Security
Automated security scanning across all Mode Marketing systems. Headers, SSL, WordPress, cookies, DNS, information leakage.
16
Targets
—
Last Scan
—
Findings
—
Critical
What we scan
- 🔒 SSL/TLS configuration — protocol version, cipher strength, certificate expiry
- 🛡️ Security headers — HSTS, CSP, X-Frame-Options, X-Content-Type-Options
- 🍪 Cookie security — Secure, HttpOnly, SameSite flags
- 📡 Server information leakage — version headers, X-Powered-By
- 📝 WordPress — login exposure, XML-RPC, directory listing, version leak
- 📧 DNS security — SPF, DMARC records
API
/api/scan — full scan across all 16 targets
/api/scan/{site} — scan a single target
/api/history — scan history
/api/state — aggregate security state
/health — service health
All endpoints require X-Agent-Secret header.