What does StackOptic analyze?

StackOptic runs 18 analysis modules on any public website from a single URL. It detects 7,000+ technologies (CMS, frameworks, analytics, payments, CDN, hosting), evaluates SSL certificates and HTTP security headers with grades from A+ to F, measures Core Web Vitals (LCP, CLS, TBT, FCP), audits SEO meta tags and structured data, checks email security (SPF, DKIM, DMARC), analyzes AI & LLM readiness including bot access and llms.txt validation, extracts color palettes and typography, estimates carbon footprint, and generates permanent shareable reports.

Does it work on sites behind Cloudflare or bot protection?

Yes. StackOptic uses a real browser engine that loads pages exactly like a human visitor — executing JavaScript, rendering CSS, and handling redirects. This allows it to bypass Cloudflare, LiteSpeed, Sucuri, and other bot protection systems where traditional crawlers and HTTP-only tools fail.

What do I get on the free plan?

The free plan includes 5 analyses per day with access to all 18 modules, full scores, technology detection, and security grades. Every report is permanently accessible via a unique shareable URL — no login required to view. No credit card needed. AI-powered insights, re-analysis, PDF/JSON export, and comparison features are available on Pro ($24/mo) and Agency ($99/mo) plans.

What is AI & LLM readiness analysis?

This module evaluates how visible and citable your website is to AI search engines like ChatGPT, Perplexity, Google AI Overviews, and Claude. It audits access permissions for 8 major AI bots, validates llms.txt and llms-full.txt files, scores citation-ready content structure, and analyzes structured data (JSON-LD) for GEO readiness — helping you rank in the next generation of search.

How long does an analysis take?

Most analyses complete in under 10 seconds. StackOptic runs all 18 modules in parallel using a real browser session, so you get technology detection, security audit, performance metrics, SEO analysis, and AI readiness scoring simultaneously.

How accurate are the results?

Detection is based on real browser execution — DOM inspection, JavaScript runtime analysis, HTTP headers, and DNS records. With 7,000+ technology signatures and Lighthouse-calibrated performance scoring, StackOptic achieves high accuracy for mainstream technologies.

What security checks are performed?

The security module evaluates SSL/TLS certificates, 12+ HTTP security headers (HSTS, CSP, X-Frame-Options, Permissions-Policy, Referrer-Policy), HTTPS enforcement, and email authentication (SPF, DKIM, DMARC). Each site receives a letter grade from A+ to F with specific remediation steps.

Do you store the websites I analyze?

StackOptic only stores publicly available information that any visitor to a website would see — HTML content, HTTP headers, DNS records, and screenshots. We do not access private data, log in to websites, or perform any intrusive testing.

Cloudflare

Hosting Visit cloudflare.com

Global CDN and web security platform providing DDoS protection, DNS management, SSL, and performance optimization for millions of websites.

3933 detections

20 websites tracked

Updated 05 Apr 2026

Websites Using Cloudflare

What Is Cloudflare?

Cloudflare operates one of the largest networks on the internet, spanning more than 310 cities across over 120 countries. Founded in 2009 by Matthew Prince, Lee Holloway, and Michelle Zatlyn, the company evolved from an email spam tracking tool into a comprehensive platform that sits between visitors and hosting providers as a reverse proxy, filtering and optimizing all incoming traffic.

At its core, Cloudflare provides a content delivery network that caches static resources at edge locations worldwide. When a visitor requests a page, the closest data center serves the cached version, dramatically reducing latency. Beyond caching, Cloudflare offers DNS management widely regarded as the fastest authoritative DNS service available, with response times consistently under 15 milliseconds globally.

Key Features and Services

DDoS Protection is one of Cloudflare's most critical offerings. The network can mitigate attacks exceeding 100 Tbps, making it one of the most resilient shields against volumetric attacks. Every plan, including the free tier, includes unmetered DDoS protection without surge charges during an attack.

Web Application Firewall provides managed rulesets protecting against SQL injection, cross-site scripting, and zero-day exploits. The WAF processes over 50 million HTTP requests per second, continuously learning from attack patterns.

SSL/TLS Encryption is available at no cost through Universal SSL. Cloudflare supports TLS 1.3 and offers flexible, full, or strict encryption modes depending on origin server configuration.

Workers is a serverless computing platform that deploys JavaScript, Rust, C, and C++ code directly at the edge. Workers execute within milliseconds of the end user, enabling A/B testing, header manipulation, geolocation routing, and full application development without traditional servers.

Pages offers Jamstack deployment tightly integrated with Git repositories. Developers push code and Pages automatically builds and deploys static or full-stack applications with Workers integration.

Performance Optimization

Cloudflare provides several optimization layers. Argo Smart Routing analyzes real-time network conditions to route traffic through least-congested paths, reducing latency by approximately 30 percent. Auto Minification compresses HTML, CSS, and JavaScript on the fly. Polish optimizes images using lossy or lossless compression, serving them in WebP and AVIF formats.

Early Hints sends preload instructions before server processing completes. Rocket Loader defers JavaScript loading until after page render. HTTP/3 with QUIC support ensures faster connections on unreliable networks, particularly benefiting mobile users.

Use Cases and Adoption

Roughly 20 percent of all websites route traffic through Cloudflare, including enterprises like IBM, Shopify, and Discord, alongside millions of smaller sites. The free plan's generous features make it an obvious choice for improving speed and security without cost.

For developers, Cloudflare has become a complete edge platform. Workers KV provides distributed key-value storage, Durable Objects enable stateful edge coordination, D1 offers serverless SQL, and R2 provides S3-compatible storage without egress fees.

Security Capabilities

Beyond WAF and DDoS protection, Bot Management distinguishes legitimate traffic from automated threats. Access enables zero-trust application security replacing VPNs. Gateway filters DNS queries to block malicious domains. Page Shield detects supply-chain attacks through client-side JavaScript monitoring. Turnstile offers privacy-preserving CAPTCHA alternatives.

Pricing and Plans

The free plan includes CDN, DDoS protection, Universal SSL, basic WAF, and limited Workers. Pro adds advanced WAF, image optimization, and enhanced analytics. Business includes custom SSL and advanced bot detection. Enterprise provides dedicated support and premium features.

Why Developers Choose Cloudflare

A single vendor provides DNS, CDN, security, serverless compute, storage, and deployment under one dashboard. The global anycast network ensures consistent performance regardless of visitor location, and the generous free tier has built enormous developer community goodwill.

Alternatives to Cloudflare

Amazon Web Services (AWS)2219 sites Nginx1787 sites Apache1056 sites Google Cloud Platform612 sites Fastly, Inc.552 sites Microsoft Azure337 sites Pantheon234 sites Akamai Technologies225 sites Amazon CloudFront223 sites Akamai220 sites

Compare Cloudflare

Cloudflare vs Amazon Web Services (AWS)→Cloudflare vs Nginx→Cloudflare vs Apache→Cloudflare vs Google Cloud Platform→Cloudflare vs Fastly, Inc.→

Analyze a Website

Check if any website uses Cloudflare and discover its full technology stack.

Analyze Now