Example data

Demo Report

This is a demo report with example data. It does not analyze a real website.

SiteTraceKit shows publicly visible technical signals. The report is not a security, malware, fraud or legal assessment.

Open the live domain checker

What the demo report shows

The demo report shows how SiteTraceKit groups public signals: positive signals, review points, missing or unknown values, evidence, recommendations and technical raw data.

The data is intentionally illustrative. It explains how to read a real report without scanning a real domain.

Report ready

example-shop.test

Unavailable values mean the source did not return data, timed out or does not expose that signal publicly.

Checked at
Jan 15, 2026, 10:30:00 AM
Host
example-shop.test

Exports the compact report summary through your browser print dialog.

SiteTraceKit

SiteTraceKit one-page report

Compact summary of public website signals

Host
example-shop.test
Checked at
Jan 15, 2026, 10:30:00 AM

Positive Signals

  • HTTPS certificate signal found
  • Privacy and contact links found
  • Sitemap signal found

Review Needed

  • Google Tag Manager configuration should be reviewed
  • Some common security headers are missing

Missing / Unknown

  • DMARC signal unavailable

Trust checklist

  • HTTPS reachable
  • Valid SSL certificate
  • Privacy Policy found
  • Review cookie/consent signal if tracking is detected
  • Some common security headers are missing

Top recommendations

  • MEDIUM: Review Content Security Policy
  • LOW: Review DMARC signal

Public signals only. This summary is not a guarantee of safety, legality or trustworthiness.

ViewPrioritized summary

Overview

Positive Signals

  • HTTPS certificate signal found
  • Privacy and contact links found
  • Sitemap signal found

Review Needed

  • Google Tag Manager configuration should be reviewed
  • Some common security headers are missing

Missing / Unknown

  • DMARC signal unavailable

Trust Signal Checklist

Possible

Key findings

  • HTTPS reachable
  • Valid SSL certificate
  • Review cookie/consent signal if tracking is detected

Details

These are public signals only. They do not prove that a website is reliable or trustworthy.

Found

  • HTTPS reachable
  • Valid SSL certificate
  • Privacy Policy found
  • Sitemap found

Review Needed

  • Review cookie/consent signal if tracking is detected
  • Some common security headers are missing

Missing / Unknown

  • DMARC signal unavailable

Technical Signal Atlas

Report areas

The most relevant public signals, organized by topic.

Infrastructure

3 key findings

Cloudflare · Cloudflare

DNS & Email

2 key findings

203.0.113.20 · 10 mail.example-shop.test

HTTPS & Certificates

2 key findings

Example CA · Apr 1 00:00:00 2026 GMT

Security Headers

2 key findings

X-Content-Type-Options · Referrer-Policy

Technology Stack

2 key findings

Next.js · Cloudflare

Third-Party Services

2 key findings

www.googletagmanager.com · js.stripe.com

Ads & Tracking

1 key findings

Google Tag Manager

Privacy & Legal Signals

4 key findings

Privacy Policy · Contact

Domain & History

3 key findings

Example Registrar · 2016-02-01T00:00:00.000Z

How should these signals be interpreted?

Why can a value be missing?

Public sources can time out, omit a signal or return different data at the time of the check.

What cannot be concluded with certainty?

A single technical signal does not prove safety, trustworthiness or legal compliance. Important decisions require manual review.

Recommendations

Detected

Key findings

  • Review Content Security Policy
  • Review DMARC signal

Details

Medium Priority

  • Review Content Security Policy
    Why it matters
    A CSP can restrict which scripts and resources a browser may load.
    Suggested action
    Start with a report-only policy and review expected third-party resources.
    Category
    Security Headers

Low Priority

  • Review DMARC signal
    Why it matters
    DMARC can help receivers evaluate mail claiming to use the domain.
    Suggested action
    Confirm whether the domain sends mail and publish an appropriate DMARC record if needed.
    Category
    DNS & Email

Key Findings

Detected

Key findings

  • Next.js
  • Cloudflare
  • Google Tag Manager

Details

  • Next.jsDetected
    Category
    Technology Stack
    Confidence
    high
    What this means
    Technology hints come from HTML, headers or asset paths and may not be complete.
    Evidence
    • asset path: /_next/static/
  • CloudflareLikely
    Category
    Hosting/CDN
    Confidence
    medium
    What this means
    Hosting and CDN hints can come from headers, nameservers or public infrastructure markers.
    Evidence
    • response header: cf-cache-status: HIT
    • DNS hint: hera.ns.cloudflare.com
  • Google Tag ManagerPossible
    Category
    Ads & Tracking
    Confidence
    medium
    What this means
    A tag manager can load analytics, advertising or marketing scripts from one central container. Review what is configured inside the container.
    Evidence
    • script URL: googletagmanager.com/gtm.js