SPRING SALE: 20% off all plans.

Grab the Deal
Sign in Get Started

WordPress Website Checker

Paste any website URL to instantly check whether it's built on WordPress. We scan the page, surface the fingerprints, and tell you our confidence level — no sign-up required.

How does it work?

Three steps. No signup, no install, no credit card.

Paste any website URL

Enter the full URL of any public website — homepage, landing page, blog, or product page. We'll handle https:// for you if you forget it.

Run the check

Click "Check Website". Our scanner fetches the page and looks for WordPress fingerprints — generator meta, /wp-content/, /wp-includes/, the REST API, and more.

Get a clear answer

We report whether it's WordPress, our confidence level, the version (when detectable), and exactly which signals matched — so you can verify the result yourself.

Who uses this?

Anyone who needs a fast, evidence-based answer about a site's platform.

Developers & Agencies

Quickly qualify a prospect or a competitor — knowing the platform shapes your proposal, scoping, and which integrations you can pitch.

Marketers & SEO Specialists

WordPress sites have specific SEO and ad-tech footprints. Identify the platform up front to plan plugin recommendations, schema work, or migration projects.

Researchers & Journalists

Verifying which CMS powers a site is a common research step. Get an evidence-based answer in seconds without poking around in DevTools.

Security Teams

Triage faster: confirm whether a target is WordPress before recommending hardening steps, plugin audits, or vulnerability scans.

Site Owners

Inherited a site and not sure what it's built on? Find out instantly without logging into the host or asking your previous developer.

Designers

Inspecting a beautiful site for inspiration? Confirm the platform first — the design choices, theme system, and plugin ecosystem will shape what you can replicate.

Frequently Asked Questions

How accurate is the WordPress detection?
Very accurate when our scanner can read the homepage HTML and reach /wp-json/. We label results High, Medium, or None based on how many fingerprints matched. The signals we used are listed in the result so you can verify them yourself.
What does 'confidence' mean?
High — we got a valid /wp-json/ REST API response (the strongest single signal). Medium — we found WordPress fingerprints in the HTML (generator meta, /wp-content/, /wp-includes/) but the REST API was disabled or unreachable. None — no WordPress signals found.
Why does the result say "the site returned HTTP 403"?
Some hosts block automated requests by default, even with a normal browser User-Agent. When that happens we can't read the page content, so detection is impossible from the outside. Try the URL directly in a browser to confirm it's reachable.
Can a website hide that it uses WordPress?
Yes — by removing the generator meta tag, renaming /wp-content/, disabling /wp-json/, and stripping plugin-specific markup. We surface every signal we did find, so even if some have been hidden, others usually leak through.
Do you store the URLs I check?
No. Each check fetches the URL on demand to scan it, returns the result, and discards it. We don't log URLs, IPs, or scan results. Cloudflare Turnstile protects the endpoint from abuse without needing to track you.
Why use Turnstile and not a CAPTCHA?
Cloudflare Turnstile is invisible most of the time — no clicking traffic lights or blurry crosswalks. Real visitors get straight to the result; automated tools get challenged.
How is this different from your WordPress Detector extension?
This online tool tells you whether a site is WordPress. The WordPress Theme Detector Chrome extension goes deeper — listing the specific theme, plugins, and version. Use this checker first; if it says yes, install the extension for full details.