Link Check results for www.troyhunt.com

No Security Risks Detected

This domain appears to be safe and secure

100%

Score

Disclaimer: This assessment is based on automated analysis of publicly available information. Results are for informational purposes only. For critical applications, consult security professionals.

Scan Information

Last checked:April 19, 2026 10:24:41

Target URL:https://www.troyhunt.com/understanding-have-i-been-pwneds-use-of-sha-1-and-k-anonymity/

Scan Complete

Refresh page after 10 minutes
for updated results

Page Information

Target URL

https://www.troyhunt.com/understanding-have-i-been-pwneds-use-of-sha-1-and-k-anonymity/

Page Title

Troy Hunt: Understanding Have I Been Pwned's Use of SHA-1 and k-Anonymity

Site Favicon

Status

Active

Host Information

Domain

www.troyhunt.com

Server

cloudflare

Country

United States

IP Address

104.18.24.41

ASN Information

13335

CLOUDFLARENET

Technologies

Ghost

CMS

Node.js

Programming languages

Varnish

Caching

HSTS

Security

Google Analytics

Analytics

Cloudflare Browser Insights

Analytics

+3 more technologies detected

SSL Certificate

HTTPS Enabled

Secure

Certificate Issuer

N/A

Valid From

2026-04-18 10:24:45

Valid Until

2027-04-19 10:24:45

Subject Name

www.troyhunt.com

Performance Statistics

Total Requests

Domains

IP Addresses

439.08 KB

Transfer Size

Content Size972.66 KB

HTTP Headers

CF-Cache-Status

MISS

CF-Ray

9eeb338c09286cfb-SEA

Cache-Control

public, max-age=14400

Connection

keep-alive

Content-Encoding

Content-Security-Policy

default-src 'none'; connect-src 'self' api.passwordpurgatory.com bloghelpers.troyhunt.com links.services.disqus.com syndication.twitter.com troyhunt.ghost.io *.google-analytics.com *.privacymanager.io; font-src 'self' cdnjs.cloudflare.com fonts.gstatic.com; frame-src www.linkedin.com disqus.com c.disquscdn.com www.youtube.com player.vimeo.com twitter.com platform.twitter.com syndication.twitter.com omny.fm pastebin.com www.google.com; img-src 'self' c.disquscdn.com referrer.disqus.com syndication.twitter.com platform.twitter.com www.gravatar.com storage.ghost.io *.twimg.com data:; script-src 'self' passwordpurgatory.com c.disquscdn.com disqus.com troyhunt.disqus.com cdnjs.cloudflare.com platform.twitter.com cdn.syndication.twimg.com syndication.twitter.com gist.github.com/troyhunt/ cdn.jsdelivr.net/ghost/ www.googletagmanager.com *.privacymanager.io www.google.com www.gstatic.com static.cloudflareinsights.com ajax.cloudflare.com 'sha256-26FfYB0WAsKHsnA92jxqaHCDCNo7MV3NrLe1wgLwuI4=' 'sha256-4JqPqO/eQLWuWw1AE7dCvI9hPwiBcw0gy7uoLqS0ncg='; style-src 'self' 'unsafe-inline' c.disquscdn.com cdnjs.cloudflare.com platform.twitter.com ton.twimg.com assets-cdn.github.com github.githubassets.com fonts.googleapis.com; form-action *.twitter.com; media-src 'self'; frame-ancestors 'self' troyhunt.ghost.io; upgrade-insecure-requests; report-uri https://troyhunt.report-uri.com/r/d/csp/enforce

