Skip to content

Changes

https://nu11cyber.com
Compared to previous audit · 1 hour ago View previous audit

New York, United Stated Madrid, Spain

These audits ran from different locations. Timing metrics (TTFB, DNS, TLS) may reflect network path differences rather than site changes.

21
New issues
17
Resolved
18
score changes
CategoryPreviousCurrentChange
CompositeB (83)B (84) +1.000
PerformanceA (93)A (94) +1.000
SecurityC (79)B (80) +1.000
AccessibilityC (79)B (80) +1.000
SEOB (87)B (89) +2.000
InfrastructureB (84)B (85) +1.000
ComplianceD (59)D (59)
ContentA (95)A (91) -4.000
SustainabilityB (86)A+ (98) +12.000
MetricPreviousCurrentChange
Performance 79008100 +200
Accessibility 1000010000
Best Practices 96007300 -2300
SEO 1000010000
PWA 00
FCP 3.01 s2.83 s -182 ms
LCP 3.65 s3.88 s +230 ms
TBT 0 ms0 ms
CLS 0.1400.000 -0.140
TTFB 821 ms698 ms -123 ms
DNS 54 ms7 ms -47 ms
TLS 256 ms8 ms -248 ms
Connect 253 ms2 ms -251 ms
Total 821 ms699 ms -122 ms

† Timing metrics may vary by worker location and do not necessarily indicate site changes.

CRITICAL 6 of 11 links are healthy content
CRITICAL HTTP version does not redirect to HTTPS infrastructure
CRITICAL og:image is not reachable content
WARNING SRI adoption: 1/4 third-party resources protected (25%) security
WARNING <iframe> missing title attribute (src="") accessibility
WARNING Broken link: https://www.nu11cyber.com/nu11-logo-transparent.png content
WARNING HSTS max-age is too short (0s, should be ≥ 31536000s) security
WARNING https://www.nu11cyber.com/cdn-cgi/challenge-platfo...: 283ms CPU time performance
WARNING Referrer-Policy header is missing security
WARNING https://www.nu11cyber.com/nu11-logo-transparent.pn... is missing width/height — may cause layout shift performance
WARNING https://www.nu11cyber.com/: 290ms CPU time performance
WARNING 3 render-blocking <script src> tag(s) without async/defer performance
WARNING No favicon.ico at site root accessibility
WARNING https://www.nu11cyber.com/assets/index-C1nYXaiv.js: 1646ms CPU time performance
WARNING X-Frame-Options header is missing security
WARNING Unattributable: 275ms CPU time performance
WARNING Broken link: https://www.nu11cyber.com/nu11-favicon.png content
WARNING Broken link: https://www.nu11cyber.com/assets/index-C1nYXaiv.js content
WARNING Broken link: https://www.nu11cyber.com/assets/style-DdtoMpod.css content
WARNING Broken link: https://www.nu11cyber.com/ content
WARNING 2 images missing explicit width/height content
CRITICAL Cookie 'sl-session' is missing the Secure flag security
CRITICAL Soft 404: server returns HTTP 200 for non-existent pages accessibility
CRITICAL Both www and non-www versions serve content infrastructure
WARNING Canonical www-ness doesn't match the final URL seo
WARNING Cookie 'sl-session' has no SameSite attribute security
WARNING https://nu11cyber.com/: 345ms CPU time performance
WARNING Compressed response missing `Vary` header performance
WARNING HTTP→HTTPS redirect uses 302 instead of 301 infrastructure
WARNING 3 images missing explicit width/height content
WARNING security.txt: Missing required 'Expires' field (RFC 9116) security
WARNING SRI adoption: 0/3 third-party resources protected (0%) security
WARNING Canonical does not match final URL (https://nu11cyber.com) seo
WARNING https://nu11cyber.com/assets/index-C1nYXaiv.js: 2213ms CPU time performance
WARNING security.txt: Missing required 'Contact' field security
WARNING https://images.dmca.com/Badges/dmca_protected_8_12... is missing width/height — may cause layout shift performance
WARNING https://nu11cyber.com/nu11-logo-transparent.png is missing width/height — may cause layout shift performance
WARNING https://nu11cyber.com/assets/index-C1nYXaiv.js: 26 KB unused (71%) performance
CRITICAL No Content-Security-Policy header found security
CRITICAL 1 non-essential cookie(s) set without consent banner compliance
CRITICAL Content-Security-Policy header is missing security
CRITICAL Page has only 20 words — nearly empty seo
WARNING Permissions-Policy header not set -- features default to allow-on-same-origin security
WARNING External script from unpkg.com lacks integrity attribute security
WARNING No Permissions-Policy header security
WARNING Manifest contains invalid JSON accessibility
WARNING Dead-end page — no outgoing internal links seo
WARNING No internal links found seo
WARNING Terms of Service not detected compliance
WARNING Permissions-Policy header is missing security
WARNING Thin content — only 20 words seo
WARNING 1 publicly-accessible JavaScript source map(s) security
WARNING Registrar lock is NOT enabled infrastructure
WARNING No privacy policy link detected compliance
WARNING All 3 images use legacy formats (JPEG/PNG/GIF) content
WARNING External script from images.dmca.com lacks integrity attribute security
WARNING No SPF record found security
WARNING No accessibility statement detected compliance
WARNING GDPR Article 13 disclosure coverage: 0 / 8 categories compliance
WARNING Cross-Origin-Opener-Policy header is missing security
WARNING No DMARC record found security
WARNING Privacy Policy not detected compliance
WARNING Cross-Origin-Embedder-Policy header is missing security
WARNING 1 control(s) rely on placeholder only accessibility
WARNING Skip navigation link is missing (WCAG 2.4.1) accessibility
+ vary accept-encoding
+ cf-cache-status DYNAMIC
+ server cloudflare
+ speculation-rules "/cdn-cgi/speculation"
sl-antibot id@6;
via 1.1 Caddy
referrer-policy strict-origin-when-cross-origin
x-frame-options DENY
set-cookie
sl-session=hZ36UXoaGWq0sfwZ6DVm+g==; Path=/; Max-Age=86400; HttpOnly sl-session=MprYLNQ0GWoeat6AV8nSGQ==; SameSite=None; Secure; Path=/; Max-Age=8...
alt-svc
h3=":443"; ma=2592000 h3=":443"; ma=86400
strict-transport-security
max-age=31536000; includeSubDomains; preload max-age=0; includeSubDomains; preload

