Back to Home

Frequently Asked Questions

Everything you need to know about UNPWNED and how it keeps your domains secure.

What does UNPWNED scan?

UNPWNED runs 17 security checks on your domain including SSL/TLS configuration (via SSL Labs), HTTP security headers, OWASP Top 10 vulnerabilities, DNS record analysis, open port detection, certificate transparency logs, sensitive file exposure, Google Safe Browsing status, VirusTotal reputation, Mozilla Observatory score, Have I Been Pwned breach data, cookie security, subdomain enumeration, and more. Every scan gives you a full picture of your domain's security posture.

Is it safe to scan my domain?

Yes. UNPWNED performs read-only, non-intrusive scans. We never attack, modify, or exploit your site. The scan queries public APIs and checks publicly accessible endpoints — the same information any security researcher could find. Think of it as a health check, not a penetration test.

How long does a scan take?

Most scans complete in under 2 minutes. The exact time depends on the number of checks and the responsiveness of external APIs. You'll receive a notification when your report is ready.

What's the difference between Free and Pro?

The Free plan gives you 3 scans per month for 1 domain — perfect for trying UNPWNED out. The Pro plan at $19/month unlocks unlimited scans, up to 10 domains, continuous monitoring, and priority support. The Business plan at $49/month adds unlimited domains, API access, and team collaboration features.

How does the AI report work?

After the scan completes, we feed the raw results into an AI engine that translates technical findings into plain-English explanations. Each vulnerability comes with a severity rating, a clear description of the risk, and step-by-step instructions to fix it. No security expertise required.

Do you store my scan data?

Yes, scan results and generated reports are stored securely in our database so you can access them anytime from your dashboard. All data is encrypted at rest and in transit. If you delete your account, all associated scan data is purged within 90 days. We never sell or share your data with third parties.

Can I share my report with my team?

Yes. Every report gets a unique shareable link (token-based URL) that you can send to teammates, clients, or stakeholders. The link provides read-only access to the report without requiring a login. Business plan users also get team collaboration features with role-based access.

What if I find a critical vulnerability?

Don't panic. The AI report will explain exactly what the issue is and how to fix it with step-by-step instructions. For critical findings, we recommend addressing them immediately and running a follow-up scan to confirm the fix. If you need help, Pro and Business plan users have access to priority support.

Who built UNPWNED?

UNPWNED is built by flowraz.io — a small team passionate about making security accessible to every developer. We believe that security shouldn't be a luxury or require a dedicated team. Every developer shipping code deserves to know if their domain is exposed.

How do I contact support?

Reach us anytime at support@unpwned.io. Pro and Business plan users get priority response times. We typically respond within 24 hours.

Still Have Questions?

Reach out to us at support@unpwned.io and we'll get back to you within 24 hours.

Start Scanning Free