Privacy-friendly website intelligence
Public website signals. Clearly mapped.
Check public website, DNS, TLS, archive and HTML signals without accounts, analytics or stored scan history.
- No accounts
- No scan history
- No script execution
- Public signals only
Run a public signal check
- HTTP
- DNS
- TLS
- RDAP
- Archive
What SiteTraceKit checks
SiteTraceKit retrieves public live signals and groups them into understandable report areas: infrastructure, DNS and email, HTTPS, redirects, security headers, technologies, third parties, ads and tracking, SEO basics, privacy signals, and domain and archive history.
- RDAPRegistration data
- DNSA, AAAA, MX, TXT, CAA
- TLSCertificate signals
- HTTPHeaders & HTML
Why it helps
The report distinguishes between Detected, Likely, Possible and Unavailable. Recommendations are prioritized, but intentionally avoid alarmist wording and do not make security, fraud or legal verdicts.
For website owners
For freelancers and agencies
For quick pre-checks
Sample data
Demo report
See how a finished report is structured without checking a real website.
Specialized checkers
These pages explain individual report areas in more detail and link to matching glossary topics.
- Security Header CheckerReview common browser security headers such as HSTS, CSP, Referrer-Policy and X-Content-Type-Options.
- Ads and Tracking Signal CheckerFind visible advertising, analytics, tag-manager and tracking signatures in public website HTML.
- Third-Party Services CheckerMap visible external resource domains into categories such as analytics, ads, CDN, fonts, payments and chat.
- Domain Age CheckerCheck public RDAP registration dates, registrar, nameserver and domain status signals where registries expose them.
- SSL Certificate CheckerCheck public TLS certificate availability, issuer, validity dates, subject and subject alternative names.
- Website Redirect CheckerCheck public HTTP and HTTPS redirect chains, final URL, status code and external-host redirects.
Glossary and guides
Short knowledge pages explain the terms that make reports easier to understand.
- Check a website before buyingA neutral guide to public signals.
- What are Security Headers?Security headers explained for website owners: definition, examples, relevance, limits and matching SiteTraceKit checks.
- What is a Content Security Policy?Content Security Policy explained: what CSP means, examples, why it matters and what it cannot prove.
- What is HSTS?HSTS explained: how Strict-Transport-Security works, why it matters for HTTPS and what its limits are.
- What is Google Tag Manager?Google Tag Manager explained: what a GTM container is, why it appears in reports and what cannot be inferred from it.
- What are tracking scripts?Tracking scripts explained in neutral terms: examples, website review relevance and limits of static detection.
- What is a CDN?CDN explained: content delivery networks, examples, relevance for website checks and detection limits.
Privacy and security principles
The app does not execute third-party scripts, store scan history or use its own domain database. Public sources can be incomplete or time out; those partial failures remain visible in the report.