Identifies your public IP, ISP, ASN, country, and checks whether you are routing through a VPN or Tor exit node. Exposes geolocation precision available to any server you connect to.
WebRTC can expose your real local and public IP addresses even when behind a VPN. This test uses the browser RTCPeerConnection API to enumerate all bound IP interfaces; the same method a hostile site would use.
Even with a VPN active, DNS queries can bypass the tunnel and reveal your ISP and browsing habits. This test probes which DNS resolver your browser is actually using.
Harvests the same browser attributes a tracking or phishing site would collect: User-Agent, screen resolution, timezone, language, canvas fingerprint entropy, hardware concurrency, and more.
The server runs a restricted Nmap scan against your public IP only. Probing the top 100 most common ports. Simulation mode is active by default; set SIMULATION_MODE=false on the server for live results.
Verifies whether your connection to this server is encrypted, checks for mixed content warnings, validates HTTPS enforcement, and reads security headers from the server response.
Audits the security-relevant HTTP response headers your browser received from this server: CSP, HSTS, X-Frame-Options, Referrer-Policy, Permissions-Policy, and more.