Mixed Content Checker
Detect mixed content issues on your HTTPS website. Find images, scripts, stylesheets, and other resources loaded over insecure HTTP that weaken your site's security.
What We Check
Active mixed content detection (scripts, iframes)
Passive mixed content detection (images, media)
Stylesheet and font resource check
Form action URL verification
WebSocket protocol check
Upgrade-Insecure-Requests header check
How It Works
1
Enter your HTTPS website URL
2
We fetch your page and analyze all resource URLs
3
Each resource is checked for HTTP vs HTTPS loading
4
Active mixed content (scripts) is flagged as high risk
5
You receive a list of all mixed content with fix instructions
Security Checks Included
This tool runs the following security checks on your website
Frequently Asked Questions
What is mixed content?
Mixed content occurs when an HTTPS page loads resources (scripts, images, stylesheets) over insecure HTTP. This weakens the security of your HTTPS connection and can trigger browser warnings.
What is the difference between active and passive mixed content?
Active mixed content (scripts, iframes, XMLHttpRequests) can modify the page and is blocked by browsers. Passive mixed content (images, audio, video) is displayed with a warning but not blocked.
How do I fix mixed content?
Update all resource URLs from http:// to https://, or use protocol-relative URLs (//). You can also add the Content-Security-Policy header with upgrade-insecure-requests to automatically upgrade HTTP requests.
Does mixed content affect SEO?
Yes. Google considers HTTPS a ranking signal, and mixed content warnings can negatively impact user experience metrics. Browsers may also block mixed content, causing broken pages.
Ready to Check Your Website?
Run a free security scan now and get instant results with actionable fix recommendations.