Frequently Asked Questions
What does ThreatGrade scan for?▼
ThreatGrade performs comprehensive security scans including SSL/TLS certificate validation, HTTP security headers (HSTS, CSP, X-Frame-Options, etc.), DNS security records (SPF, DMARC), open port detection, and technology fingerprinting. Our AI then analyzes findings to prioritize fixes.
Do I need to install anything?▼
No! ThreatGrade is completely cloud-based. Just enter your domain and we scan from our servers. No agents, no software, no configuration required.
Can I scan websites I don't own?▼
Yes, ThreatGrade only performs non-intrusive, passive scans using publicly available information. This is similar to what any visitor to the website would see. However, we recommend only scanning sites you own or have permission to assess.
How is the security score calculated?▼
The score is based on industry best practices across four categories: SSL/TLS (certificate validity, expiration, encryption strength), security headers (presence and configuration), DNS security (SPF, DMARC), and network exposure (dangerous open ports). Each category contributes to the overall score.
Can I cancel anytime?▼
Yes, all plans are month-to-month with no long-term contracts. Cancel anytime from your dashboard and you won't be charged for the next billing cycle.