VOOZH about

URL: https://apify.com/nexgendata/domain-security-posture-checker

โ‡ฑ Domain Security Posture Checker โ€” DNS, SPF, DMARC, TLS ยท Apify

๐Ÿ‘ Domain Security Posture Checker โ€” DNS, SPF, DMARC, TLS avatar

Domain Security Posture Checker โ€” DNS, SPF, DMARC, TLS

Pricing

from $150.00 / 1,000 domain reports

Go to Apify Store

Domain Security Posture Checker โ€” DNS, SPF, DMARC, TLS

One-call security report card per domain โ€” WHOIS, DNS, SPF/DMARC email auth, SSL/TLS expiry, with a posture score and grade. No login.

Pricing

from $150.00 / 1,000 domain reports

Rating

0.0

(0)

Developer

๐Ÿ‘ NexGenData

NexGenData

Maintained by Community

Actor stats

0

Bookmarked

2

Total users

1

Monthly active users

11 days ago

Last modified

Share

๐Ÿ”’ Domain Security Posture Checker ยท DNS ยท SPF ยท DMARC ยท TLS

One call returns a security report card per domain โ€” WHOIS age, DNS, SPF/DMARC email auth, SSL/TLS expiry โ€” with a posture score and grade. For security, due-diligence, and sales-engineering teams.

โšก What you get

FieldDescription
score / gradeOverall posture (0-100, A-D)
hasSPF / spfSPF record + value
hasDMARC / dmarcPolicyDMARC + policy
sslIssuer / sslExpires / sslDaysLeftTLS health
registrar / created / expiresWHOIS via RDAP
mx / nameservers / aDNS
findingsHuman-readable issues

๐ŸŽฏ Use cases

  1. Security teams scoring third-party domains
  2. M&A / due-diligence quick risk checks
  3. Sales engineering pre-call audits
  4. Email deliverability (SPF/DMARC) audits

๐Ÿš€ Sample inputs

{"domains":["stripe.com","github.com"]}
{"domains":["yourcompany.com"]}

๐Ÿ“ฆ Sample output

{"domain":"stripe.com","score":90,"grade":"A","hasSPF":true,"hasDMARC":true,"dmarcPolicy":"reject","sslIssuer":"DigiCert Inc","sslDaysLeft":312,"findings":[]}

๐Ÿ“Š Sample Output

๐Ÿ‘ Sample output

๐Ÿ›  How it works

  1. DNS โ€” A/MX/NS/TXT via DNS-over-HTTPS (Cloudflare).
  2. Email auth โ€” parses SPF and _dmarc DMARC policy.
  3. TLS โ€” reads the port-443 certificate (issuer, expiry).
  4. WHOIS โ€” registrar + dates via RDAP.
  5. Score โ€” weighted posture score + grade + findings.

๐Ÿ”— Related Actors

๐Ÿ’ฐ Pricing Example

Pay-per-event: $0.005 per run + $0.15 per domain report (domain-report).

DomainsCost
50~$7.50
200~$30.00
1,000~$150.00
Apify's $5 free credit covers ~33 domains. Start free โ†’

โš–๏ธ Legal & data sources

Public DNS (DoH), public RDAP/WHOIS, and a standard TLS handshake on port 443 โ€” all public, no login. Identified User-Agent.

โ“ FAQ

A vulnerability scanner? No โ€” a posture/hygiene report, not an intrusive scan. DKIM? SPF + DMARC checked; DKIM (selector-specific) on the roadmap. Fresh? Live at run time. Key? No. Bulk? Yes. Scoring? Weighted across SPF, DMARC policy, TLS, and DNS.

๐Ÿ†˜ Troubleshooting

  • SSL invalid/unreachable โ€” host may not serve TLS on 443.
  • No WHOIS โ€” some TLDs have limited RDAP.
  • Low score โ€” check findings.
  • Subdomain โ€” pass the registrable domain.

๐Ÿท๏ธ About NexGenData

Structured public-data tools for analysts, developers, and operators. thenextgennexus.com.

You might also like

DNS, WHOIS, SPF/DMARC, SSL Domain Audit

jungle_synthesizer/dns-domain-audit

Bulk domain audit covering DNS records, WHOIS registration, SPF/DMARC/DKIM email auth, SSL certificate, and reverse DNS. No browser, no proxy -- pure Node, sub-second per domain.

๐Ÿ‘ User avatar

BowTiedRaccoon

2

Domain Security & Email Deliverability โ€” DNS, SPF, DMARC, DKIM

ryanclinton/dns-record-lookup

Audit a domain portfolio for email spoofing, broken SPF, DMARC enforcement, DNSSEC and shadow-SaaS senders. Returns a posture score, what to fix first, vendor dependencies and drift alerts โ€” not just records. Bulk DNS / SPF / DMARC / DKIM lookup, no API keys.

22

Domain Intelligence Lookup

obicodes/domain-intel

Full domain intelligence in one call. Get WHOIS registration data, DNS records, SSL certificate status, IP geolocation, ASN, mail provider detection, and an actionable email security score (SPF, DMARC, MX). Built for developers, security teams, agencies, and growth teams.

DNS Lookup | Scrape Domain Records & Security Intelligence

datascoutapi/dns-lookup

DNS lookup scrapes 22 data points including 10 DNS records (A, AAAA, MX, TXT, NS, CNAME, SOA, SRV, PTR, CAA) + email security analysis ( SPF/DKIM/DMARC), SSL certificate checker, domain monitoring. Processes 100 domains per batch with security scoring.

Email Security Scanner

cerridwen/email-security-scanner

DNS-only email posture for any domain: MX, SPF, DMARC, DKIM probes, MTA-STS, BIMI. No email sent. Returns score + actionable tips. Batch-friendly for CRM domains and compliance snapshots.

Domain Trust Reputation Scraper

taroyamada/domain-trust-monitor

Audit your entire domain portfolio for SSL expiry, DMARC posture, and security headers, outputting an executive summary with clear remediation rows.

Domain Intelligence: WHOIS + DNS Bulk Lookup

scrapemint/domain-intelligence

Pass a list of domains, get WHOIS data, DNS records, and inferred signals like email provider, DNS provider, and SPF/DMARC presence. Built for SDRs, brand protection teams, and email deliverability consultants. One row per domain. Pay per lookup.