COVERT MODE ACTIVE Beta — Same intelligence, adversarial lens. Every finding reframed for offensive awareness.

Optimized for low-light tactical environments Environment:

Red spectrum preserves scotopic adaptation per MIL-STD-3009 and MIL-STD-1472G tactical lighting discipline. All findings are identical to the standard report. For full immersion, use Focus Mode or install as app.

Exit Covert Mode

Recon Report

co.uk

27 Feb 2026, 14:25 UTC · 16.9s ·v26.27.09

Zone Health Re-scan New Target

Registry Zone — Infrastructure Analysis

Top-level domain detected. Email and brand protocols skipped — running infrastructure-only analysis.

Active Recon Vectors

DNSSEC Chain CAA Policy NS Delegation Nmap DNS HTTPS / SVCB CDS / CDNSKEY Registrar Resolver Consensus

Skipped: SPF, DKIM, DMARC, BIMI, MTA-STS, TLS-RPT, SMTP transport, CT subdomains, security.txt, AI surface, secret exposure

DNS Infrastructure Can you poison the DNS? No DNSSEC signed and validated, cryptographic chain of trust verified

> validating cryptographic chain of trust...

DNSSEC

No DNSSEC — DNS responses can be spoofed or poisoned

RFC 4033–4035 — DNSSEC

DNSSEC adds cryptographic signatures to DNS responses, preventing cache poisoning and response forgery. Without DNSSEC, an attacker can forge DNS answers.

NS Delegation

8 nameservers detected

dns1.nic.uk dns2.nic.uk dns3.nic.uk dns4.nic.uk nsa.nic.uk nsb.nic.uk nsc.nic.uk nsd.nic.uk

Intelligence Metadata Can you verify this independently?

SHA-3-512 Integrity Hash

27715015d9e121df87d4dc5e994d227f60c7b62f909073b94d3ccdfe6519607fce02a47e9f9825e90896d745c33882f0dbfc7e1409cec22763b29054d62bd18f

RFC References

Tool Version

v26.27.09

Posture Hash

7f6caacf090cdd9e…

Verification Commands — Independently verify every finding

Rules of Engagement

What You May Do

What You May Not Do

Recon Report

DNS Infrastructure Can you poison the DNS? No DNSSEC signed and validated, cryptographic chain of trust verified

DNSSEC

NS Delegation

Intelligence Metadata Can you verify this independently?