Okay... it stands, but don't push too hard.
The website example.com scored 58/100, indicating a mediocre performance. The website's strengths include its high scores in DNS & Resolution (100/100) and Reseau & Infrastructure (93/100), demonstrating a robust DNS setup and reliable infrastructure. However, critical weaknesses were identified in SEO & Lisibilite IA (25/100) and Conformite legale (15/100), indicating significant gaps in search engine optimization and legal compliance. The website's poor SEO and legal compliance pose significant risks to its online visibility and reputation. To address these issues, the priority action should be to conduct a thorough SEO audit and review legal compliance requirements to ensure the website meets necessary standards.
Example.com is lagging far behind the established leaders in its sector, with a global score of 58/100, and its extremely low content volume of 19 words is a major red flag. The site's lack of Schema markup and poor SEO and AI optimization are significant weaknesses that will make it hard to compete with challengers, let alone niche sites that have managed to carve out a space for themselves. While example.com has a defensible advantage in terms of performance, with a high score of 94/100, this is not enough to offset its numerous weaknesses, particularly in areas like content and structure, HTTP and surface security, and legal compliance. The site needs to address these issues urgently to have any hope of competing with typical players in its sector, who are likely to have more robust and well-rounded online presences. Overall, example.com is at risk of being left behind by more agile and better-optimized sites, and needs to take drastic action to improve its online visibility and credibility.
Example Domain
Image de partage recommandee : 1200x630 px (ratio 1.91:1), JPG ou PNG, < 5 Mo, URL absolue https, balise <meta property="og:image">.
Image de partage absente ou inaccessible.
Infrastructure de example.com : serveurs de noms, serveurs mail et adresses IP. Cliquez pour agrandir.
IPv4 / IPv6 resolution and reverse DNS (dual-stack recommended).
Full detail in the PDF report.
Common TCP ports open on the domain IP.
Full detail in the PDF report.
Exposed subdomains detected (passive sources).
Full detail in the PDF report.
Network path to the server (not run: incompatible with Tor anonymization).
Full detail in the PDF report.
WAF detection (Cloudflare, Sucuri, Imperva, AWS, etc.).
Full detail in the PDF report.
Detection of a CDN/proxy in front of the site and search for the real origin IP, to distinguish apparent operational sovereignty (CDN edge) from real sovereignty (origin jurisdiction).
Full detail in the PDF report.
Operational sovereignty (physical location EU/EEA/CH) crossed with real legal sovereignty (CLOUD Act / FISA 702 exposure based on the parent company nationality). The score keeps the worse of the two axes. If the real host is masked by a CDN, sovereignty cannot be determined externally.
Full detail in the PDF report.
Site dependency on non-sovereign third-party components (fonts, analytics, JS CDN, payment, captcha) subject to the CLOUD Act, crossed with their jurisdiction.
Full detail in the PDF report.
A, AAAA, MX, NS, TXT records and DNS consistency.
Full detail in the PDF report.
Authoritative name servers and DNS hosting providers.
Full detail in the PDF report.
Active DNSSEC signature and chain of trust.
Full detail in the PDF report.
Raw TXT records (domain verifications, SPF, DKIM, miscellaneous).
Full detail in the PDF report.
Certificate authorities allowed to issue certificates for this domain.
Full detail in the PDF report.
Certificates published in CT logs (crt.sh).
Full detail in the PDF report.
Qualys SSL Labs grade and report details.
Full detail in the PDF report.
Certificate validity, chain, expiration, key algorithm.
Full detail in the PDF report.
Supported TLS versions, cipher suites, handshake state.
Full detail in the PDF report.
Access-Control-Allow-Origin headers and cross-origin permissiveness.
Full detail in the PDF report.
Strict-Transport-Security header and max-age duration.
Full detail in the PDF report.
Domain enrollment in the browsers HSTS preload list.
Full detail in the PDF report.
