SchoolBreach.org
BreachesTrendsToolsLearnAbout
Free Security Check
Security Check
SchoolBreach.org

A public resource tracking data breaches in Philippine schools. Helping administrators protect student data through awareness, education, and free security tools.

© 2026 SchoolBreach.org · A community service by OceanEd

Navigate

  • Breaches
  • Trends
  • Tools
  • Learn
  • Methodology

Company

  • About
  • Privacy Policy
  • Terms of Service
  • Contact Us

Disclaimer: This tracker is maintained for educational and awareness purposes. Incidents are documented using threat intelligence monitoring, Philippine media reports, NPC filings, and responsible disclosures. Social media platforms are monitored for leads and are corroborated before publication or naming — never through active scanning or exploitation. Severity ratings and summaries are prepared with AI assistance and reviewed editorially. Full methodology →

Back to Tools
Free Tool

Site Scanner

Scan a school website to detect its technology stack, check security headers, and review RA 10173 (Data Privacy Act) compliance indicators. This is a surface-level scan — it only checks publicly visible information, the same data any browser can see.

CMS & technology stack detectionSecurity header analysis (HTTPS, CSP, HSTS)RA 10173 privacy compliance indicatorsThird-party tracker inventoryServer information disclosure checkSurface-level only — no penetration testing

Looking for more tools? See all 10 security tools →

Related Reading

HTTPS and SSL: Why Every School Website Needs It

explainer · 5 min

HSTS Explained: Locking Your School Site to HTTPS

explainer · 4 min

Content Security Policy: Blocking Injected Scripts on School Sites

explainer · 6 min

Browse all guides & articles →

Site Scanner

Enter a website URL to detect its technology stack, check security headers, and review privacy compliance indicators.

Surface-level scan only. This tool checks publicly visible information — the same data any web browser can see. It does notperform penetration testing, vulnerability exploitation, or access restricted content. We also offer deeper scans including OWASP Top 10 vulnerability checks — to run these, we'll need to verify that you own or are authorized to scan the target site. Contact Us

What This Scanner Checks

Technology Detection

  • CMS platform (WordPress, Drupal, etc.)
  • JavaScript frameworks
  • Plugins and third-party services

Security Headers

  • HTTPS / SSL certificate
  • HSTS, CSP, X-Frame-Options
  • Server information disclosure

Privacy (RA 10173)

  • Privacy policy presence
  • Cookie consent notice
  • Data collection consent language

DNS & Infrastructure

  • CDN detection & origin IP exposure
  • Common subdomain origin leaks
  • DNSSEC & CAA records

Infrastructure

  • Mixed content detection
  • Mobile responsiveness
  • Third-party tracker inventory

Email Security

  • SPF record validation
  • DKIM signature detection
  • DMARC policy check
  • MX record verification