Recon Report
co.uk
ANALYSIS CONFIDENCE
MODERATE
68/100
ACC:63%
CUR:73
MAT:consistent
Registry Zone — Infrastructure Analysis
Top-level domain detected. Email and brand protocols skipped — running infrastructure-only analysis.
Active Recon Vectors
DNSSEC Chain
CAA Policy
NS Delegation
Nmap DNS
HTTPS / SVCB
CDS / CDNSKEY
Registrar
Resolver Consensus
Skipped: SPF, DKIM, DMARC, BIMI, MTA-STS, TLS-RPT, SMTP transport, CT subdomains, security.txt, AI surface, secret exposure
DNS Infrastructure Can you poison the DNS? No DNSSEC signed and validated, cryptographic chain of trust verified
> validating cryptographic chain of trust...
DNSSEC
No DNSSEC — DNS responses can be spoofed or poisoned
RFC 4033–4035 — DNSSEC
DNSSEC adds cryptographic signatures to DNS responses, preventing cache poisoning and response forgery. Without DNSSEC, an attacker can forge DNS answers.
NS Delegation
8 nameservers detected
dns1.nic.uk
dns2.nic.uk
dns3.nic.uk
dns4.nic.uk
nsa.nic.uk
nsb.nic.uk
nsc.nic.uk
nsd.nic.uk
Intelligence Metadata Can you verify this independently?
SHA-3-512 Integrity Hash
69ba30ec1f42cf7a7a5c66c82ebedf8b99c781fd1869a2770a40a8a40eec38b5c1bfb826c195aef4131bdcc7d257efebd95f5c092b01c6b7e38f3dbe1f666bf4
RFC References
12
Tool Version
v26.47.10
Posture Hash
7f6caacf090cdd9e…