Fingerprint any list ofwebsites at scale.
Send us your contact list — we scan every site's full tech stack, security posture, and HIPAA compliance from the outside. No login, no agents, no installs. 51 checks per URL.
CMS + version, theme, plugins, framework, language, server, CDN, analytics, JS libs — Wappalyzer-grade detection.
HSTS, CSP, X-Frame-Options, and 7 more — present/absent, graded.
Detects TLS 1.0/1.1 (deprecated), cert expiry & issuer, cipher suite.
25+ paths — phpinfo, .env, .git, backups, exposed configs, open registration.
Secure/HttpOnly/SameSite flags, wildcard CORS + Authorization exposure.
End-of-life PHP/OpenSSL/Apache with CVE counts and dates.
A/MX/TXT/NS, SPF/DKIM/DMARC, CDN, and common subdomain exposure.
Current-rule + 2026 NPRM grade (A–F) with findings & remediation.
$250 per 1,500 contacts.
After payment you'll upload your list of sites. Results process automatically.
