
WordPress Security Scanner
WPScan
Wordfence
WPCheckr
wpscan.online
WPScans.com
Patchstack
Trustpage
Security Headers
Mozilla Observatory
Hardenize
Qualys SSL Server Test
HTTP Observatory
MxToolBox
Snyk
Sucuri Security Scanner
Based on our record, Security Headers seems to be a lot more popular than WordPress Security Scanner. While we know about 69 links to Security Headers, we've tracked only 1 mention of WordPress Security Scanner. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
I had my website deployed as a virtual host using web station. Then I moved it into a virtual DSM where I setup web station and backends etc. Exactly the same (restored a hyper backup of web station and website files/databases into the VM then uninstalled same from the main NAS). Then to get to it over the web, my NAS has a reverse proxy that routes the traffic to the VM. The way it's setup the only port that will... Source: almost 4 years ago
Check: Go to securityheaders.com and enter your URL. A grade below B means you're missing important ones. - Source: dev.to / 26 days ago
The curl above is the fastest check; all four lines should come back. In a browser, DevTools, Network tab, click the document request, read Response Headers. For a letter grade, securityheaders.com scores you against a known rubric. One quirk: these four alone land a B, and you reach A only once you add Content-Security-Policy. - Source: dev.to / about 2 months ago
Remediation: Configure your web server to suppress or mask the Server header. Add security headers like Content-Security-Policy, Strict-Transport-Security, X-Frame-Options, and X-Content-Type-Options. You can use tools like securityheaders.com to check your current header posture. - Source: dev.to / 2 months ago
Step 4: Check your security headers (2 minutes) Visit securityheaders.com and enter your deployed URL. If you get anything below a B, you're missing critical protections. - Source: dev.to / 4 months ago
How to check: Run curl -I https://yourdomain.com and scan the response headers. Or paste your URL into securityheaders.com for a free graded report. - Source: dev.to / 4 months ago
WPScan - WPScan is a free, for non-commercial use, black box WordPress security scanner written for security professionals and blog maintainers to test the security of their sites.
Mozilla Observatory - The Mozilla Observatory is a project designed to help developers, system administrators, and security professionals configure their sites safely and securely.
Wordfence - Comprehensive security plugin for WordPress.
Hardenize - Hardenize provides a comprehensive and free assessment of web site network and security configuration.
WPCheckr - Free WordPress security scanner and vulnerability checker. Instantly scan your WP site for security issues, plugin vulnerabilities, and misconfigurations.
Qualys SSL Server Test - This free online service performs a deep analysis of the configuration of any SSL web server on the public Internet.