREAK and LOGJAM.

HTTP Security Header
Besides the SSL certificate we also check the HTTP Security Header. If set correctly, HTTP headers such as Content Security Policy increase the security of a page and protect against cross-site scripting attacks.

We check if you are using DNS security features like DNSSEC, CAA records or DANE.