Recon Report
com
ANALYSIS CONFIDENCE
LOW
38/100
ACC:21%
CUR:68
MAT:verified
Registry Zone — Infrastructure Analysis
Top-level domain detected. Email and brand protocols skipped — running infrastructure-only analysis.
Active Recon Vectors
DNSSEC Chain
CAA Policy
NS Delegation
Nmap DNS
HTTPS / SVCB
CDS / CDNSKEY
Registrar
Resolver Consensus
Skipped: SPF, DKIM, DMARC, BIMI, MTA-STS, TLS-RPT, SMTP transport, CT subdomains, security.txt, AI surface, secret exposure
DNS Infrastructure Can you poison the DNS? No DNSSEC signed and validated, cryptographic chain of trust verified
> validating cryptographic chain of trust...
DNSSEC
No DNSSEC — DNS responses can be spoofed or poisoned
RFC 4033–4035 — DNSSEC
DNSSEC adds cryptographic signatures to DNS responses, preventing cache poisoning and response forgery. Without DNSSEC, an attacker can forge DNS answers.
NS Delegation
13 nameservers detected
a.gtld-servers.net
b.gtld-servers.net
c.gtld-servers.net
d.gtld-servers.net
e.gtld-servers.net
f.gtld-servers.net
g.gtld-servers.net
h.gtld-servers.net
i.gtld-servers.net
j.gtld-servers.net
k.gtld-servers.net
l.gtld-servers.net
m.gtld-servers.net
Intelligence Metadata Can you verify this independently?
SHA-3-512 Integrity Hash
161e910417b117b38f02af5ffc454f9252f53d86ee26b6451d15ed49b068f835d818a9aec53e0a9cdfd08567eaa311f3e38d71c7a8b373688b05104986b1a2c9
RFC References
12
Tool Version
v26.33.93
Posture Hash
f82eac4f5f782dc6…