Most small NZ businesses don’t realise they can run basic cybersecurity checks for free.
You don’t need to be a tech expert. You just need to know where to look.

 

🛠️ Free Tools You Can Use Right Now:

VirusTotal

Upload a file or paste in a URL — VirusTotal scans it through over 70 antivirus engines and web security tools simultaneously. It's one of the fastest ways to check if a file, plugin, or link is known to be dangerous.

🟢 Use this to: Check any suspicious plugin, external script, or upload link. It’s perfect for spotting malware-laced files before they end up on your site.

 

Google Site Status

Paste your website URL to see if Google has flagged it for malware, phishing, or suspicious activity. Many website owners don’t know their site has been blacklisted until customers start disappearing.

🟢 Use this to: Find out if your site is being quietly blocked or flagged by modern browsers — which kills your SEO, traffic, and customer trust.

 

Have I Been Pwned

Enter your email or domain name and see if it’s ever appeared in a known data breach. This tool scans billions of leaked records from real hacks — including passwords, usernames, and sensitive business logins.

🟢 Use this to: Instantly check if your staff emails or admin credentials were compromised and should be rotated.

 

BuiltWith

This tool tells you exactly what your website is built with — including frameworks, plugins, marketing tools, and analytics scripts. It’s a great way to audit your stack without needing backend access.

🟢 Use this to: Find outdated or unnecessary technologies on your site — including abandoned plugins that may have known vulnerabilities.

 

SSL Labs

A gold-standard tool for scanning your HTTPS (SSL/TLS) certificate. It gives you a letter-grade score and highlights misconfigurations, expired certificates, and insecure settings often missed by default setups.

🟢 Use this to: Ensure your website is actually secure for customer data entry and logins — and that your SSL certificate isn’t weakening trust.

 

WhatCMS

This tool identifies the content management system (CMS) your website runs on (e.g., WordPress, Joomla, Squarespace), along with its version. Many attacks target old CMS versions specifically.

🟢 Use this to: Confirm your CMS version is up-to-date — and whether your site has been customized in a way that could introduce new risk.

 

⚠️ But Here’s What Free Tools Don’t Tell You:

• Whether your plugins are vulnerable to known exploits
• If your login pages or admin panels are exposed
• Whether your site is silently leaking data
• If you’re already being scanned or targeted (yes — bots do this 24/7)

 

🧠 Final Word:
Use these tools. Learn from them.
But when you’re ready to actually fix something — or get a deep, verified scan — talk to someone who does this for a living.

 

👉 We offer deep scans & full monitoring — no BS, no jargon.
🛡️ Your business deserves better than a guess.