Skip to main content

Recon Report

com
5 Mar 2026, 10:41 UTC · 5.8s ·v26.34.20
Zone Health Re-scan New Target
ANALYSIS CONFIDENCE LOW 39/100
ACC:21% CUR:73 MAT:verified
Registry Zone — Infrastructure Analysis
Top-level domain detected. Email and brand protocols skipped — running infrastructure-only analysis.
Active Recon Vectors
DNSSEC Chain CAA Policy NS Delegation Nmap DNS HTTPS / SVCB CDS / CDNSKEY Registrar Resolver Consensus
Skipped: SPF, DKIM, DMARC, BIMI, MTA-STS, TLS-RPT, SMTP transport, CT subdomains, security.txt, AI surface, secret exposure
DNS Infrastructure Can you poison the DNS? No DNSSEC signed and validated, cryptographic chain of trust verified
> validating cryptographic chain of trust...
DNSSEC
No DNSSEC — DNS responses can be spoofed or poisoned
RFC 4033–4035 — DNSSEC

DNSSEC adds cryptographic signatures to DNS responses, preventing cache poisoning and response forgery. Without DNSSEC, an attacker can forge DNS answers.

NS Delegation
13 nameservers detected
a.gtld-servers.net b.gtld-servers.net c.gtld-servers.net d.gtld-servers.net e.gtld-servers.net f.gtld-servers.net g.gtld-servers.net h.gtld-servers.net i.gtld-servers.net j.gtld-servers.net k.gtld-servers.net l.gtld-servers.net m.gtld-servers.net
Intelligence Metadata Can you verify this independently?
SHA-3-512 Integrity Hash
e37a7cf9a9315e8402ac7979bccbfb8d7d3cdcebc6ddd233d0da16707acac73fdc69ead5ab591984f3493a6f5ecba29ab5092a9022bcef639e29530e3e5dd77e
RFC References
12
Tool Version
v26.34.20
Posture Hash
f82eac4f5f782dc6…
Verification Commands — Independently verify every finding