What does StackOptic analyze?

StackOptic runs 18 analysis modules on any public website from a single URL. It detects 7,000+ technologies (CMS, frameworks, analytics, payments, CDN, hosting), evaluates SSL certificates and HTTP security headers with grades from A+ to F, measures Core Web Vitals (LCP, CLS, TBT, FCP), audits SEO meta tags and structured data, checks email security (SPF, DKIM, DMARC), analyzes AI & LLM readiness including bot access and llms.txt validation, extracts color palettes and typography, estimates carbon footprint, and generates permanent shareable reports.

Does it work on sites behind Cloudflare or bot protection?

Yes. StackOptic uses a real browser engine that loads pages exactly like a human visitor — executing JavaScript, rendering CSS, and handling redirects. This allows it to bypass Cloudflare, LiteSpeed, Sucuri, and other bot protection systems where traditional crawlers and HTTP-only tools fail.

What do I get on the free plan?

The free plan includes 5 analyses per day with access to all 18 modules, full scores, technology detection, and security grades. Every report is permanently accessible via a unique shareable URL — no login required to view. No credit card needed. AI-powered insights, re-analysis, PDF/JSON export, and comparison features are available on Pro ($24/mo) and Agency ($99/mo) plans.

What is AI & LLM readiness analysis?

This module evaluates how visible and citable your website is to AI search engines like ChatGPT, Perplexity, Google AI Overviews, and Claude. It audits access permissions for 8 major AI bots, validates llms.txt and llms-full.txt files, scores citation-ready content structure, and analyzes structured data (JSON-LD) for GEO readiness — helping you rank in the next generation of search.

How long does an analysis take?

Most analyses complete in under 10 seconds. StackOptic runs all 18 modules in parallel using a real browser session, so you get technology detection, security audit, performance metrics, SEO analysis, and AI readiness scoring simultaneously.

How accurate are the results?

Detection is based on real browser execution — DOM inspection, JavaScript runtime analysis, HTTP headers, and DNS records. With 7,000+ technology signatures and Lighthouse-calibrated performance scoring, StackOptic achieves high accuracy for mainstream technologies.

What security checks are performed?

The security module evaluates SSL/TLS certificates, 12+ HTTP security headers (HSTS, CSP, X-Frame-Options, Permissions-Policy, Referrer-Policy), HTTPS enforcement, and email authentication (SPF, DKIM, DMARC). Each site receives a letter grade from A+ to F with specific remediation steps.

Do you store the websites I analyze?

StackOptic only stores publicly available information that any visitor to a website would see — HTML content, HTTP headers, DNS records, and screenshots. We do not access private data, log in to websites, or perform any intrusive testing.

Drupal

CMS Visit drupal.org

Enterprise-grade open-source CMS used by governments and large organizations. Known for robust security, multilingual support, and scalability.

683 detections

20 websites tracked

Updated 20 Feb 2026

Websites Using Drupal

What Is Drupal?

Drupal is an enterprise-grade open-source CMS known for its security, scalability, and flexibility. First released in 2001 by Dries Buytaert, Drupal powers websites for governments, universities, NGOs, and large enterprises including the White House, the European Commission, Tesla, and Pfizer.

Enterprise Strengths

Security is Drupal's hallmark. A dedicated security team reviews all contributed modules and issues coordinated security advisories. Government agencies choose Drupal because of its security track record and the availability of FedRAMP-compliant hosting options.

Multilingual Support is built into Drupal core with support for over 100 languages. Content translation, interface translation, and language-specific URL handling work out of the box without additional modules.

Content Architecture in Drupal is highly flexible. Custom content types, taxonomies, views, and entity references enable modeling complex information architectures. The Paragraphs module provides component-based content editing similar to block editors.

Drupal 10 and Beyond

Drupal 10, released in December 2022, brought a modernized admin interface, CKEditor 5, Symfony 6 components, and PHP 8.1+ requirements. The Starshot initiative aims to make Drupal more accessible to site builders with pre-configured recipes and improved out-of-box experience.

API-First Architecture

Drupal provides REST, JSON:API, and GraphQL interfaces for headless and decoupled architectures. The JSON:API module follows the specification precisely, enabling standardized content delivery to any frontend framework.

Developer Ecosystem

Built on Symfony PHP components, Drupal uses modern software patterns including dependency injection, event systems, and plugin architecture. Composer manages dependencies, and Drush CLI provides command-line site management.

Why Choose Drupal

Organizations with complex content requirements, multilingual needs, strict security policies, and large-scale publishing operations choose Drupal. Its flexibility handles content models that simpler CMS platforms cannot, and its security posture satisfies government and enterprise compliance requirements.

Alternatives to Drupal

WordPress2092 sites Adobe Experience Manager378 sites Ghost309 sites HubSpot CMS186 sites Contentful135 sites TYPO391 sites Sitecore90 sites Medium66 sites Shopify61 sites Webflow51 sites

Compare Drupal

Drupal vs WordPress→Drupal vs Adobe Experience Manager→Drupal vs Ghost→Drupal vs HubSpot CMS→Drupal vs Contentful→

Analyze a Website

Check if any website uses Drupal and discover its full technology stack.

Analyze Now