Path: / Services / Website security / Quick check

Website security: Quick check

28%

Issue summary

Cross site request forgery (CSRF)

Click jacking (CJ)

Session riding and hijacking

Potential Spyware/Malware

Spam prevention

TOTAL POINTS		17 / 60
Your site got a 'Website Security Testing Rank' (WSTR) of 2.

Privacy		10 / 20
Email addresses	No clear-text email addresses found.	10
Spyware/Malware	3 or more external resources detected: script: //x.dpstatic.com/j/jquery/jquery-1.11.0.min.js script: //x.dpstatic.com/j/xenforo/xenforo.js?_v=4ea2e21f script: //x.dpstatic.com/j/digitalpoint/highcharts/highcharts.js?_v=4ea2e21f Each inserted external resource (JS,CSS,Flash..) is potential spyware or malware that you do NOT have control over.	0
Security		7 / 40
Click jacking	Possible prevention by JavaScript detected. Best would be a server side 'X-Frame-Options: DENY' plus some JS and CSS: More..	2
CSRF	No CSRF prevention by request parameter detected. Best would be using a double submit cookie (cookie plus request parameter). More..	0
Session hijacking	Session Hijacking issues detected by 3rd party elements.	5
Session riding	Session Riding issues detected by CSRF vournabilities.	0

This check is testing within the startpage only and checks for cross site request forgery, click jacking, spam prevention and potential spy-/malware. It does not cost anything and neither needs ownership verification nor hoster approval in order to run. For further (and way more detailed) checks you should take a look at the basic check.

Not happy with the selected package? Choose a different one or go back to the overview.

Advanced check

Not available yet!

Types:	XSS,SQLi,CRLFi,CSRF..
Pages:	100k (1k GET & 200 POST)
Duration:	up to 30 hours
Price:	USD 99.‒

Quick security check

Test a startpage

Types:	CSRF,CJ,SP,MW
Pages:	1 (startpage only)
Duration:	up to 1 minute
Price:	Free

Basic security check

Test a website

Types:	XSS,SQLi,CRLFi,CSRF..
Pages:	10k (100 GET & 20 POST)
Duration:	up to 3 hours
Price:	USD 19.90