WebForensik
WebForensik is a free web-based privacy and security scanner that passively analyses websites for GDPR compliance, HTTP header security, tracking, cookies and DNS protection.
Key facts
- Category
- SecurityApplication
- Platform
- Web
- Languages
- German, English
- Price
- free (rate limit 5 scans/hour per IP)
- Privacy
- IP hashing (SHA-256), no trackers, no ads
- Status
- Analysed
- 17 categories (HTTPS, HSTS, CSP, cookies, DNS …)
- Standard
- GEOhybrid grounding
- Operator
- Hans-J. Nolte
Features
- 17 analysis categories (HTTPS, HSTS, CSP, cookies, trackers, DNS …)
- Live simulation via header override (Puppeteer + Chrome DevTools Protocol)
- Consolidated all-in-one .htaccess fix per finding (Apache, WordPress, Hetzner shared)
- Multilingual: German and English
- JSON API for CI/CD pipeline integration
- Embeddable SVG score badge (240 × 28 px)
- IP hashing (SHA-256) — GDPR-compliant, no tracking
- Open self-audit: webforensik.de scans itself (score 96/100)
Disambiguation — what WebForensik is not
WebForensik is not a penetration-testing tool like Nikto, Nessus or OWASP ZAP — the scan is passive (HTTP headers, DOM analysis, DNS lookups only — no vulnerability exploits, no brute-force). Unlike Mozilla Observatory, WebForensik additionally delivers concrete
.htaccess, Apache and WordPress fix snippets per finding. WebForensik does not replace legal data-protection advice — for a complete GDPR assessment, please consult a data-protection officer. Trust
Status: Live · Self-Score 96/100 · Made in Germany · Open audit: webforensik.de/?url=webforensik.de
← Back to scanner