Downtime, expiring certificates, lapsing domains, hacked pages — everything that can take your website out, watched around the clock with instant alerts.
Uptime
30s checks
SSL
Expiry reminders
Domains
RDAP tracking
Malware
Daily scans
Defacement
Change detection
Vulnerable Libs
CVE alerts
Secrets
Leak detection
Alerts
5 channels
Uptime is only half the story. Site Monitoring watches for downtime, expiring certificates and domains, and the silent compromises that uptime checks can't see.
A hacked site is usually still "up". Every day we scan what your site actually serves and alert you to defacement, injected malware, exposed API keys, vulnerable JavaScript libraries and weak security headers — before Google or your customers find them.
Homepage content replaced — differs from baseline
CRITICALStripe secret key exposed in checkout.js
HIGHjQuery 1.8.3 — 4 known CVEs
MEDIUMMonitor your endpoints with intervals as low as 30 seconds. Know about issues before your customers do.
Get notified instantly via Email, SMS, Telegram, WhatsApp or push the moment something goes wrong — downtime or a security finding.
Track response times, identify patterns, and pinpoint performance bottlenecks with detailed charts and reports.
Access detailed incident timelines and reports. Analyze patterns and improve your infrastructure over time.
30 days before
First reminder14 days before
Reminder sent7 days before
Urgent reminderDay of expiry
Final warningAn expired certificate or a lapsed domain takes you offline as surely as a crashed server. We check both daily — certificates over TLS, domains straight from the registry via RDAP — and remind you at 30, 14, 7, 3 and 1 days before expiry, on every channel you use.
Share a branded status page with your users so they always know how your services are doing — custom domain on Pro and above.
Downtime isn't the only threat. Expired certificates, lapsed domains, and silent compromises hurt just as much — so we watch those too.
An expired certificate greets your visitors with a scary browser warning and drops your traffic to zero. We check your certificates daily and remind you at 30, 14, 7, 3 and 1 days before expiry — so renewal never slips through the cracks.
example.com
Certificate expires in 12 days
Companies lose domains every day to missed renewal emails — and getting one back is expensive, slow, and sometimes impossible. We track your domain's registry expiration date directly via RDAP and warn you well before it lapses.
yourbusiness.com
Registry data via RDAP
Domain expires in
23 days
Next reminder at 14 days
Renewal reminder sent to email, Telegram and SMS
A hacked site can stay defaced or serve malware for weeks before anyone notices — long enough to get blocklisted and lose customer trust. Our daily security scans catch defacement, injected malware, exposed secrets and vulnerable libraries the day they appear.
Daily security scan
3 findings need review
Page content changed vs baseline
DefacementAWS access key exposed in app.js
SecretjQuery 1.8.3 has known CVEs
LibraryAttackers don't take your site down — they quietly change what it serves. We catch the change by knowing what your site is supposed to look like.
The first scan fingerprints your site's normal state — content, title, scripts, iframes and links.
Each day we fetch exactly what your visitors receive, including your public JavaScript files.
Five detectors look for defacement, malware, exposed secrets, vulnerable libraries and weak headers.
New findings are ranked critical to low, deduplicated, and pushed to your channels immediately.
Baseline — learned 12 Jun
<script src="/js/app.min.js">
<script src="/js/analytics.js">
Today's scan
<script src="/js/app.min.js">
<script src="/js/analytics.js">
+ <script src="//cdn-metrics.io/m.js">
Unknown script origin injected — possible malware
Alert sent 07:00No complex setup required. Add your first monitor and start receiving alerts in less than 2 minutes.
Simply paste your website URLs, APIs, or server endpoints. Configure check intervals, HTTP methods, and expected response codes.
Choose your preferred notification channels — Email, SMS, Slack, Telegram, or webhooks. Customize alert conditions and escalation rules.
Watch your uptime metrics in real-time. Get detailed response time charts, incident history, and performance insights.
Receive instant alerts when issues arise. Access detailed incident reports and resolution timelines to improve your infrastructure.
Connect Site Monitoring to your favorite tools. Receive instant notifications through the channels your team already uses.
Instant email alerts
Post to channels
Bot notifications
Text message alerts
Team channel alerts
WhatsApp messages
Custom integrations
Server notifications
Need a custom integration? Use our REST API and webhooks to build your own.
Join thousands of developers and businesses who trust Site Monitoring to keep their services running smoothly.
“Site Monitoring saved us countless hours of debugging. The instant alerts helped us identify and fix issues before our customers even noticed.”
“The response time analytics helped us identify a slow API endpoint that was hurting our conversion rate. Fixed it and saw a 15% improvement!”
“We switched from a competitor and the difference is night and day. The Slack integration alone made our incident response 3x faster.”
“Simple setup, powerful features, and excellent support. Site Monitoring is exactly what we needed for our growing infrastructure.”
Trusted by teams at leading companies
Everything you need to know about monitoring, security scans, and billing. Can't find your answer? We're one email away.
Site Monitoring is an all-in-one website reliability platform. It checks your websites around the clock for downtime, tracks response times, warns you before SSL certificates and domain registrations expire, and runs daily security scans that detect defacement, malware, exposed secrets and vulnerable libraries — with instant alerts on the channels your team already uses.
Yes. The Free plan includes 3 monitors with 5-minute check intervals, email notifications and 7 days of history — free forever, no credit card required.
We check your certificate daily and send reminders on a fixed ladder as expiry approaches: 30, 14, 7, 3 and 1 days before, and on the day of expiry. Each threshold triggers exactly one reminder, and when you renew the certificate the ladder resets automatically for the next cycle.
Daily scans cover five areas: defacement (your page content changing drastically versus a learned baseline), malware and SEO spam injection (malicious scripts, hidden iframes, spam links), exposed secrets (API keys and tokens leaked in your JavaScript), vulnerable JavaScript libraries (outdated versions of jQuery, Angular and others with known CVEs), and security headers, which we grade from A to F.
Depending on your plan, alerts can be delivered via email, SMS, Telegram, WhatsApp and push notifications. Free includes email; Starter adds SMS and Telegram; Pro and Agency unlock every channel. You choose channels per monitor, so critical sites can page you while side projects just email.
Yes, you can cancel from the billing page at any time. Your plan stays active until the end of the period you've already paid for, and you keep access to all its features until then.