Sucuri Blog

Website Security News

SiteCheck Website Malware Scanner

Improvements to SiteCheck Website Scanner

SiteCheck is Sucuri’s free website malware and security scanner offered to anyone who wants to scan their websites for malware and blacklist status.

Last year, we improved SiteCheck’s speed and reliability. Today, we are excited to share the latest upgrades that makes SiteCheck even better.

SiteCheck Upgrades

As one of our first free tools created, SiteCheck has been used by thousands–not only website owners but also users around the globe who are concerned with website security in general.

New Look

If you’ve visited sitecheck.sucuri.net recently, you might have already noticed its new look. We have worked hard to give it a clean, user-friendly design.

SiteCheck - website malware scanner
SiteCheck Redesign

Faster Scanner

Our codebase has been completely rewritten, which has allowed us to achieve tremendous improvements in scan speed–it is now 600% faster and more comprehensive.

Here is a comparison chart displaying the scan time before and after the implementation of these SiteCheck upgrades.

Time to scan a website with SiteCheck
Time to Scan a Website Comparison

IDN Support

The new SiteCheck version now offers International Domain Name (IDN) support, allowing people who own international domains to check their website security.

Website Security Ratings

After scanning a website, SiteCheck now has additional recommendations on how to improve website security. It also provides security ratings ranging from “minimal security risk” to “critical security risk”.

Example of a Security Risk Status in SiteCheck
Example of a Security Risk Status in SiteCheck

TLS Recommendations

One of the latest features is Transport Layer Security (TLS) recommendation status, which informs you if the website is HTTP or HTTPS. SiteCheck also scans a website for mixed SSL content warnings.

TLS Recommendations in SiteCheck
Example of a TLS Recommendation in SiteCheck

Hardening Improvements

We also recommend hardening improvements, such as minimum versions of updated PHP, Drupal, Apache, and Nginx due to some recently discovered vulnerabilities.

Example of Hardening Improvement
Example of Hardening Improvement

What Else Can You See in SiteCheck?

When SiteCheck scans a website, here is the information that can be detected:

  • IP address;
  • CDN;
  • CMS;
  • Hosting;
  • Web Application Firewall;
  • Website malware;
  • Website blacklist status;
  • Injected spam detected;
  • Defacements;
  • Internal server errors;
  • Web server (Apache/nginx) if in the HTTP header;
  • Programming language (PHP/ASP/JSP)
Example of Malwre & Security Status
Example of Malware & Security Status

Conclusion

As a result of these improvements, not only is there a design upgrade but improved efficiency so our free website scanner can serve you better.

SiteCheck is a remote scanner that crawls websites link-by-link searching for website infections. Our security analysts are constantly working to update the malware signatures that SiteCheck can identify. Nevertheless, we highly advise you to use a server-side scanner in addition, since not all infections are visible to remote scanners. For more information about it, we have a post explaining the different website monitoring tools.

If you suspect your website is infected, reach out to us and we will be happy to help you.

About Jonas Andrijauskas

Jonas is the Monitoring & Backups Manager at Sucuri. He is passionate about helping businesses grow by translating business ideas to developers, and vice versa. He's actively involved in the WordPress community, co-organizing WordCamp Europe. Jonas is an enthusiastic traveler & photography lover. Find him on Twitter @jonasltu

Reader Interactions