C — https://beavercheck.com/

Site Health

Score: 75 / 100

Based on 4 categories, 27 sections

How is this calculated?

The overall score is a weighted average of individual category scores. Categories with more impact on user experience and security carry more weight.

Security 25%Accessibility 15%Infrastructure 10%Compliance 8%

Weights reflect general web best practices. Individual needs may differ.

Top Priorities (4)

No viewport meta tag found

Compliance › Viewport Configuration

DNS resolution is slow (311 ms)

Infrastructure › DNS Records

<html lang> attribute is missing

Compliance › Language & i18n

No privacy policy link detected

Compliance › Cookie Consent & Privacy

Embed this badge

Markdown

[![BeaverCheck](https://beavercheck.com/badge?url=https%3A%2F%2Fbeavercheck.com%2F)](https://beavercheck.com/results/776976c3-6292-44a3-9dd1-3ffb758b406e)

HTML

<a href="https://beavercheck.com/results/776976c3-6292-44a3-9dd1-3ffb758b406e"><img src="https://beavercheck.com/badge?url=https%3A%2F%2Fbeavercheck.com%2F" alt="BeaverCheck Score"></a>

Image URL

https://beavercheck.com/badge?url=https%3A%2F%2Fbeavercheck.com%2F

This badge auto-updates with your latest scan result.

Was this report useful?

Thanks for your feedback!

Global Performance 5/5 locations ✓

UN New York

Full audit

469ms

DNS 157ms · TLS 81ms

NL Amsterdam

49ms

DNS 19ms · TLS 11ms

SG Singapore

1192ms

DNS 537ms · TLS 166ms

UN Santa Clara

936ms

DNS 315ms · TLS 158ms

BR Sao Paulo

1371ms

DNS 571ms · TLS 203ms

CDN: No CDN · Avg TTFB: 804ms · Cache: No cache headers

Recent Trends

Performance stable →

TTFB improving ↑

379ms

FCP stable →

916ms

LCP degrading ↓

1.4s

Press ? for shortcuts

Lighthouse Scores

Industry-standard audits powered by Google Lighthouse.

Core Web Vitals

Key metrics that affect user experience.

Desktop audit not available for this result.

Results are identical for mobile and desktop.

HTTP Timing

Connection-level performance breakdown.

200 OK

DNS Lookup

315 ms

TCP Connect

154 ms

TLS Handshake

158 ms

Time to First Byte

936 ms

Total Time

936 ms

Connection waterfall

DNS Lookup 315 ms TCP Connect 154 ms TLS Handshake 158 ms Server Processing 308 ms Content Transfer 0 ms

Results are identical for mobile and desktop.

A+ Security Headers

A+ Content Security Policy

A+ TLS & Certificates

A+ Cookie Security

Parsed Policy

default-src 'self'

script-src 'self''nonce-j1ixeULvnDQhTzjWLMgn0w==''sha256-HEEHOpXHE8BTh9dRb9M7PatEeATDO5ZEGlSwTknAV7k='

style-src 'self''unsafe-inline'

font-src 'self'

img-src 'self'data:https:

connect-src 'self'

base-uri 'self'

form-action 'self'

frame-ancestors 'none'

upgrade-insecure-requests

HTTP/2 provides multiplexing and header compression for better performance.

Connection

Protocol

TLS 1.3

Cipher Suite

TLS_AES_128_GCM_SHA256

HTTP Version

HTTP/1.1

Certificate Chain

Leaf Certificate

Subject CN=beavercheck.comIssuer CN=E8,O=Let's Encrypt,C=USValid 2026-04-01T07:28:53Z → 2026-06-30T07:28:52ZExpires in 89 days SANs beavercheck.com, www.beavercheck.comSignature ECDSA-SHA384Serial 6bdf96c8e1e79333d5967c7efe425d5dd35

Intermediate (CA Certificate)

Subject CN=E8,O=Let's Encrypt,C=USIssuer CN=ISRG Root X1,O=Internet Security Research Group,C=USValid 2024-03-13T00:00:00Z → 2027-03-12T23:59:59ZExpires in 345 days Signature SHA256-RSASerial 63959363c24e7082715918bfc3d7ed56

