Scan here – magereport.com
What is it?
This free service gives you a quick insight in the security status of your Magento shop(s) and how to fix possible vulnerabilities.
How does it work?
It is not possible to see from the outside of a Magento shop which files exist on the server. So we use behavior-based identification patterns. This is possible because each Magento patch introduces subtle changes in behaviour.
Is it safe to run the test?
Yes. This site exclusively uses passive checks, ie they run in read-only mode and do not, in any way, modify your shop.