initializing
Done-for-you bulk scan

Fingerprint any list ofwebsites at scale.

Send us your contact list — we scan every site's full tech stack, security posture, and HIPAA compliance from the outside. No login, no agents, no installs. 51 checks per URL.

Scan my list $250 / 1,500 contacts
Full tech fingerprint

CMS + version, theme, plugins, framework, language, server, CDN, analytics, JS libs — Wappalyzer-grade detection.

10 security headers

HSTS, CSP, X-Frame-Options, and 7 more — present/absent, graded.

TLS posture

Detects TLS 1.0/1.1 (deprecated), cert expiry & issuer, cipher suite.

Sensitive path audit

25+ paths — phpinfo, .env, .git, backups, exposed configs, open registration.

Cookie + CORS

Secure/HttpOnly/SameSite flags, wildcard CORS + Authorization exposure.

EOL component flags

End-of-life PHP/OpenSSL/Apache with CVE counts and dates.

DNS + subdomains

A/MX/TXT/NS, SPF/DKIM/DMARC, CDN, and common subdomain exposure.

HIPAA compliance score

Current-rule + 2026 NPRM grade (A–F) with findings & remediation.

Simple pricing

$250 per 1,500 contacts.

1 × 1,500-contact block
Covers up to 1,500 sites
$250
one-time

After payment you'll upload your list of sites. Results process automatically.