Security Scan
The Security Scan checks your website for security threats – malware, blacklisting, outdated software, and missing security headers.
What You See
After the scan, you get:
- Security Score (0-100) – Overall security assessment
- Scan timestamp – When was the last check?
- Scan history – The last 10 scans at a glance
Areas Checked
| Area | Score Impact |
|---|---|
| Malware found | -40 points |
| Blacklisted | -30 points |
| Spam detected | -20 points |
| Outdated software | -10 points |
| No SSL | -10 points |
| No firewall | -5 points |
| Missing security headers | -1 per header (max -5) |
Starting a Scan
- Open the Security Scan in the sidebar
- Click "Start Scan"
- Wait for the analysis to complete
Note: There must be at least 60 seconds between two scans.
Security Headers
arkmetis checks whether important HTTP security headers are set:
- Content-Security-Policy (CSP)
- Strict-Transport-Security (HSTS)
- X-Frame-Options
- X-Content-Type-Options
- Referrer-Policy
- Permissions-Policy
Generate Headers
Click "Generate Security Headers" – arkmetis uses AI to create a suitable header configuration for your website that you can add to your hosting setup.
Firewall
You can manually indicate whether a Web Application Firewall (WAF) is active:
- Enter firewall name – e.g. "Cloudflare", "Sucuri", "ModSecurity"
- Remove firewall – If the WAF was deactivated
The Security Score is automatically recalculated after every change.
Cost
The Security Scan is free – no credits needed. AI-powered header generation costs 1 credit.