A/AAAA Resolution
IPv4 and IPv6 address resolution with dual-stack readiness check
Nameserver Analysis
NS record count, redundancy check, and provider identification
MX & Email Provider
Mail exchange records with automatic email provider detection
SPF Validation
Sender Policy Framework analysis — +all, ~all, -all enforcement check
DMARC Policy
Domain-based Message Authentication — policy, subdomain, and reporting audit
DKIM Detection
24 common DKIM selector probes with revoked key detection
CAA Records
Certificate Authority Authorization restricting which CAs can issue certs
SOA Record
Start of Authority with timing analysis (refresh, retry, expire)
TXT Records
Full TXT record dump including verification tokens and policies
IPv6 Readiness
AAAA record detection for dual-stack infrastructure
DNSSEC
DNSKEY validation via DNS-over-HTTPS for response authentication
MTA-STS
Mail Transfer Agent Strict Transport Security — TXT + policy file check
BIMI
Brand Indicators for Message Identification — logo URL validation
Reverse DNS
PTR record lookup on MX host IPs for email deliverability
NS Consistency
SOA serial comparison across all nameservers
TLS Reporting
SMTP TLS-RPT record (RFC 8460) for email TLS failure reports
SMTP STARTTLS
Direct MX connection to verify STARTTLS support
More free tools
No account required. Scan any website instantly.
Certificate chain, forward secrecy, OCSP stapling, CT logs, mixed content, and cipher analysis.
Waterfall timing, resource hints, image optimization, HTML weight, and third-party detection.
Full cookie inventory, pre-consent detection, GDPR compliance, and tracker mapping.
CSP, HSTS, X-Frame-Options, Referrer-Policy, Permissions-Policy, COOP, CORP, X-Content-Type-Options.
CMS, analytics (GA, Hotjar), trackers, CDN, and framework detection.
Domain/IP on Spamhaus, SpamCop, Barracuda, SORBS DNSBLs.
Open Graph, Twitter cards, canonical, robots meta, sitemap discovery.
Redirect chain and broken links on a single page.
Domain WHOIS, registrar, creation, expiration, and domain age.
Subdomains via crt.sh Certificate Transparency.
Typosquatting patterns, homoglyphs, and heuristic risk score.
4-layer brand detection: substring, fuzzy, phonetic & n-gram analysis across 200+ brands.
Composite from age, WHOIS privacy, blacklist, HTTPS.
Public counterfeit reporting portal with blockchain verification and anonymous submissions.
Verify brand ownership, authority grants, documents, and company identity on blockchain.
IP intelligence with geolocation, WebRTC leak test, timezone analysis, VPN & proxy detection, 12-database blacklist, browser privacy audit, abuse scoring, and privacy grading.
40-module deep scan — name enrichment, toxic detection, SMTP multi-pass greylisting, 121k+ disposable DB, inbox prediction, quality scoring.
Analyze multiple pages & test 90 brand protection + security patterns (abuse@, legal@, dmca@, security@). Delivery verified.
Deep compliance scanners
Full regulatory audits with remediation roadmaps, penalty estimates, and court-ready reports. Free preview with every scan.
150+ checks across 6 inspection layers with full vulnerability assessment and PDF reports.
23-article GDPR compliance audit with remediation guidance and penalty estimates.
Consent mechanism audit with dark pattern detection per EDPB guidelines.
"Do Not Sell" link, GPC signal, and privacy policy audit for California compliance.
Brazilian data protection law compliance audit with Portuguese notice validation.
French CNIL regulatory compliance analysis and cookie consent validation.