Security Compliance Monitor

Audit domain settings to identify security & compliance vulnerabilities, and upsell opportunities

Download Info Sheet

Domain Reports

h

Summary Report

All pass/fail test validations for each domain.

DNSSEC

Pass/fail DNSSEC results for each domain.

Email Policy

Pass/fail results from DMARC policy validations.

HTTPS Header

Which domain names have HTTPS enabled.

)

Open Ports

Comprehensive port scans for each domain.

+

Open Relays

Open relay tests on mail servers for each domain.

See report details below

Report Details

What is the Summary Report: Summary report contains all the pass/fail results of available tests and validations for each domain.

Summary Report Details: The following has descriptions of each column in Summary report.

  • IP Address: contains IP address for the domain.
  • Active or Parked: indicates the status of the domain that is active or parked.
  • DNSSEC: indicates whether the domain has passed the requirements for DNSSEC validation. 
  • Open Ports/Security: indicates whether the domain has passed the requirements for open ports and base encryption validation levels.
  • Email security policy: indicates whether the domain has passed the requirements for email security policy validation.
  • Open relays: indicates whether the domain has passed the requirements for Open mail relay validation.
  • HTTP Headers: indicates whether the domain has passed the requirements for HTTP Headers.
  • HTTPS Redirect: indicates whether the domain contains HTTPS redirect.
  • Registrar
  • Registrant
  • Registrant email
  • Registrant Org
  • Registrant State
  • Registrant country

What is DNSSEC? Domain Name System Security Extensions (DNSSEC) is a set of extensions that add security to the Domain Name System (DNS) protocol. DNSSEC uses digital signatures for validation, and that provide the ability for DNS severs and resolvers to trust DNS responses.

What is in the DNSSEC Report? It contains pass/fail result of the DNSSEC validation for each domain and shows the reason for pass/fail.

DNSSEC Report Details: The following has descriptions of each column in the DNSSEC report.

Overall Pass/Fail Indicates whether the domain has passed the requirements for DNSSEC validation.
Reason for Pass/Fail Indicates the pass/fail reason for DNSSEC validation.
Resolution Record Contains the resolution record that used for DNSSEC validation such as IP address.
DNSSEC tag# Contains DNSKEY tag number for the domain.
DNSKEY records

Number of verified DNSKEY records found for domain
DSKEY records Number of verified DSKEY records found for domain
RRSET Tag# verifies RRSET
DS Tag# verifies DS

 

What is Email Policy? Email Policy uses Domain-based Message Authentication, Reporting and Conformance (DMARC) policy which provides robust authentication reporting for email. This email authentication process helps email receivers determine whether the purported message aligns with what the receiver knows about the sender.

What is the Email Policy Report? Email policy report contains pass/fail result from DMARC policy validation using MX and TXT records and shows the reason for pass/fail.

Email Policy Report Details: The following has descriptions of each column in Email Policy report.

  • Overall Pass or Fail: indicates whether the domain has passed the requirements for DMARC validation.
  • Reason for pass/fail: indicates the pass/fail reason for DMARC validation
  • MX records: contains detailed information of MX records for DMARC
  • TXT records: contains detailed information of text records for DMARC

What is the HTTPS Header Report? Http header warnings report shows the testing results of the Http response header for each domain. Listed domains contains overall pass/fail results as well as the reasons of failing Http responses under specific ports.

HTTPS Header Report Details: The following has descriptions of each column in Http Header warning report.

  • Overall pass/fail: indicates whether the domain has passed the requirements for Http Header warning.
  • Location: indicates where information is sent for this specific url.
  • HSTS: HTTP Strict Transport Security (HSTS) forces users to communicate with servers through HTTPS only. This column indicates HSTS status.
  • HSTS Header: contains HSTS response header in an HTTPS reply for this specific url.
  • HPKP: HTTP Public Key Pinning (HPKP) is a security feature that tells a web client to associate a specific cryptographic public key with at certain web server. This column indicates HPKP status.
  • HPKP Header: contains HPKP header for this specific url to be accessed over HTTPS.
  • CSP: Content Security Policy (CSP) helps to detect and mitigate certain types of attacks such as Cross Site Scripting (XSS) and data injection attacks. This column indicates CSP status.
  • CSP Header: contains CSP Header. When CSP header is missing, browsers can use the standard same-origin policy instead.
  • MIME Sniffing Opt-out: MIME Sniffing Opt-out prevents some security issues by examining the content of HTTP responses for MIME type in the Content-Type header. This column indicates MIME Sniffing Opt-out status.
  • MIME Sniffing Opt-out Header: contains MIME Sniffing Opt-out Header.
  • Cross-site scripting filter: The Cross-Site Scripting (XSS) Filter event is logged when a XSS attack is detected and mitigated by browsers. This column indicates the status of XSS Filter.
  • Cross-site scripting filter response header: contains XSS header that reflected XSS attacks.
  • Clickjacking Protection: Clickjacking Protection checks if a resource is allowed to load within a frame or iframe. This column indicates the status of Clickjacking Protection.
  • Clickjacking Protection Response Header: contains Clickjacking Protection response header.
  • Parked: indicates that the header stops at a certain position. If the response contains the header with a value of SAMEORIGIN then the browser will only load the resource in a frame if the request originated from the same site.
  • Redirect: indicates that the domain is being redirected to this specific url.

