Perform a basic security audit on your website and see what kind of vulnerabilities are affecting it.
78/100Astra Health Score
Security Audit Results
We detected suboptimal or unsafe practices on your website. Please see the list below for more details.
X-XSS-Protection header not implemented Header Security High DetailsDescription:
The x-xss-protection header is designed to enable the cross-site scripting (XSS) filter built into modern web browsers. X-XSS-Protection header is not implemented on this website. Implementing X-XSS-Protection security headers are an important way to keep your site and your visitors safe from attacks and hackers..
X-Frame-Options (XFO) header not implemented Header Security Medium DetailsDescription:
This header tells your browser how to behave when handling your site's content. The main reason for its inception was to provide clickjacking protection by not allowing rendering of a page in a frame. This can include rendering of a page in a frame, iframe, or object. Iframes are used to embed and isolate third-party content into a website. X-Frame-Options (XFO) header was not found on this website..
X-Content-Type-Options header not implemented Header Security Medium DetailsDescription:
X-Content-Type-Options header indicates that MIME Type specified by server should not be changed and should be followed. X-Content-Type-Options header is not implemented..
Content Security Policy (CSP) header not implemented Header Security Low DetailsDescription:
Our scanners were not able to detect Content Security Policy (CSP) header amongst the header returned by your site..