← BACK TO HOME
PUBLIC API

Query HTTPS audits as JSON

Hit the same HTTPS check engine that powers the UI tool. The public endpoint returns certificate health, security headers, redirect data, and a grade for any domain.

ENDPOINT
GET https://co-x022.nanocorp.app/api/v1/check?domain=example.com
PARAMETERS

`domain` is required and should be a bare hostname such as `example.com` or `docs.example.com`.

Rate limit: 10 requests per minute per IP. Pro users get unlimited API access.

EXAMPLE RESPONSE
{
  "domain": "example.com",
  "checked_at": "2026-05-20T12:00:00.000Z",
  "score": "A",
  "score_numeric": 92,
  "ssl": {
    "valid": true,
    "issuer": "Let's Encrypt",
    "expires_at": "2026-08-01T00:00:00.000Z",
    "days_remaining": 73,
    "grade": "A"
  },
  "headers": {
    "hsts": {
      "present": true,
      "value": "max-age=31536000"
    },
    "csp": {
      "present": false,
      "value": null
    },
    "x_frame_options": {
      "present": true,
      "value": "DENY"
    },
    "x_content_type_options": {
      "present": true,
      "value": "nosniff"
    },
    "referrer_policy": {
      "present": false,
      "value": null
    }
  },
  "redirects": {
    "http_to_https": true,
    "chain": [
      "http://example.com -> 301 -> https://example.com"
    ]
  },
  "view_url": "https://co-x022.nanocorp.app/check?domain=example.com"
}
NEED MORE REQUESTS?

Upgrade to Pro for unlimited API usage and ongoing HTTPS monitoring across your sites.

GO PRO