Free Security Scanner

Scan any domain.
Know your risks.

Enter a domain or IP address. Vigil checks open ports, SSL certificates, HTTP security headers, and exposed sensitive files. Instant results with prioritized remediation steps.

Try: google.com, github.com, or your own domain

$4.45M Average breach cost (IBM 2025)
60% SMBs close within 6mo of a breach
5 Security checks per scan
Free No signup required

Watches everything.
Reports what matters.

Vigil scans your web apps, APIs, and network perimeter. When it finds something, it tells you exactly what's wrong and how to fix it — ranked by actual exploitability, not theoretical risk scores.

vigil — scan results
$ vigil scan --target api.acme.io
Scanning 47 endpoints...
Testing auth flows...
Fuzzing parameters...

CRITICAL Exposed .env file with database credentials
WARNING Missing HSTS header — MITM risk
PASS SSL certificate valid (342 days remaining)

Report generated with 12 findings

What Vigil checks

Five automated security checks. Each one would take a security engineer hours. Vigil does them in seconds.

01

Port Scanning

Checks 21 common ports including databases (MySQL, PostgreSQL, MongoDB), remote access (SSH, RDP, VNC), and web servers. Flags dangerous services exposed to the internet.

02

SSL/TLS Analysis

Validates your SSL certificate — expiry dates, self-signed detection, TLS version, and cipher strength. Catches expired or misconfigured certificates before browsers warn your users.

03

HTTP Security Headers

Checks for HSTS, CSP, X-Frame-Options, and 8 other critical headers. Missing headers are the most common — and most fixable — web vulnerabilities.

04

DNS & Email Security

Verifies SPF, DMARC, and DNS configuration. Missing email authentication records let attackers send spoofed emails from your domain.

05

Sensitive File Detection

Probes for exposed .env files, .git directories, phpMyAdmin, server-status pages, and other common misconfigurations that leak credentials or internal info.

06

Prioritized Remediation

Every finding includes severity ranking and step-by-step fix instructions. Know exactly what to fix first and how to fix it — no security expertise required.

Vigil vs. the old way

Manual Pen Test Vigil
Cost $15K-$50K per engagement Free
Speed 2-4 weeks for report Under 60 seconds
Signup Contracts, NDAs, scoping calls None. Just enter your domain.
Remediation Your problem Step-by-step fix for every finding
Coverage Point-in-time snapshot Scan anytime, as often as you want

Security should be a given,
not a luxury

Every business deserves the same protection that Fortune 500 companies get. Vigil exists to make that real. Scan your first domain — it takes 30 seconds.

Scanning

vigil — live scan

Scan Report