About Bitverzo

Bitverzo is a free website intelligence platform that provides instant, comprehensive analysis reports for any domain on the internet. We combine technology detection, security auditing, DNS inspection, trust scoring, and SEO analysis into a single, easy-to-read report.

Our Methodology

Every Bitverzo report is generated by our automated crawler that performs over 90 individual checks across 8 categories. Here's exactly how each section works:

🔍 Technology Detection

We detect technologies by analyzing HTTP response headers, HTML source code patterns, JavaScript library fingerprints, CSS framework signatures, and meta tags. Our pattern database includes over 90 technologies across categories like CMS platforms (WordPress, Shopify, Drupal), JavaScript frameworks (React, Vue.js, Angular, Next.js), analytics tools (Google Analytics, Hotjar, Mixpanel), advertising pixels (Meta Pixel, TikTok Pixel, LinkedIn Insight), payment processors (Stripe, PayPal, Shop Pay), CDNs (Cloudflare, Fastly, Akamai), and many more. Each detection includes a confidence score from 0-100%.

🛡️ Security Headers Analysis

We check for 6 critical HTTP security headers: Content-Security-Policy (CSP), Strict-Transport-Security (HSTS), X-Frame-Options, X-Content-Type-Options, Referrer-Policy, and Permissions-Policy. Each header is scored based on its presence and configuration, producing an overall security grade from A+ to F.

🔒 SSL Certificate Verification

We connect directly to the domain's HTTPS endpoint and extract the full SSL certificate details including the issuing Certificate Authority, certificate type (DV/OV/EV), TLS version, cipher suite, signature algorithm, Subject Alternative Names (SANs), and expiration date. This data is collected in real-time, not from a cache.

🌐 DNS & Domain Registration

We resolve A, AAAA, MX, NS, and TXT records using DNS queries. We identify the email provider from MX records (Google Workspace, Microsoft 365, etc.) and check for email authentication protocols: SPF (Sender Policy Framework), DMARC (Domain-based Message Authentication), and DKIM (DomainKeys Identified Mail). We also check for DNSSEC and perform subdomain enumeration against a wordlist of 25 common subdomains. Domain registration data (registrar, registration date, expiration date, organisation) is retrieved via the RDAP protocol.

✅ Trust Score Calculation

Our trust score (0-100) is calculated by evaluating multiple signals: HTTPS usage (+8), HSTS (+4), valid SSL certificate (+7), domain age (up to +10), SPF (+3), DMARC (+3-5 based on policy), DKIM (+2), DNSSEC (+2), and security header score (+5 or -5). We also check the domain against 8 major blacklist databases: Google Safe Browsing, PhishTank, URLhaus, OpenPhish, DNSFilter, Spamhaus DBL, SURBL, and VirusTotal.

📊 SEO Analysis

We extract and evaluate the title tag (length optimization), meta description, canonical URL, language declaration, meta robots directive, Open Graph tags (4 fields), Twitter Card configuration, Schema.org structured data types, favicon, and meta keywords. We also check for sitemap.xml and robots.txt presence, and analyze the heading hierarchy (H1-H6) for proper content structure.

📄 Page Content Analysis

We analyze the homepage content including word count, image count and alt text compliance, internal/external link counts, JavaScript and CSS file counts with minification detection, iframe count, and Schema.org types. We detect payment methods (Visa, Mastercard, PayPal, etc.) from HTML patterns, identify social media profile links, and estimate carbon footprint per page view based on page weight.

⚡ Performance Metrics

We measure server response time, page size, compression type and estimated savings, total resource requests, third-party domain count, and CDN usage. When available, we also display Core Web Vitals data from the Chrome User Experience Report (CrUX API).

Data Sources

Technology Detection: Custom pattern matching engine with 90+ technology signatures
DNS Records: Live DNS resolution via system resolver and dnspython
SSL Certificates: Direct TLS connection and certificate extraction
Domain Registration: RDAP (Registration Data Access Protocol) – the successor to WHOIS
Email Authentication: SPF, DMARC, and DKIM verification via DNS TXT record inspection
Blacklist Checks: Google Safe Browsing, PhishTank, URLhaus, OpenPhish, DNSFilter, Spamhaus, SURBL, VirusTotal
Subdomain Enumeration: DNS brute-force against a curated wordlist of 25 common subdomains

Update Frequency

Our crawler continuously processes domains from our queue. Each domain is re-analyzed periodically to keep reports up-to-date. The "Last Updated" timestamp on each report indicates when the data was last refreshed. Our sitemap is regenerated hourly to reflect newly analyzed domains.

Limitations

Bitverzo analyzes the publicly accessible homepage of each domain. We do not crawl inner pages, require authentication, or execute JavaScript in a browser environment. This means some technologies that are only present on inner pages or loaded dynamically may not be detected. Traffic estimates, when available, are approximations and should not be treated as exact figures. Our blacklist checks query public databases and may not reflect the very latest threat intelligence.

Contact

For questions, feedback, or to report inaccurate data, please contact us at info@bitverzo.com.