Open ports report contains the collected data from comprehensive port scan for each domain, and it shows overall pass/fail result as well as the status of individual ports. 

The following has descriptions of each column in Open ports report:

  • Overall pass or fail: indicates whether the domain has passed the requirements for Open ports.
  • Reason for pass/fail: indicates the pass/fail reason for the domain’s open ports.
  • Resolves to: contains the domain’s IP address.
  • MX: contains MX record for the domain.
  • 20 – FTP control: indicates whether the domain FTP control has passed on port 20.
  • 22 – SSH: indicates whether the domain has a valid SSH connection.
  • 23 – FTP data: indicates whether FTP data have transferred correctly on port 23.
  • 25 – SMTP: indicates the status of Simple Mail Transfer Protocol (SMTP) on port 25.
  • 110 – POP3: indicates the status of Post Office Protocol 3 (POP3) on port 110.
  • 143 – IMAP: indicates the status of Internet Message Access Protocol (IMAP) on port 143.
  • 389 – LDAP: indicates the status of Lightweight Directory Access Protocol (LDAP) on port 389.
  • 443 – HTTPS: indicates the status of HTTPS.
  • 500 – ISAKMP: indicates the status of Internet Security Association and Key Management Protocol (ISAKMP).
  • 513 – rlogin: indicates the status of rlogin.
  • 514 – cmd: indicates the status of cmd.
  • 587 – SMTP: indicates the status of SMTP on port 587.
  • 636 – LDAPS: indicates the status of secure LDAP on port 636.
  • 993 – IMAPS: indicates the status of secure IMAP on port 993.
  • 995 – POP3S: indicates the status of secure POP3 server on port 995.
  • 989 – FTPS control: indicates whether the domain FTP secure control has passed on port 989.
  • 990 – FTPS data: indicates whether FTP secure data have transferred correctly on port 990.

Open relays report contains the collected data from open relay test on mail server for each domain and it shows pass/fail result of the open relay test.

The following has descriptions of each column in Open relays report:

  • Overall Pass or Fail: indicates whether the domain has passed the requirements for Open relays.
  • MX openrelay: contains MX record for open relay.
  • MX closed relays: contains MX record for closed relay.
  • Mailservers: contains information about mail servers for the domain.

Reporting Platform

Dashboard

Dashboard shows the results of each report visually. All reports can be added or removed in this page. More details can be seen by clicking the pass/fail results.

Figure 4

Figure 5

For example, the 61 passed domains on ‘Registrants must publish a valid email policy’ can be seen with more details. By clicking ’61 passes’ or blue area with a red arrow in figure 4, the passed results will show up as figure 5.

Navigation

All reports can be found in Reports page. By selecting specific TLD and filtering year and month, custom reports can be searched. Reports are available to download.

Figure 1

Figure 1 indicates where filters for TLD, year and month can be set. Once selected, press ‘Proceed’ button under the filters. Then, the result will be shown under Custom Reports section.

Figure 2

By clicking ‘Download CSV’ button, the specific report can be chosen and downloaded as figure 2 or all the reports can be selected and downloaded as a zip file.

Notifications

In the Automation page, report notification can be managed with some attributes such as a type of report, pass/fail, and interval of the notification. Once a notification is generated, it can be activated, suspended or deleted in this page.

Figure 3

After setting all attributes, press ‘Submit’ button as figure 3 indicates to create a notification. Then, the notification will show up under the setting area with a workflow number.

See Pricing

Audit up to 10 Domains for Free