SEO, GEO & PentestWebsites
SEO, GEO & Pentest Tool
Manage your corporate websites' search engine performance, generative AI visibility, and cybersecurity vulnerabilities from a single hub. Detail & Recommendation, Improvement, and Verification flow; a professional report in one click
Listing management, virtual tour support, and a customer CRM system for real estate companies. Map integration and advanced filtering.

Features & Functions
What Does It Solve?
Instead of subscribing to five separate tools, enterprise SEO and digital security teams can, on a single platform:
Site health (technical SEO, content optimization)
Search engine ranking (Google Search Console integrated)
AI visibility (ChatGPT, Gemini, Perplexity mention tracking)
Automated security scanning (10,000+ CVEs + TLS + DAST)
A client-deliverable professional report
manage it all from a single hub.
________________________________________
Featured Modules
SEO Detail & Recommendation Module
Page-level technical SEO analysis (SSL, mobile compatibility, H1/H2, meta description, Core Web Vitals)
Live keyword data via Google Search Console integration
Phantom keyword detection — impressions with no clicks = SEO opportunity
Content quality scoring (word diversity, sentence variation, AI evaluation)
GEO (Generative Engine Optimization)
Brand visibility in ChatGPT, Gemini, Claude, Perplexity, and Copilot responses
Access control for AI bots (GPTBot, ClaudeBot, PerplexityBot)
Automated AI advisor — analyzes findings and suggests fixes
Content strategy recommendations (powered by Claude, OpenAI, Gemini, Mistral, Groq)
Security Audit Module (Pentest)
Nuclei — 10,000+ CVE and misconfiguration signatures
sslyze — Heartbleed, ROBOT, CCS injection, weak cipher, TLS 1.0/1.1 detection, HSTS analysis
OWASP ZAP Baseline — Web application spider + passive scan; missing CSRF, XSS surface, cookie config
Automatic "how to fix" recommendation for every finding (nginx, Apache, IIS, Express examples)
DNS TXT ownership verification — legal audit log
Professional Report Generation
One-click PDF report: cover page, executive summary, risk score, finding details, remediation steps
In Turkish, brand-colored, ready to send to clients
AI Article Writing
SEO-focused content generation (Claude, OpenAI, Gemini, Cohere, Mistral, Groq)
Bulk article generation (location-based — for city/district)
Uniqueness score (algorithmic + similarity + AI evaluation)
Visual suggestion: 6 cards, each with a small icon and a one-sentence summary per module. Each card paired with a screenshot on the right (dashboard, ICE issues list, pentest findings table, PDF report cover, AI advisor screen, GSC integration).
________________________________________
Technologies Used
Frontend
Next.js 14 (React 18, App Router, TypeScript)
Tailwind CSS-like modular styling infrastructure
HTMX + Jinja2 (for some internal admin screens)
Backend
Node.js 20 + Express.js — Main API layer, REST
FastAPI + Python 3.12 — Microservice architecture (audit, pentest wrapper)
Cheerio + Playwright — Server-side rendering + crawling
Winston + Morgan — Structured logging
Database & Queue
PostgreSQL 16 — Main data store (17 tables, UUID PK, JSONB metadata)
Redis 7 — Cache, queue, session
SQLModel + SQLAlchemy — ORM (Python side)
AI Integrations
Anthropic Claude (Claude 4 family)
OpenAI GPT-4o / GPT-4 Turbo
Google Gemini 2.0 Flash / Gemini Pro
Cohere Command R+
Mistral Large
Groq (Llama 3, Mixtral)
Automatic provider selection + failover
Per-user API key management (encrypted storage, compliant with data protection law)
Security Scanning Infrastructure
Nuclei v3.9 — ProjectDiscovery community signatures (10,000+)
sslyze v6 — In-depth TLS/SSL analysis
OWASP ZAP v2.17 — DAST web application scanner
Docker container isolation, zero-aggression templates (DoS and fuzzing automatically excluded)
DevOps
Docker + Docker Compose — 6 services (web / api / audit / zap / db / redis)
nginx — Reverse proxy, TLS termination
node-cron — Automated periodic jobs
helmet + CORS — HTTP security headers
3rd-Party APIs
Google Search Console API
Google PageSpeed Insights API
DataForSEO API (SERP data)
Google Analytics 4
________________________________________
Concrete Results
One platform instead of 5 separate SaaS subscriptions ($2,400+ saved annually)
30–60% increase in SEO organic traffic within an average of 43 days
An average of 8–15 security findings detected per site on the first scan
Time to deliver a client report: 1 week → 5 minutes
New traffic sources beyond Google organic through AI visibility score tracking
Visual suggestion: Large numbers + short descriptions (grid layout). An icon + a short trend line chart for each statistic.
________________________________________
Architecture Highlights
Microservice architecture: main API, security scanner, and AI services each scale independently
Multi-tenant: organization-based data isolation, credit balance, subscription tiers
Legal compliance: design compliant with KVKK, GDPR, and Turkish Penal Code Art. 243–244; DNS TXT verification + IP/timestamped audit log for every pentest
Self-hosted option: deploy to your own server in 15 minutes with Docker Compose
Visual suggestion: A simple architecture diagram (Next.js → Node API → PostgreSQL / Redis / Python Audit → Nuclei/sslyze/ZAP). Boxes and arrows, in EST's corporate colors.
________________________________________
Use Cases
Digital marketing agencies: in-house efficiency. A single specialist can track the SEO + security status of 10–30 clients at once.
Corporate IT departments: reduces spending on external pentest consultants for monthly internal security audit reports.
E-commerce sites: continuously monitors PCI-DSS non-compliance issues such as ROBOT and weak TLS on sites that process card data.
Publishing / media: measures brand mention frequency in ChatGPT/Gemini responses through GEO tracking.
________________________________________
Sample Screenshots (recommended for display on the site)
Dashboard: 6+ domain cards, each with SEO/Content/Backlink/Keyword scores
Domain detail — Pentest tab: 3 scanner cards (Nuclei, sslyze, ZAP) side by side
Findings table: severity-colored badges, CVE column, "Resolved" button
PDF report cover page: Security Audit Report, brand-colored
AI Advisor screen: finding → AI-powered fix recommendation
GSC integration: live keyword data
________________________________________
Get Started
Request a demo → setup in a configuration tailored to you within 15 minutes
Free first scan → a 30-second SEO + security pre-analysis for your domain
Tech Stack
FastAPIPostgreSQLLeaflet.jsTailwind CSS