Skip to main content
Vantyris

Learn

Plain-English security, one finding at a time.

Every Vantyris scan produces findings with a plain-English explanation, a concrete fix, and an ownership hint. The articles below go further: the why behind each finding, the common gotchas, the references your developer or web host will recognise. Written for the business owner who runs the site, not for the security engineer.

Email

Email authentication: SPF, DKIM, DMARC, BIMI, MTA-STS. The single highest-impact area for most small businesses, because it's where impersonation happens.

TLS

Transport security: HTTPS, certificate management, TLS protocol versions. The padlock in your visitor's browser, explained.

Headers

HTTP response headers that tell the browser how to protect your visitors. CSP, HSTS, X-Frame-Options, and the supporting cast.

DNS

DNS records that protect your domain: CAA for certificate issuance, DNSSEC, MX hygiene, and the basics.

Ports

What's reachable on your server, and what shouldn't be.

Reputation

Whether your domain is flagged by Google Safe Browsing or sitting on a Spamhaus / SURBL list. Even clean sites end up on these, and it quietly costs you email deliverability.

Supply chain

Every third-party script your site loads is a supply-chain risk. Subresource Integrity, suspicious CDN flagging, and the lightweight surface a regulator notices first.

Privacy

Pre-consent trackers, cookie banners, the IAB TCF signal. The UK-GDPR + ePrivacy basics a visitor or regulator would spot without opening DevTools.

Vulnerabilities

Known software vulnerabilities affecting your stack.

Want to scan your own site against everything above?

Vantyris runs the same checks the articles describe, then writes you a report you can hand to your web host. Free teaser, no signup. Verified scan from €10.

Run a free check →