Content-Type

text/html; charset=utf-8

Date

Sun, 19 Apr 2026 10:24:45 GMT

Expires

Sun, 19 Apr 2026 14:24:45 GMT

Referrer-Policy

no-referrer-when-downgrade

Server

cloudflare

Server-Timing

cfCacheStatus;desc="MISS" cfEdge;dur=6,cfOrigin;dur=0,cfWorker;dur=57

Strict-Transport-Security

max-age=31536000; includeSubDomains; preload

Transfer-Encoding

chunked

Vary

Cookie, Accept-Encoding

Via

1.1 varnish, 1.1 varnish, 1.1 varnish

X-Content-Type-Options

nosniff

X-Xss-Protection

1; mode=block; report=https://troyhunt.report-uri.com/r/d/xss/enforce

alt-svc

h3=":443"; ma=86400

expect-ct

max-age=0, report-uri=https://troyhunt.report-uri.com/r/d/ct/reportOnly

ghost-fastly

true;production

nel

{"report_to":"default","max_age":10886400}

permissions-policy

accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()

report-to

{"group":"default","max_age":10886400,"endpoints":[{"url":"https://troyhunt.report-uri.com/a/d/g"}],"include_subdomains":true}

status

200 OK

x-cache

MISS, MISS, HIT

x-cache-hits

0, 0, 0

x-request-id

e692653c-89ae-4983-bcc4-02c845a316d4

x-served-by

cache-ams2100086-AMS, cache-ams21065-AMS, cache-sjc1000123-SJC

x-timer

S1776594285.497035,VS0,VE2

30 headers detected

Technology Stack Analysis

Ghost

CMSBlogs

Ghost is a powerful app for new-media creators to publish, share, and grow a business around their content.

Node.js

Programming languages

Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.

Varnish

Caching

Varnish is a reverse caching proxy.

HSTS

Security

HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.

Google Analytics

Analytics

Google Analytics is a free web analytics service that tracks and reports website traffic.

Cloudflare Browser Insights

AnalyticsRUM

Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.

Cloudflare

CDN

Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.

HTTP/3

Miscellaneous

HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.

Gravatar

Miscellaneous

Gravatar is a service for providing globally unique avatars.

Website Cookies 3

_ga_MH977CGYFX

.troyhunt.com

Value

GS2.1.s1776594286$o1$g0$t1776594286$j60$l0$h0

Expires:5/24/2027

_ga

.troyhunt.com

Value

GA1.1.399728859.1776594286

Expires:5/24/2027

_ga_B895JNTH7Z

.troyhunt.com

Value

GS2.1.s1776594286$o1$g0$t1776594286$j60$l0$h0

Expires:5/24/2027

External Links 28

Mastodon

infosec.exchange

No Security Risks Detected

Scan Information

Page Information

Host Information

Technologies

SSL Certificate

Performance Statistics

HTTP Headers

Technology Stack Analysis

Ghost

Node.js

Varnish

HSTS

Google Analytics

Cloudflare Browser Insights

Cloudflare

HTTP/3

Gravatar

Website Cookies 3

_ga_MH977CGYFX

_ga

_ga_B895JNTH7Z

External Links 28

Mastodon

Untitled Link

Untitled Link

Untitled Link

Untitled Link

RSS

Moore's Law

OWASP's Password Storage Cheat Sheet

PowerShell's Get-FileHash

SHAttered attack

just try searching for the first one

run this yourself and see the result

NIST's

comments powered by Disqus.

Untitled Link

How about a 10 day free trial?

OWASP Top 10 Web Application Security Risks for ASP.NET

What Every Developer Must Know About HTTPS

Hack Yourself First: How to go on the Cyber-Offense

The Information Security Big Picture

Ethical Hacking: Social Engineering

Modernizing Your Websites with Azure Platform as a Service

Introduction to Browser Security Headers

Ethical Hacking: SQL Injection

Web Security and the OWASP Top 10: The Big Picture

Ethical Hacking: Hacking Web Applications

Creative Commons Attribution 4.0 International License

Ghost

Requested Domains 11

bloghelpers.troyhunt.com

cdn.jsdelivr.net

cdnjs.cloudflare.com

disqus.com

static.cloudflareinsights.com

storage.ghost.io

troyhunt.disqus.com

www.google-analytics.com

www.googletagmanager.com

www.gravatar.com

www.troyhunt.com