Changes
Madrid, Spain → Singapore, Singapore
These audits ran from different locations. Timing metrics (TTFB, DNS, TLS) may reflect network path differences rather than site changes.
| Category | Previous | Current | Change |
|---|---|---|---|
| Composite | B (87) | B (84) | -3.000 |
| Performance | A (95) | A (95) | — |
| Security | B (87) | B (82) | -5.000 |
| Accessibility | B (83) | B (80) | -3.000 |
| SEO | B (84) | B (81) | -3.000 |
| Infrastructure | B (85) | A (90) | +5.000 |
| Compliance | D (68) | D (66) | -2.000 |
| Content | A (95) | C (76) | -19.000 |
| Sustainability | A+ (98) | A+ (98) | — |
| Metric | Previous | Current | Change |
|---|---|---|---|
| Performance | 8400 | 7900 | -500 |
| Accessibility | 10000 | 10000 | — |
| Best Practices | 8800 | 8800 | — |
| SEO | 10000 | 10000 | — |
| PWA | 0 | 0 | — |
| Desktop Performance | 9800 | 9500 | -300 |
| Desktop Accessibility | 10000 | 10000 | — |
| Desktop Best Practices | 8800 | 8800 | — |
| Desktop SEO | 10000 | 10000 | — |
| FCP | 2.70 s | 3.04 s | +336 ms |
| LCP | 3.48 s | 3.59 s | +111 ms |
| TBT | 0 ms | 0 ms | — |
| CLS | 0.000 | 0.000 | — |
| Desktop FCP | 780 ms | 901 ms | +121 ms |
| Desktop LCP | 870 ms | 1.24 s | +366 ms |
| Desktop TBT | 0 ms | 0 ms | — |
| Desktop CLS | 0.050 | 0.052 | +0.002 |
| TTFB † | 153 ms | 649 ms | +497 ms |
| DNS † | 14 ms | 1 ms | -13 ms |
| TLS † | 11 ms | 22 ms | +10 ms |
| Connect † | 2 ms | 16 ms | +15 ms |
| Total † | 153 ms | 650 ms | +496 ms |
† Timing metrics may vary by worker location and do not necessarily indicate site changes.
set-cookie sl-session=anVXOV5aGWqJ5mr5xj5SDw==; SameSite=None; Secure; Path=/; Max-Age=8... → sl-session=SWduJVdbGWqajkMBrhk/Tg==; SameSite=None; Secure; Path=/; Max-Age=8...14 headers unchanged
3 technologies unchanged
Looking ahead
+14 ptsEstimate — actual results may vary (36 issues to fix)
Website improvement report — Nu11cyber
May 28, 2026 → May 28, 2026
17
Resolved
19
New issues
17
Still remaining
Financial summary
Investment delivered
$2,425 in development time
Investment remaining
$3,967 to complete the remaining items
Ongoing risk
$0/month in ongoing exposure
Figures are estimates based on local developer hourly rate, industry CPC, and regulatory fine ranges.
Performance by category
| Metric | Before | After | Change |
|---|---|---|---|
| Overall score | 87 (B) | 84 (B) | -3 |
| Performance | 95 (A) | 95 (A) | 0 |
| Security | 87 (B) | 82 (B) | -5 |
| Accessibility | 83 (B) | 80 (B) | -3 |
| SEO | 84 (B) | 81 (B) | -3 |
| Infrastructure | 85 (B) | 90 (A) | +5 |
| Compliance | 68 (D) | 66 (D) | -2 |
| Content | 95 (A) | 76 (C) | -19 |
| Sustainability | 98 (A+) | 98 (A+) | 0 |
Resolved (17)
All 3 images use legacy formats (JPEG/PNG/GIF) (Content)
→ Stronger social sharing and on-page quality
1 publicly-accessible JavaScript source map(s) (Security)
→ Reduced attack surface for visitors
https://nu11cyber.com/assets/index-Cc6osTd8.js: 1671ms CPU time (Performance)
→ Page loads faster for users
1 control(s) rely on placeholder only (Accessibility)
→ Improved usability for assistive technology users
External script from images.dmca.com lacks integrity attribute (Security)
→ Reduced attack surface for visitors
Thin content — only 26 words (SEO)
→ Better search engine visibility
Canonical does not match final URL (https://nu11cyber.com) (SEO)
→ Better search engine visibility
13 of 15 links are healthy (Content)
→ Stronger social sharing and on-page quality
og:image is not reachable (Content)
→ Stronger social sharing and on-page quality
Canonical target returns 404 (SEO)
→ Better search engine visibility
Broken link: https://www.nu11cyber.com/ (Content)
→ Stronger social sharing and on-page quality
Broken link: https://www.nu11cyber.com/nu11-logo-transparent.png (Content)
→ Stronger social sharing and on-page quality
Canonical www-ness doesn't match the final URL (SEO)
→ Better search engine visibility
GDPR Article 13 disclosure coverage: 1 / 8 categories (Compliance)
→ Reduced regulatory exposure
https://nu11cyber.com/: 299ms CPU time (Performance)
→ Page loads faster for users
…and 2 more resolved issue(s)
Recommended next steps (36)
- Sprint 1
Scan returned a Cloudflare bot-protection interstitial, not the actual page (Security)
- Sprint 3
Page has only 47 words — nearly empty (SEO)
- Sprint 2
Content-Security-Policy header is missing (Security)
- Sprint 2
1 non-essential cookie(s) set without consent banner (Compliance)
- Sprint 1
Soft 404: server returns HTTP 200 for non-existent pages (Accessibility)
- Sprint 2
No Content-Security-Policy header found (Security)
- Sprint 2
GDPR Article 13 disclosure coverage: 0 / 8 categories (Compliance)
- Sprint 1
No Open Graph meta tags found (Content)
- Sprint 1
SRI adoption: 0/1 third-party resources protected (0%) (Security)
- Sprint 1
External script from challenges.cloudflare.com lacks integrity attribute (Security)
- Sprint 1
2 link(s) open in new tab without warning (Accessibility)
- Sprint 1
No meta description tag found (SEO)
- Sprint 3
Thin content — only 47 words (SEO)
- Sprint 1
No <nav> landmark found (Accessibility)
- Sprint 2
1 render-blocking <script src> tag(s) without async/defer (Performance)
…and 21 more recommended item(s)