Find out if your web server is revealing its software name, version number, or technology stack to potential attackers.
Checks the Server header for version numbers (e.g., nginx/1.18.0) and the X-Powered-By header (e.g., PHP/8.1, Express) which reveals your backend stack.
Attackers use this information to look up CVEs for specific software versions and plan targeted attacks.
Want a full security audit across 18+ checks? Run a full site scan →