2 cookies analyzed

Name	Secure	HttpOnly	SameSite	Size	Issues
bc_csrf	✓	✓	Lax	39 B	—
bc_csrf	✓	✓	Lax	39 B	—

Deep Analysis

Extended security checks beyond standard header analysis

A+ Subresource Integrity

A+ JS Library Vulnerabilities

A+ Information Leakage

A+ Email Security

B Permissions-Policy

B CORS Configuration

SRI Coverage No external resources — SRI not applicable

No known JavaScript library vulnerabilities detected.

No sensitive files exposed — all paths returned 404.

Path	Status	Category	Risk
/.git/HEAD	✓ Not found	Version Control	—
/.git/config	✓ Not found	Version Control	—
/.svn/entries	✓ Not found	Version Control	—
/.env	✓ Not found	Configuration	—
/.env.local	✓ Not found	Configuration	—
/.env.production	✓ Not found	Configuration	—
/wp-config.php	✓ Not found	Configuration	—
/.htaccess	✓ Not found	Configuration	—
/phpinfo.php	✓ Not found	Debug	—
/server-status	✓ Not found	Debug	—
/server-info	✓ Not found	Debug	—
/.well-known/security.txt	✓ Not found	Security Policy	—

DMARC

Policy reject — strongest protection Record v=DMARC1;p=reject;pct=100;rua=info@beavercheck.com;

Raw Header

camera=() microphone=() geolocation=() interest-cohort=()

Feature Permissions

Blocked Self Only Unrestricted Not Set

camera Blocked

microphone Blocked

geolocation Blocked

interest-cohort Blocked

payment Not Set

usb Not Set

CORS Configuration ✓ Secure

No CORS headers detected.

Cross-origin requests are blocked by browser same-origin policy.

Origin reflection test

Some servers mirror the request Origin header, which can be exploited. Test manually:

curl -sI -H "Origin: https://evil.com" <url> | grep -i access-control

security.txt

No security.txt found at /.well-known/security.txt

Results are identical for mobile and desktop.

Content quality analysis not available for this result.

Performance analysis not available for this result.

Desktop audit not available for this result.

Results are identical for mobile and desktop.

Probed from Santa Clara, United Stated

A DNS Records

A+ Redirect Chain

C IPv6 Readiness

A+ Crawlability

A+ URL Variants

A+ Domain Intelligence

A	51.210.209.19
AAAA	—
CNAME	—
NS	ns14.ovh.net, dns14.ovh.net
MX	0 mail.appscyborg.com
TXT	SPF v=spf1 mx -all
CAA	Lookup not available with standard resolver

Resolved in 311 ms

Multiple A records provide failover if one server goes down.

CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.

Slow DNS adds latency to every page load. Consider a faster DNS provider.

https://beavercheck.com/

913 ms · HTTP/1.1 FINAL

#	URL	Status	Time	Protocol	Server
1	https://beavercheck.com/	200	913 ms	HTTP/1.1	nginx

No IPv6 Support

About 40% of internet users have IPv6. Consider adding AAAA records.

IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.

robots.txt 200 OK

Size 274 B Sitemaps referenced 1 User-agents * Blocking No — crawling allowed

User-agent: *
Allow: /
Disallow: /rate-limited
Disallow: /results/*/pdf
Disallow: /submit

Sitemap: https://beavercheck.com/sitemap.xml

# AI model context
# See https://beavercheck.com/llms.txt for a summary
# See https://beavercheck.com/llms-full.txt for detailed context

sitemap.xml 200 OK

Type URL Set URLs 36 entries Valid XML Yes

Sample URLs:

www / non-www

301https://www.beavercheck.com/

200https://beavercheck.com/

Preferred variant: non-www

HTTP → HTTPS

301http://beavercheck.com/ → https://beavercheck.com/

Consistent

Registrar OVH sas

Created March 23, 2026 (9 days ago)

Expires March 23, 2027 (11 months)

Last Updated March 23, 2026

Name Servers dns14.ovh.net, ns14.ovh.net

DNSSEC Enabled

Hosting

IP Address 51.210.209.19

ASN AS16276 (OVH, FR)

Provider OVH

Data source: rdap (0.5s)

Newly registered domains may face SEO trust challenges. Search engines generally give more authority to older domains. This is informational — not a problem to fix.

