// SECURITY SCAN GUIDES
How the scan works
Six categories. Each one a real attack surface. Click a guide to learn what we check and how to fix it.
[H]→
HTTP Security Headers
CSP, HSTS, X-Frame-Options and more. What they do and how to set them.
[TLS]→
TLS / SSL Certificate
Certificate validity, protocol versions, and what makes a connection secure.
[DNS]→
DNS Configuration
A records, MX, SPF, DMARC. Your domain's security foundation.
[@]→
Email Authentication
SPF, DMARC, and DKIM: stop attackers from sending email as your domain.
[JS]→
JavaScript Secrets
API keys and tokens exposed in your front-end bundles.
[!]→
Misconfigurations
.env files, .git directories, and admin panels left publicly accessible.