Skip to main content
DNS Tool
Executive's DNS Intelligence Brief
Generated 24 Apr 2026, 15:55 UTC
Duration 1.8s
Version v26.47.06
Integrity 6af6c0e7a32e024de41dcd7f429c301ecdd8df7695d21c0c3cd6480eb7052562b729218db97f454bee6550fd89734d7dbb6e6eb75083445ab454da0f2331c466
Subject Domain
test

Executive's DNS Intelligence Brief

Board-level domain security assessment — test

24 Apr 2026, 15:55 UTC · 1.8s · SHA-3-512: 6af6✱✱✱✱ Verify ·Archived
Zone Health
DNS Security & Trust Posture
Risk Level: High Risk
1 not configured
Analysis Confidence
LOW
Significant disagreement between resolvers undermines confidence in the analysis results.
Email Spoofing
N/A — Registry
Brand Impersonation
N/A — Registry
DNS Tampering
Unsigned
Certificate Control
N/A — Registry
What Requires Attention
No urgent actions detected. Domain security posture is well-maintained.
The BIG Questions
Can DNS itself be tampered with? Possible DNSSEC is not deployed, DNS responses are not cryptographically verified
Domain Overview
Registrar Unknown
Email Provider Unknown
Web Hosting Unknown
DNS Hosting Unknown

Technical Findings

DNS Security
Can DNS itself be tampered with? Possible — DNSSEC is not deployed, DNS responses are not cryptographically verified
DNSSEC Partial
DNSSEC not configured - DNS responses are unsigned
NS Delegation Could not retrieve NS records
Delegation Consistency 2 Issues
NS Fleet Health 3 Issues Diversity: Poor
Priority Actions 1 total Achievable: Secure
Medium Enable DNSSEC

DNSSEC is not enabled for this domain. DNSSEC provides cryptographic authentication of DNS responses, preventing cache poisoning and DNS spoofing attacks.

Appendix — Additional Resources

Full technical details including raw DNS records, DKIM public keys, IP/ASN mappings, resolver consensus evidence, and verification commands are available in the Engineer's DNS Intelligence Report.

View Zone Health Report

Verify Report Integrity SHA-3-512 Has this report been tampered with? Verify below

Tamper-evident fingerprint binding this analysis to its data, domain, timestamp, and tool version.

6af6c0e7a32e024de41dcd7f429c301ecdd8df7695d21c0c3cd6480eb7052562b729218db97f454bee6550fd89734d7dbb6e6eb75083445ab454da0f2331c466
12 RFCs evaluated · DNS state at 24 Apr 2026, 15:55 UTC
Internet Archive — Permanent Record Wayback Machine

This analysis is permanently archived by the Internet Archive, providing independent third-party verification of DNS security posture at analysis time.

View Archived Snapshot