Free website Security scan
Check any website for security problems in under a minute. We look at headers, exposed files, common misconfigurations, and known vulnerabilities. No signup, no card, no install.
Public sites only. Findings are private to your browser session for 90 days.
How it works
Enter a domain
Type any website address. We scan only the public surface - the same things any visitor or search engine can see.
We check the basics
Security headers, exposed admin paths, leaked files like .env or .git, common WordPress/PHP misconfigurations, weak TLS settings, and outdated software versions with known issues.
Get a report
Findings appear on screen in under a minute, grouped by severity. You can download the PDF or save the link. Free scan results stay private to your browser for 90 days.
What you get
A clean report grouped by severity (critical, high, medium, low). Each finding tells you what is wrong, where it shows up, and how to fix it.
No browser run, no JavaScript execution, no destructive checks. We do not touch your data and we do not log in - this is the same view a passing search engine has.
- Missing security headers (CSP, HSTS, X-Frame-Options, ...)
- Exposed config files (.env, .git, backups, debug pages)
- WordPress: outdated core, plugins, themes; xmlrpc exposure
- TLS / HTTPS issues (mixed content, weak ciphers, no redirect)
- Discoverable admin paths and default endpoints
- Software versions with public CVEs
Want more?
The free scan looks at the public surface. For deeper checks - logged-in pages, database, files on disk, automated AI fixes - you need a Proginter account.
Agent scan
Logged-in scan against your sites hosted anywhere. Walks the site as a real user would, covers checkout flows, forms, account pages.
- Logged-in surface coverage
- Form / endpoint discovery
- Application-layer findings
Internal scan + auto-fix
Server-level scan with full file + database visibility. The AI picks the safest fixes, backs files up, and applies them - one click per finding.
- Filesystem + database checks
- AI-applied fixes with rollback
- Pay per applied fix, not per scan
Built on what we use in-house
The same scanner runs every Proginter-hosted website daily. We catch issues before our customers do - and now you can run the public version on any domain you care about.
Daily checks on every hosted site
Customer sites on Proginter hosting get scanned automatically. Critical findings open a ticket and notify the owner.
AI-assisted fixes
The same AI that powers our Proper assistant proposes and applies the fixes for paying customers - with file backups and rollback if anything misbehaves.
Open report formats
PDF reports in English, Hebrew, and Arabic. Findings include the exact URL, response code, and the fix recommendation.
