Changes

https://nu11cyber.com

Compared to previous audit · 1 hour ago View previous audit

New York, United Stated → Madrid, Spain

These audits ran from different locations. Timing metrics (TTFB, DNS, TLS) may reflect network path differences rather than site changes.

New issues

Resolved

score changes

Category	Previous	Current	Change
Composite	B (83)	B (84)	+1.000
Performance	A (93)	A (94)	+1.000
Security	C (79)	B (80)	+1.000
Accessibility	C (79)	B (80)	+1.000
SEO	B (87)	B (89)	+2.000
Infrastructure	B (84)	B (85)	+1.000
Compliance	D (59)	D (59)	—
Content	A (95)	A (91)	-4.000
Sustainability	B (86)	A+ (98)	+12.000

Metric	Previous	Current	Change
Performance	7900	8100	+200
Accessibility	10000	10000	—
Best Practices	9600	7300	-2300
SEO	10000	10000	—
PWA	0	0	—
FCP	3.01 s	2.83 s	-182 ms
LCP	3.65 s	3.88 s	+230 ms
TBT	0 ms	0 ms	—
CLS	0.140	0.000	-0.140
TTFB †	821 ms	698 ms	-123 ms
DNS †	54 ms	7 ms	-47 ms
TLS †	256 ms	8 ms	-248 ms
Connect †	253 ms	2 ms	-251 ms
Total †	821 ms	699 ms	-122 ms

† Timing metrics may vary by worker location and do not necessarily indicate site changes.

CRITICAL og:image is not reachable content

CRITICAL HTTP version does not redirect to HTTPS infrastructure

CRITICAL 6 of 11 links are healthy content

WARNING <iframe> missing title attribute (src="") accessibility

WARNING No favicon.ico at site root accessibility

WARNING Broken link: https://www.nu11cyber.com/nu11-favicon.png content

WARNING https://www.nu11cyber.com/nu11-logo-transparent.pn... is missing width/height — may cause layout shift performance

WARNING Broken link: https://www.nu11cyber.com/assets/style-DdtoMpod.css content

WARNING HSTS max-age is too short (0s, should be ≥ 31536000s) security

WARNING https://www.nu11cyber.com/assets/index-C1nYXaiv.js: 1646ms CPU time performance

WARNING https://www.nu11cyber.com/cdn-cgi/challenge-platfo...: 283ms CPU time performance

WARNING 2 images missing explicit width/height content

WARNING X-Frame-Options header is missing security

WARNING SRI adoption: 1/4 third-party resources protected (25%) security

WARNING Referrer-Policy header is missing security

WARNING https://www.nu11cyber.com/: 290ms CPU time performance

WARNING Unattributable: 275ms CPU time performance

WARNING Broken link: https://www.nu11cyber.com/ content

WARNING Broken link: https://www.nu11cyber.com/assets/index-C1nYXaiv.js content

WARNING Broken link: https://www.nu11cyber.com/nu11-logo-transparent.png content

WARNING 3 render-blocking <script src> tag(s) without async/defer performance

CRITICAL Both www and non-www versions serve content infrastructure

CRITICAL Soft 404: server returns HTTP 200 for non-existent pages accessibility

CRITICAL Cookie 'sl-session' is missing the Secure flag security

WARNING Canonical does not match final URL (https://nu11cyber.com) seo

WARNING HTTP→HTTPS redirect uses 302 instead of 301 infrastructure

WARNING Cookie 'sl-session' has no SameSite attribute security

WARNING security.txt: Missing required 'Contact' field security

WARNING https://nu11cyber.com/assets/index-C1nYXaiv.js: 2213ms CPU time performance

WARNING security.txt: Missing required 'Expires' field (RFC 9116) security

WARNING SRI adoption: 0/3 third-party resources protected (0%) security

WARNING https://images.dmca.com/Badges/dmca_protected_8_12... is missing width/height — may cause layout shift performance

WARNING Compressed response missing `Vary` header performance

WARNING https://nu11cyber.com/nu11-logo-transparent.png is missing width/height — may cause layout shift performance

WARNING Canonical www-ness doesn't match the final URL seo

WARNING 3 images missing explicit width/height content

WARNING https://nu11cyber.com/: 345ms CPU time performance

WARNING https://nu11cyber.com/assets/index-C1nYXaiv.js: 26 KB unused (71%) performance

CRITICAL Content-Security-Policy header is missing security

CRITICAL 1 non-essential cookie(s) set without consent banner compliance

CRITICAL Page has only 20 words — nearly empty seo

CRITICAL No Content-Security-Policy header found security

WARNING No SPF record found security

WARNING Manifest contains invalid JSON accessibility

WARNING Terms of Service not detected compliance

WARNING 1 publicly-accessible JavaScript source map(s) security

WARNING Permissions-Policy header is missing security

WARNING External script from unpkg.com lacks integrity attribute security

WARNING External script from images.dmca.com lacks integrity attribute security

WARNING 1 control(s) rely on placeholder only accessibility

WARNING Dead-end page — no outgoing internal links seo

WARNING No accessibility statement detected compliance

WARNING Cross-Origin-Opener-Policy header is missing security

WARNING GDPR Article 13 disclosure coverage: 0 / 8 categories compliance

WARNING Cross-Origin-Embedder-Policy header is missing security

WARNING Skip navigation link is missing (WCAG 2.4.1) accessibility

WARNING No internal links found seo

WARNING Permissions-Policy header not set -- features default to allow-on-same-origin security

