Title: TrustBeacon Auditor
Author: fiatlux5775
Published: <strong>July 6, 2026</strong>
Last modified: July 6, 2026

---

Search plugins

![](https://ps.w.org/trustbeacon-auditor/assets/icon-256x256.jpg?rev=3598298)

# TrustBeacon Auditor

 By [fiatlux5775](https://profiles.wordpress.org/fiatlux5775/)

[Download](https://downloads.wordpress.org/plugin/trustbeacon-auditor.0.1.7.zip)

 * [Details](https://wordpress.org/plugins/trustbeacon-auditor/#description)
 * [Reviews](https://wordpress.org/plugins/trustbeacon-auditor/#reviews)
 *  [Installation](https://wordpress.org/plugins/trustbeacon-auditor/#installation)
 * [Development](https://wordpress.org/plugins/trustbeacon-auditor/#developers)

 [Support](https://wordpress.org/support/plugin/trustbeacon-auditor/)

## Description

TrustBeacon Auditor provides a plain-English report of basic public trust signals
for the WordPress site where it is installed.

The plugin checks public configuration signals such as:

 * MX records
 * SPF records
 * DMARC records
 * Common DKIM selectors
 * SSL certificate availability
 * HTTP security headers
 * CAA records
 * DNSSEC indicators when supported by the server
 * Cloudflare indicators in public response headers
 * Public security plugin indicators visible in page HTML

The report includes a simple trust score, trust level, findings, recommendations,
and business impact explanations.

Important: TrustBeacon Auditor evaluates publicly visible trust indicators. It is
not a security certification, penetration test, malware scanner, compliance audit,
or guarantee that a website is secure.

### External services

TrustBeacon Auditor performs remote HTTPS requests to websites selected
 by the 
site administrator in order to audit publicly available trust signals.

The plugin connects directly to the website being audited to inspect
 information
such as:

 * SSL certificate availability
 * HTTP response headers
 * Cloudflare detection
 * Security plugin indicators

Data transmitted:

 * The domain name entered by the administrator.
 * Standard HTTP request headers, including a User-Agent string.

These requests occur only when an administrator initiates an audit.

No personal visitor information is collected, stored, or transmitted.

The plugin does not use any third-party commercial APIs.

Privacy Policy:
 https://itechguide.com/privacy-policy/

Terms of Use:
 https://itechguide.com/terms-of-use/

## Installation

 1. Upload the plugin folder to the `/wp-content/plugins/` directory, or install the
    plugin ZIP through the WordPress Plugins screen.
 2. Activate the plugin through the Plugins screen.
 3. Open the Trust Auditor page in the WordPress admin menu.
 4. Click Run Audit.

## FAQ

### Does this plugin scan private files or private server data?

No. It checks public trust indicators for the installed site.

### Does a high score prove my site is secure?

No. A high score means the checked public trust signals look good. It does not prove
that the site is secure.

### Does a low score prove my site was hacked?

No. A low score means that one or more public trust signals may be missing, weak,
or unavailable.

### Why does DKIM detection say no common selector was found?

DKIM selectors vary by mail provider. The plugin checks several common selectors,
but some providers use custom selector names.

### Why is DNSSEC sometimes informational?

Some PHP environments cannot query DNSSEC records reliably. In that case, the plugin
avoids punishing the score for a check it cannot verify.

## Reviews

There are no reviews for this plugin.

## Contributors & Developers

“TrustBeacon Auditor” is open source software. The following people have contributed
to this plugin.

Contributors

 *   [ fiatlux5775 ](https://profiles.wordpress.org/fiatlux5775/)

[Translate “TrustBeacon Auditor” into your language.](https://translate.wordpress.org/projects/wp-plugins/trustbeacon-auditor)

### Interested in development?

[Browse the code](https://plugins.trac.wordpress.org/browser/trustbeacon-auditor/),
check out the [SVN repository](https://plugins.svn.wordpress.org/trustbeacon-auditor/),
or subscribe to the [development log](https://plugins.trac.wordpress.org/log/trustbeacon-auditor/)
by [RSS](https://plugins.trac.wordpress.org/log/trustbeacon-auditor/?limit=100&mode=stop_on_copy&format=rss).

## Changelog

#### 0.1.3

 * Revised scoring so INFO findings are excluded and WARN findings receive partial
   credit instead of harsh zero-point treatment.
 * Adjusted grade labels to better reflect public trust signals rather than full
   security certification.

#### 0.1.1

 * Standardized plugin name, slug, text domain, prefix, contributor metadata, licensing,
   and WordPress.org readme format.
 * Replaced mixed class prefixes with TBAUD-prefixed classes.
 * Replaced raw HTTP header fetching with the WordPress HTTP API.
 * Added safer DNS lookup wrapper and defensive handling for unavailable DNS constants.
 * Added escaping, sanitization, nonce name, capability checks, and translatable
   admin strings.

#### 0.1.0

 * Initial development version.

## Meta

 *  Version **0.1.7**
 *  Last updated **8 hours ago**
 *  Active installations **Fewer than 10**
 *  WordPress version ** 6.0 or higher **
 *  Tested up to **7.0**
 *  PHP version ** 7.4 or higher **
 * Tags
 * [DMARC](https://wordpress.org/plugins/tags/dmarc/)[dns](https://wordpress.org/plugins/tags/dns/)
   [security](https://wordpress.org/plugins/tags/security/)[SPF](https://wordpress.org/plugins/tags/spf/)
   [ssl](https://wordpress.org/plugins/tags/ssl/)
 *  [Advanced View](https://wordpress.org/plugins/trustbeacon-auditor/advanced/)

## Ratings

No reviews have been submitted yet.

[Your review](https://wordpress.org/support/plugin/trustbeacon-auditor/reviews/#new-post)

[See all reviews](https://wordpress.org/support/plugin/trustbeacon-auditor/reviews/)

## Contributors

 *   [ fiatlux5775 ](https://profiles.wordpress.org/fiatlux5775/)

## Support

Got something to say? Need help?

 [View support forum](https://wordpress.org/support/plugin/trustbeacon-auditor/)