Results are identical for mobile and desktop.

A+ WCAG Compliance

B Cookie Consent & Privacy

F Language & i18n

A+ Readability & Typography

F Viewport Configuration

Level A

Level AA

Consent Banner Not detected Privacy Policy Not found Terms of Service —

Pre-consent Cookies

bc_csrf Functional

This is an automated check, not legal advice. Consult a privacy professional for GDPR/CCPA compliance.

A privacy policy page is recommended for transparency and may be legally required.

BeaverCheck detects technical indicators of consent management. This does not constitute a legal compliance assessment. Consult a privacy professional for GDPR/CCPA compliance.

Page Language ——Content-Language Header enConsistent No—

The lang attribute on <html> is required for screen readers and WCAG 3.1.1 compliance.

The <html lang> attribute and Content-Language header should agree.

Viewport Configuration Missing

No viewport meta tag found. Mobile devices will render at desktop width.

Suggested viewport tag <meta name="viewport" content="width=device-width, initial-scale=1">

Without a viewport meta tag, the page will not render correctly on mobile devices.

Learn how to fix

Results are identical for mobile and desktop.

D CDN & Delivery

F HTTP Caching

C Multi-Location Performance

No CDN detected

Consider using a CDN to improve global delivery speed and reduce origin load.

A CDN can significantly improve load times for users around the world by caching content at edge nodes closer to them.

No Cache-Control header

Adding a Cache-Control header can significantly improve repeat-visit performance.

Browsers will use heuristic caching, which can be unpredictable. Set explicit cache headers.

Location	Status	TTFB	DNS	Connect	TLS	Total
NL Amsterdam	200 ✓	49ms	19ms	6ms	11ms	50ms
UN New York (Full audit)	200 ✓	469ms	157ms	76ms	81ms	470ms
UN Santa Clara	200 ✓	936ms	315ms	154ms	158ms	936ms
SG Singapore	200 ✓	1192ms	537ms	163ms	166ms	1192ms
BR Sao Paulo	200 ✓	1371ms	571ms	199ms	203ms	1372ms
Average		804ms	320ms	120ms	124ms	804ms

Amsterdam

49ms

New York

469ms

Santa Clara

936ms

Singapore

1192ms

Sao Paulo

1371ms

Results are identical for mobile and desktop.

SEO analysis not available for this result.

HSTS, with Nginx CDN

2 technologies detected 2 stack layers 1 with CPE identifier Minimal

Stack Architecture

Framework

HSTS

CDN

Nginx

All Detected Technologies (2)

Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.

Categories Web servers, Reverse proxies Website https://nginx.org/en Detected by BeaverCheck Evidence Server header: nginx

This technology has a CPE identifier — check for known vulnerabilities Search NVD →

HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.

Categories Security Website https://www.rfc-editor.org/rfc/rfc6797#section-6.1 Detected by BeaverCheck

Observations (2)

No build tool detected

A framework (HSTS) was detected but no bundler was identified. The build tool may not be detectable from output patterns, or the site may use the framework's built-in bundler.

Minimal technology footprint

Only 2 technologies detected. This suggests a simple setup with minimal dependencies — excellent for performance and security.

First Audit

This is the first audit for this URL. Run another audit later to see what changed.

Scan Again

Results for https://beavercheck.com/

Site Health

Top Priorities (4)

Lighthouse Scores

Core Web Vitals

HTTP Timing

Connection waterfall

Parsed Policy

Certificate Chain

Raw Header

Feature Permissions

security.txt

URL Variants

Pre-consent Cookies

Stack Architecture

All Detected Technologies (2)

Observations (2)

First Audit

Keyboard Shortcuts