WARNING No DMARC record found security

WARNING Thin content — only 20 words seo

WARNING No privacy policy link detected compliance

WARNING No Permissions-Policy header security

WARNING Registrar lock is NOT enabled infrastructure

WARNING Privacy Policy not detected compliance

WARNING All 3 images use legacy formats (JPEG/PNG/GIF) content

+ speculation-rules "/cdn-cgi/speculation"

+ server cloudflare

+ vary accept-encoding

+ cf-cache-status DYNAMIC

− x-frame-options DENY

− sl-antibot id@6;

− via 1.1 Caddy

− referrer-policy strict-origin-when-cross-origin

set-cookie

sl-session=hZ36UXoaGWq0sfwZ6DVm+g==; Path=/; Max-Age=86400; HttpOnly → sl-session=MprYLNQ0GWoeat6AV8nSGQ==; SameSite=None; Secure; Path=/; Max-Age=8...

alt-svc

h3=":443"; ma=2592000 → h3=":443"; ma=86400

strict-transport-security

max-age=31536000; includeSubDomains; preload → max-age=0; includeSubDomains; preload

4 headers unchanged

+ Cloudflare CDN

5 technologies unchanged

Looking ahead

+13 pts

B (84) Could reach A+ (97)

Security +20Compliance +18Accessibility +16Infrastructure +14SEO +11Content +9Performance +6

Estimate — actual results may vary (48 issues to fix)

Website improvement report — Nu11cyber

May 28, 2026 → May 28, 2026

B B 83 → 84 +1 pts

Resolved

New issues

Still remaining

Financial summary

Investment delivered

¥4,638 in development time

Investment remaining

¥17,150 to complete the remaining items

Ongoing risk

¥0/month in ongoing exposure

Figures are estimates based on local developer hourly rate, industry CPC, and regulatory fine ranges.

Performance by category

Metric	Before	After	Change
Overall score	83 (B)	84 (B)	+1
Performance	93 (A)	94 (A)	+1
Security	79 (C)	80 (B)	+1
Accessibility	79 (C)	80 (B)	+1
SEO	87 (B)	89 (B)	+2
Infrastructure	84 (B)	85 (B)	+1
Compliance	59 (D)	59 (D)	0
Content	95 (A)	91 (A)	-4
Sustainability	86 (B)	98 (A+)	+12

Resolved (17)

Canonical does not match final URL (https://nu11cyber.com) (SEO)
→ Better search engine visibility
Both www and non-www versions serve content (Infrastructure)
→ More reliable delivery
HTTP→HTTPS redirect uses 302 instead of 301 (Infrastructure)
→ More reliable delivery
Cookie 'sl-session' has no SameSite attribute (Security)
→ Reduced attack surface for visitors
security.txt: Missing required 'Contact' field (Security)
→ Reduced attack surface for visitors
https://nu11cyber.com/assets/index-C1nYXaiv.js: 2213ms CPU time (Performance)
→ Page loads faster for users
security.txt: Missing required 'Expires' field (RFC 9116) (Security)
→ Reduced attack surface for visitors
SRI adoption: 0/3 third-party resources protected (0%) (Security)
→ Reduced attack surface for visitors
https://images.dmca.com/Badges/dmca_protected_8_12... is missing width/height — may cause layout shift (Performance)
→ Page loads faster for users
Compressed response missing `Vary` header (Performance)
→ Page loads faster for users
Soft 404: server returns HTTP 200 for non-existent pages (Accessibility)
→ Improved usability for assistive technology users
https://nu11cyber.com/nu11-logo-transparent.png is missing width/height — may cause layout shift (Performance)
→ Page loads faster for users
Cookie 'sl-session' is missing the Secure flag (Security)
→ Reduced attack surface for visitors
Canonical www-ness doesn't match the final URL (SEO)
→ Better search engine visibility
3 images missing explicit width/height (Content)
→ Stronger social sharing and on-page quality

…and 2 more resolved issue(s)

Recommended next steps (48)

Sprint 1
og:image is not reachable (Content)
Sprint 1
HTTP version does not redirect to HTTPS (Infrastructure)
Sprint 1
6 of 11 links are healthy (Content)
Sprint 2
Content-Security-Policy header is missing (Security)
Sprint 2
1 non-essential cookie(s) set without consent banner (Compliance)
Sprint 3
Page has only 20 words — nearly empty (SEO)
Sprint 2
No Content-Security-Policy header found (Security)
Sprint 1
<iframe> missing title attribute (src="") (Accessibility)
Sprint 1
No favicon.ico at site root (Accessibility)
Sprint 1
Broken link: https://www.nu11cyber.com/nu11-favicon.png (Content)
Sprint 1
https://www.nu11cyber.com/nu11-logo-transparent.pn... is missing width/height — may cause layout shift (Performance)
Sprint 1
Broken link: https://www.nu11cyber.com/assets/style-DdtoMpod.css (Content)
Sprint 1
HSTS max-age is too short (0s, should be ≥ 31536000s) (Security)
Sprint 1
https://www.nu11cyber.com/assets/index-C1nYXaiv.js: 1646ms CPU time (Performance)
Sprint 1
https://www.nu11cyber.com/cdn-cgi/challenge-platfo...: 283ms CPU time (Performance)

…and 33 more recommended item(s)

Browse & Analyze

Learn