Security Audit

Perform a basic security audit on your website and see what kind of vulnerabilities are affecting it.

www.coursera.org

Hosted at 13.249.42.15

View Results Email Report Scan a different site Scan a different site

96/100

Astra Health Score
Your site does not appear to be blacklisted.

Security Audit Results

We detected suboptimal or unsafe practices on your website. Please see the list below for more details.

Request Security Audit
  • Content Security Policy (CSP) header not implemented Header Security Low Details
    Description:

    Our scanners were not able to detect Content Security Policy (CSP) header amongst the header returned by your site..

    Remediation:

    Follow this guide to fix this, find the guide here.

  • Anti-CSRF tokens set without using the SameSite flag Cookie Security Low Details
    Description:

    SameSite prevents the browser from sending this cookie along with cross-site requests. Risk of cross-origin information leakage can be mitigated by using SameSite cookies. Our scanners detected that your website is using Anti-CSRF tokens but is not using SameSite attributes. SameSite is a new standard actively enforced by web browsers and We recommend that you add SameSite cookie attribute to all sensitive cookies..

    Remediation:

    Follow this guide to fix this, find the guide here.

  • Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS HTTP Security Info Details
    Description:

    Subresource Integrity enables you to mitigate some risks of attacks by ensuring that the files your web application or web document fetches (from a CDN or anywhere) have been delivered without a third-party having injected any additional content into those files and without any other changes of any kind at all having been made to those files. Great job loading all scripts via HTTPS, Implementing SRI will help you make your website more secure..

    Remediation:

    Follow this guide to fix this, find the guide here.

Protect your website from internet attacks

Try Astra