Trust

About Scorifya

Scorifya is an independent project: a simple way to run a public hardening check on a URL you choose—TLS and HTTPS behavior, security headers, exposure and hygiene signals, visible session-cookie flags, passive DNS/email context, and infrastructure visibility—rolled into one 0–100 score with plain-language findings and fix guidance. It is not a penetration test, vulnerability exploit scan, or compliance certification.

Who's behind it

The product is built and maintained as a solo-led independent effort, with ideas, review, and advice from other engineers along the way. We're not pretending to be a large security vendor; we're trying to ship something readable and actionable for small teams, freelancers, and site owners.

What we believe

We publish how scoring works and what we do not do, so you can sanity-check results instead of trusting a black box. Read How Scorifya works and the FAQ for details. Scorifya focuses on observable public configuration—what visitors and browsers can see—not logins, malware feeds, or exploitation.

Transparency

• How Scorifya works — category weights, penalties, and scope.
• How Scorifya compares — deep TLS graders, browser-focused posture tools, and header-only checkers (category labels only).
• security.txt (RFC 9116) for coordinated disclosure.

Stay in touch

For updates and discussion, you can follow Scorifya on LinkedIn or Reddit (both open in a new tab).

Contact

Questions or feedback? Use the Contact page.