CSP, Referrer-Policy, X-Frame-Options, Permissions-Policy and anti-clickjacking.
Full detail in the PDF report.
HTTP response code of the root page and response time.
Full detail in the PDF report.
HTTP resources loaded from an HTTPS page.
Full detail in the PDF report.
Mozilla HTTP Observatory score and grade.
Full detail in the PDF report.
All response headers returned by the server.
Full detail in the PDF report.
HTTP redirect chain followed from the root.
Full detail in the PDF report.
Performance, SEO, accessibility and best practices (mobile Lighthouse).
Full detail in the PDF report.
SPF, DKIM, DMARC, BIMI, MTA-STS and TLS-RPT.
Full detail in the PDF report.
Content exploitability by generative engines and AI crawlers: content density, structured data (JSON-LD/Schema), statistics and citations, AI bot access.
+ 6 more in the PDF
Advice: GEO : enrichir le contenu en CITATIONS de sources credibles (+41% KDD 2024) et STATISTIQUES chiffrees (+33%), structurer (listes/tableaux), ajouter du JSON-L...
On-page SEO markup of each page: title, meta description, unique H1, subheadings, viewport, language, canonical, hreflang, alt attributes.
Advice: SEO on-page : viser un <title> 30-65 car. et une meta description 50-160 car. UNIQUES par page, exactement UN <h1>, des <h2> structurants, <meta viewport>, <...
Discoverability by search engines (robots.txt, sitemap, favicon) and by AI crawlers (llms.txt, ai.txt, manifest).
Advice: Manquants pour la visibilite : robots.txt, sitemap.xml, llms.txt (decouvrabilite IA), ai.txt (controle entrainement IA). robots.txt et sitemap.xml sont essen...
Presence of a consent management platform and consistency with the trackers in use (GDPR / CNIL).
Full detail in the PDF report.
Cookies set by the homepage, Secure / HttpOnly / SameSite attributes.
Full detail in the PDF report.
Analytics and advertising tracking tools identified.
Full detail in the PDF report.
Third-party domains loaded by the page (scripts, images, iframes).
Full detail in the PDF report.
Actionable signals usable by an AI agent or a human: product/offer data, action paths (form, cart, quote, booking), direct contact (phone/email).
Full detail in the PDF report.
CMS, frameworks, CDN, analytics identified on the page.
Full detail in the PDF report.
External outbound links detected on the homepage.
Full detail in the PDF report.
integrity and crossorigin attributes on external scripts and stylesheets.
Full detail in the PDF report.
Presence of the domain in the Wayback Machine and capture history.
Full detail in the PDF report.
Presence and number of URLs declared in the sitemap.
Full detail in the PDF report.
Presence and content of the robots.txt file.
Full detail in the PDF report.
Presence of legal pages (legal notice, privacy policy, terms of sale/use, cookies) depending on sales and jurisdiction. A presence indicator, not legal advice.
Full detail in the PDF report.
Presence of the domain in threat lists (Google Safe Browsing, PhishTank) and public DNS filters (AdGuard, CleanBrowsing).
Full detail in the PDF report.
Hidden instructions meant to manipulate AIs reading the page (OWASP LLM01): comments, invisible text, masked Unicode characters.
Full detail in the PDF report.
Presence of links to official social profiles (authority and brand presence signal).
Advice: Aucun lien vers des profils sociaux detecte. Relier le site aux profils officiels (LinkedIn, X, etc.) renforce les signaux d'autorite et de marque pour les m...
Domain registration data (registrar, dates, contacts).
Full detail in the PDF report.
Presence of the security.txt file and security contact points.
Full detail in the PDF report.
Full report as PDF · €29, one-time payment. Barely the price of a million tokens elsewhere - except here, you actually get what you’re looking for.
The diagnostic is done. To effectively fix these structural blockers, regain the advantage in your market and secure your indexation for years to come, precision engineering is required.
Optimize my infrastructure