Skip to main content

Recon Report

co.uk
3 Mar 2026, 14:32 UTC · 16.5s ·v26.33.67
Zone Health Re-scan New Target
ANALYSIS CONFIDENCE MODERATE 68/100
ACC:63% CUR:73 MAT:verified
Registry Zone — Infrastructure Analysis
Top-level domain detected. Email and brand protocols skipped — running infrastructure-only analysis.
Active Recon Vectors
DNSSEC Chain CAA Policy NS Delegation Nmap DNS HTTPS / SVCB CDS / CDNSKEY Registrar Resolver Consensus
Skipped: SPF, DKIM, DMARC, BIMI, MTA-STS, TLS-RPT, SMTP transport, CT subdomains, security.txt, AI surface, secret exposure
DNS Infrastructure Can you poison the DNS? No DNSSEC signed and validated, cryptographic chain of trust verified
> validating cryptographic chain of trust...
DNSSEC
No DNSSEC — DNS responses can be spoofed or poisoned
RFC 4033–4035 — DNSSEC

DNSSEC adds cryptographic signatures to DNS responses, preventing cache poisoning and response forgery. Without DNSSEC, an attacker can forge DNS answers.

NS Delegation
8 nameservers detected
dns1.nic.uk dns2.nic.uk dns3.nic.uk dns4.nic.uk nsa.nic.uk nsb.nic.uk nsc.nic.uk nsd.nic.uk
Intelligence Metadata Can you verify this independently?
SHA-3-512 Integrity Hash
d819dfe82950ecb544f8cc17708cb5f96a5c3dd96ab075a755ec01e30cd34533fd9282af42ebe1c906a09b03bcbb08f77601a3e6d81b95c09a1f403321bf18f0
RFC References
12
Tool Version
v26.33.67
Posture Hash
7f6caacf090cdd9e…
Verification Commands — Independently verify every finding