Domain Trust Check avatar

Domain Trust Check

Under maintenance

Pricing

Pay per usage

Go to Apify Store
Domain Trust Check

Domain Trust Check

Under maintenance

Surface-level website trust check for small businesses and agencies. Checks HTTPS, basic security headers, privacy policy/contact/terms pages, and returns a plain-English summary.

Pricing

Pay per usage

Rating

0.0

(0)

Developer

Mack

Mack

Maintained by Community

Actor stats

0

Bookmarked

2

Total users

1

Monthly active users

4 days ago

Last modified

Share

Domain Trust Check — Apify Actor

A surface-level trust check, not a full security audit.

By FromTheScope — lightweight privacy/security tools for small businesses and agencies.

What it does

Give it a domain and it returns a structured report showing:

  • HTTPS — Is it working? Does HTTP redirect to HTTPS?
  • Security headers — HSTS, CSP, X-Frame-Options, Referrer-Policy, Permissions-Policy
  • Reachable pages — privacy policy, contact page, terms of service
  • Risk flags — clear warnings about missing security basics
  • Plain English summary — one sentence that tells you what's good and what's not

What it does not do

  • No deep vuln scanning
  • No JS-rendered page crawling
  • No login handling
  • No full compliance review
  • No guarantee that a site is safe, legit, or trustworthy

Input

{
"domains": ["example.com", "your-business.com"]
}

Output (one item per domain)

{
"domain": "example.com",
"https_works": true,
"http_redirects": false,
"status_code": 200,
"title": "Example Domain",
"security_headers": {
"strict-transport-security": { "present": false },
...
},
"reachable_pages": { "privacy": false, "contact": false, "terms": false },
"risk_flags": [
"HTTP does not redirect to HTTPS",
"Missing security headers: HSTS, CSP",
"No privacy policy found"
],
"plain_english": "Domain uses HTTPS (status 200) — HTTP does NOT redirect to HTTPS — 0/5 security headers detected — 0/3 common pages reachable — ⚠ 4 issues found"
}

Use cases

  • Agencies — run a quick trust check before onboarding clients
  • Small businesses — check if your own site looks credible
  • Freelancers — audit prospects before quoting
  • OSINT/Research — quick domain signal check

Cost

This actor uses plain HTTP requests — no headless browser — so it's one of the cheapest actors to run. A typical check costs pennies.

Pricing

  • $0.02 per domain checked
  • One run can check multiple domains
  • Cheap enough for quick spot checks, useful enough for agencies and small businesses

Example

$python3 cli.py your-site.com

Example summary:

HTTPS works, HTTP redirects to HTTPS, 3/5 headers present, privacy policy found — 2 minor issues

Limitations

  • Some sites will time out or block requests
  • Sites with odd routing may need tuning
  • neverssl.com-style HTTP-only domains can be slow