Passive external scan

How exposed is your domain?

A passive external security check. No login, no install, no port scans — just what an attacker can already see.

Built by VantagePoint Networks · 25+ years in network engineering · 13 domains scanned

What we check

  • DNS hygiene

    SPF, DKIM, DMARC records

  • HTTP security headers

    HSTS, CSP, X-Frame-Options

  • TLS configuration

    SSL Labs grade, cert expiry

  • Mozilla HTTP Observatory

    Grade and failing tests

  • Subdomain takeover risk

    Dangling CNAMEs on common subdomains

  • Email spoofing protection

    Can attackers send mail as you?

Install the app

VP Shield on your phone — free

Add VP Shield to your home screen for instant domain security scans, no App Store required.

Instant scans📴Works offline🔔Zero login🛡️No tracking
9:41
🛡

VP Shield

On Android: open this page in Chrome and tap the install icon in the address bar.
On iOS: open in Safari → Share → Add to Home Screen.