TMTenant MOTStart
FREE · NO LOGIN · < 60 SECONDS

Free domain snapshot

Enter any domain. We'll run a passive scan across DNS, TLS, security headers, and DMARC, score the result, and tell you the top three risks — in well under a minute. No login, no installs, nothing for the customer to click.

What we look at

  • · Email security: SPF strictness, DMARC policy, DKIM hint, MX presence.
  • · Web security: TLS version + cert validity, HSTS / CSP / X-Frame-Options / X-Content-Type-Options / Referrer-Policy.
  • · Identity exposure: security.txt, CAA records.
  • · Network exposure: DNSSEC, authoritative DNS health.

All checks are passive — we never connect to the customer's services with credentials, and we never run anything that an IDS would flag. For a deep assessment of an M365 tenant against Cyber Essentials, see our authenticated scan.

The apex domain (no http://, no path). We'll resolve DNS / TLS / HTTP from there.

Snapshots are passive and use only public sources. Results are cached for 1 hour.