4 headers unchanged

+ Cloudflare CDN

5 technologies unchanged

Looking ahead

+13 pts
B (84) Could reach A+ (97)
Security +20Compliance +18Accessibility +16Infrastructure +14SEO +11Content +9Performance +6

Estimate — actual results may vary (48 issues to fix)

Website improvement report — Nu11cyber

May 28, 2026 → May 28, 2026

B B 83 → 84 +1 pts

17

Resolved

21

New issues

27

Still remaining

Financial summary

Investment delivered

¥4,638 in development time

Investment remaining

¥17,150 to complete the remaining items

Ongoing risk

¥0/month in ongoing exposure

Figures are estimates based on local developer hourly rate, industry CPC, and regulatory fine ranges.

Performance by category

MetricBeforeAfterChange
Overall score83 (B)84 (B)+1
Performance93 (A)94 (A)+1
Security79 (C)80 (B)+1
Accessibility79 (C)80 (B)+1
SEO87 (B)89 (B)+2
Infrastructure84 (B)85 (B)+1
Compliance59 (D)59 (D)0
Content95 (A)91 (A)-4
Sustainability86 (B)98 (A+)+12

Resolved (17)

  • Canonical www-ness doesn't match the final URL (SEO)

    → Better search engine visibility

  • Cookie 'sl-session' has no SameSite attribute (Security)

    → Reduced attack surface for visitors

  • https://nu11cyber.com/: 345ms CPU time (Performance)

    → Page loads faster for users

  • Cookie 'sl-session' is missing the Secure flag (Security)

    → Reduced attack surface for visitors

  • Compressed response missing `Vary` header (Performance)

    → Page loads faster for users

  • HTTP→HTTPS redirect uses 302 instead of 301 (Infrastructure)

    → More reliable delivery

  • 3 images missing explicit width/height (Content)

    → Stronger social sharing and on-page quality

  • security.txt: Missing required 'Expires' field (RFC 9116) (Security)

    → Reduced attack surface for visitors

  • SRI adoption: 0/3 third-party resources protected (0%) (Security)

    → Reduced attack surface for visitors

  • Canonical does not match final URL (https://nu11cyber.com) (SEO)

    → Better search engine visibility

  • https://nu11cyber.com/assets/index-C1nYXaiv.js: 2213ms CPU time (Performance)

    → Page loads faster for users

  • security.txt: Missing required 'Contact' field (Security)

    → Reduced attack surface for visitors

  • https://images.dmca.com/Badges/dmca_protected_8_12... is missing width/height — may cause layout shift (Performance)

    → Page loads faster for users

  • Soft 404: server returns HTTP 200 for non-existent pages (Accessibility)

    → Improved usability for assistive technology users

  • https://nu11cyber.com/nu11-logo-transparent.png is missing width/height — may cause layout shift (Performance)

    → Page loads faster for users

…and 2 more resolved issue(s)

Recommended next steps (48)

  • Sprint 1

    6 of 11 links are healthy (Content)

  • Sprint 1

    HTTP version does not redirect to HTTPS (Infrastructure)

  • Sprint 1

    og:image is not reachable (Content)

  • Sprint 2

    No Content-Security-Policy header found (Security)

  • Sprint 2

    1 non-essential cookie(s) set without consent banner (Compliance)

  • Sprint 2

    Content-Security-Policy header is missing (Security)

  • Sprint 3

    Page has only 20 words — nearly empty (SEO)

  • Sprint 1

    SRI adoption: 1/4 third-party resources protected (25%) (Security)

  • Sprint 1

    <iframe> missing title attribute (src="") (Accessibility)

  • Sprint 1

    Broken link: https://www.nu11cyber.com/nu11-logo-transparent.png (Content)

  • Sprint 1

    HSTS max-age is too short (0s, should be ≥ 31536000s) (Security)

  • Sprint 1

    https://www.nu11cyber.com/cdn-cgi/challenge-platfo...: 283ms CPU time (Performance)

  • Sprint 1

    Referrer-Policy header is missing (Security)

  • Sprint 1

    https://www.nu11cyber.com/nu11-logo-transparent.pn... is missing width/height — may cause layout shift (Performance)

  • Sprint 1

    https://www.nu11cyber.com/: 290ms CPU time (Performance)

…and 33 more recommended item(s)

Send Feedback