Free Security Tools

What's your domain
exposing right now?

Passive DNS-based scans. No login. No agent. Results in seconds.

Your email unlocks all scans and lets us send you the report.

100% passive. We only read public DNS records.

Choose a scan

Enter a domain above or directly in any card below

Full passive audit of your email authentication stack. Find every gap before attackers do.

Check for dangling records, missing CAA, DNSSEC status, and subdomain takeover vectors.

Inspect certificate validity, expiry, chain completeness, cipher suites, and TLS version support.

Audit all mail exchange hosts — reachability, STARTTLS support, TLS cert, and banner exposure.

Find all domains belonging to an entity via cert transparency, reverse WHOIS, and ASN enumeration.

Detect typosquatting domains, lookalikes, and homoglyph registrations targeting your brand.

Validate security headers — CSP, HSTS, X-Frame-Options, Referrer-Policy, and Permissions-Policy.

100% passive — DNS only · No login required · Free forever · No data stored without consent