A friendly check-up
for your site.
Send us the URL. We have a careful look from the outside, and send back a short, plain-English report with the few things actually worth your time.
$149 · 2–3 business days · no admin access required
Who this is for
The low-friction option.
You don't think anything is wrong. You'd just like a professional to confirm that. The checkup is the cheapest, lowest-friction way to get that confirmation — or a short list of things to fix if there are any.
We don't need admin access. We don't touch your site. We look at what the internet sees, and we tell you what we'd be worried about if it were ours.
Pick this if…
- →You run a personal blog or a small business site and want a yearly peace-of-mind check.
- →You inherited a site from someone and want a quick second opinion before doing anything to it.
- →You're considering hiring us for a bigger engagement and want to try working together first.
- →Friends or family have asked "is my site OK?" and you want to give them a real answer.
What's included
What we look at from the outside.
WordPress core version, public plugin/theme fingerprints, and whether anything publicly known to be vulnerable is on the site.
Whether Google Safe Browsing, Sucuri, Norton, McAfee or others currently flag the site.
Certificate quality, TLS configuration, missing security headers, mixed content, cookie flags.
Endpoints that shouldn't be public: /wp-config.php.bak, /.git, /.env, /readme.html, debug logs, exposed staging copies.
DNS hygiene, SPF, DKIM, DMARC. Whether someone could send mail pretending to be you.
We visit the site from different angles (mobile, search-referrer, fresh browser) and check whether the experience differs in ways that suggest a compromise.
What we don't do: log in, scan with intrusive tooling, or change anything. The checkup is non-invasive by design. If something needs a deeper look, we'll tell you and recommend a security audit instead.
Deliverable
A short, friendly report.
- ✓A one-line verdict: "looks healthy" or "three things to fix this week".
- ✓Each finding written in plain English (suitable for non-technical readers).
- ✓If a finding is fixable in your hosting control panel, the steps to do it yourself.
- ✓If we found nothing meaningful, the report says so — and that's worth $149 on its own.
Delivered as a 1–3 page PDF + a friendly email reply. No spam, no upsell, no "premium tier" pressure.
Frequently asked
Common questions
Why so cheap?
Because it's outside-only and time-boxed. We're not pretending it's a full audit — it isn't. It's a low-stakes way to get a professional opinion. If we find something serious we'll tell you it deserves a bigger look, no extra charge for that conversation.
Can I do this for someone else's site?
Yes, as long as you have the owner's permission. The checkup is non-invasive, but we still need authorisation from whoever owns the site. We'll ask for written confirmation in the intake form.
Do you offer this in bulk for agencies?
Yes. Volume pricing kicks in at 10+ sites in a single batch. Useful for agencies running a portfolio review or before signing on a new managed-hosting client.
What if I want a deeper look afterwards?
We credit the checkup fee toward a security audit if you book one within 60 days. So a $890 audit becomes $741 if you started with a checkup.
Site compromis ? Démarrer une mission.
Send us what you know. You get a triage and a fixed quote in return — no obligation.