Website Security Test of webcount.bg

Executive Summary for webcount.bg

• Web Software Security Test
  No third-party web software dependancies were identified. Software fingerprinting may be restricted by the system, so the results could be incomplete. Show details.
• GDPR Compliance Test
  No obvious GDPR-related compliance issues were detected across Privacy Policy, Website Security, TLS Encryption, Cookie Protection, Cookie Disclaimer. Website Security check may be incomplete because fingerprinting attempts appear to be blocked. Show details.
• PCI DSS Compliance Test
  The website is compliant with PCI DSS Requirement 6.4. The assessment of PCI DSS Requirement 6.3 may be incomplete due to limited software fingerprinting. Show details.
• HTTP Headers Security Test
  Issues were identified with key security header misconfigured Content-Security-Policy. An optional HTTP header may not be properly configured: Report-To. Deprecated HTTP headers detected: X-XSS-Protection. Show details.
• Content Security Policy (CSP) Test
  Content-Security-Policy is enforced but configuration issues were identified: directive errors, overly permissive directives. A report-only Content-Security-Policy is not present. Show details.
• Cookies Privacy and Security Test
  One detected cookie appears to be properly configured from a security perspective. Show details.
• External Content Security Test
  3 external requests detected; all requests completed successfully. SRI is implemented for 1 out of 2 third-party JavaScript and CSS files. Show details.
• Protection from Data Scraping Test
  8 robots.txt rules, 9 User-Agent blocks and 8 bot protection mechanisms detected. No protection detected via meta restrictions. Additional anti-scraping protection appears to be provided by external infrastructure. Show details.
• DNSSEC Configuration Test
  DNS A record detected; DNSSEC signatures are present and fully validated. Show details.