mydomainrisk.com

TLS certificate

Valid certificate from a trusted authority · modern TLS 1.3 · renews automatically

HTTP → HTTPS redirect

All plain-HTTP requests permanently redirect to HTTPS

HSTS

Browsers are instructed to always use HTTPS, including subdomains

Certificate transparency

Certificate history reviewed · no unexpected issuers · no subdomain-takeover exposure

CAA records

Not published — any certificate authority may issue certificates for this domain

Content-Security-Policy

Present but permits inline scripts, which weakens protection against injected code

Clickjacking protection

Framing restricted via Content-Security-Policy

X-Content-Type-Options

nosniff — browsers cannot misinterpret file types

Referrer-Policy

Limits what visiting browsers share with other sites

Permissions-Policy

Camera, microphone, and location access disabled by default

SPF record

Present, but may not cover every system that sends mail for this domain

DMARC

Policy is monitoring rather than enforcing — spoofed mail is observed, not rejected

DKIM

No DKIM signature detected on this domain's mail

MTA-STS

Not configured — encrypted delivery to this domain's mailboxes is not enforced

TLS reporting (TLSRPT)

No reporting address — mail-delivery encryption failures go unnoticed

BIMI

No brand-logo record for supporting inboxes (optional, brand trust)

DNSSEC

Not enabled — DNS answers for this domain are not cryptographically signed

Nameserver resilience

All nameservers sit with a single provider — one outage affects everything

Domain registration

Registration healthy · expiry years away · registrar verified

Transfer lock

Registrar transfer lock not set — enable it to block unauthorised transfers

Internet exposure

Only standard web ports visible · no known-vulnerable services detected

Cloud storage exposure

No exposed cloud storage buckets associated with this domain

Google Safe Browsing

Not flagged

Ransomware exposure

Not found on ransomware leak sites

Malware distribution

No malware-hosting records for this domain

IP reputation

Hosting IP shows no abuse pattern across the reputation sources we check

Employee infostealer exposure

No compromised employee credentials found in stealer-log intelligence

Breach exposure

No breach records associated with this domain

Lookalike domains

No concerning lookalike registrations detected

Security.txt

Published — security researchers know how to reach you

GDPR technical baseline

HTTPS enforced, privacy policy present, cookie consent in place, no mixed content

Cookie security

No insecure cookie flags on the homepage response

Third-party trackers

Tag-management tracker detected — confirm a data-processing agreement is in place