Scanner Test Hub

A collection of test pages with deliberate PASS and FAIL elements for verifying automated scanners.

Security Analyst

Mixed secure and insecure elements for security scanners. Tests headers, cookies, mixed content, CSRF, open redirects, and information disclosure.

UX Competence Lead

WCAG 2.1 AA compliance test elements for pa11y and Lighthouse. Tests accessibility, usability, performance, and UX quality.

Content Strategist

Content structure, readability, and quality signals for content analysis tools. Tests messaging, structure, and readability.

Technical Developer

Performance, code quality, and technical SEO elements for Lighthouse and developer tools. Tests best practices and optimisation.

Cookie Consent

Consent banner with category gating for cookie scanners like Cookiebot. Tests pre-consent trackers, secure cookie flags, and consent withdrawal.

Transport Failures

Five pages that abort their response stream mid-transfer, producing connection-reset errors. For testing transport-failure threshold detection in scanners.

Image Gallery

Mixed self-hosted images served from /images/*.jpg and hotlinked images from picsum.photos. For testing crawler image discovery, mixed-origin asset reporting, and broken-link detection.

Utility Routes

/generated — Generator hub for dialling up N deterministic crawl-target pages
/sitemap.xml — Sitemap including all generated pages
/load-balance-test — Cacheable page for CDN and load balancing verification
/forms — Form submission test page — echoes submitted field values back on the page
/forms/submissions — View persisted form submissions (last 20)
/login — POST-only login endpoint (no CSRF protection)
/redirect?url= — Open redirect (no URL validation)
/api/info — Information disclosure endpoint

Subdomain Links

subdomain01.endpoint01.web-scan.comprend-test.com — Subdomain crawl target for testing crawler subdomain traversal