Domain Audit

Complete domain audit: DNS records, WHOIS, SSL certificate, SPF/DKIM/DMARC, blacklist check and visual screenshot in one unified report.

Running Domain audit check.
Starting…
This check may take 10–30 seconds. Please wait!

What is Domain Audit?

Domain Audit is a comprehensive analysis tool that combines five separate checks into a single report — DNS records, WHOIS registration data, SSL certificate, SPF/DKIM/DMARC email authentication and blacklist status — plus a website screenshot. Instead of running each tool individually, you get a complete health overview of any domain in seconds.

What does Domain Audit check?

DNS Records

Queries A, AAAA, MX, NS, TXT and CAA records. Each A record IP is also reverse-resolved (PTR lookup) to show the hostname behind it. When the MX points to a spam-filtering service (SpamExperts, SpamFilter, etc.), the tool additionally resolves mail.{domain} to reveal the actual mail server behind the filter.

WHOIS

Domain registration details: registrar, creation/expiry dates, nameservers, EPP status codes. Useful for verifying ownership and renewal deadlines.

SSL Certificate

Verifies the SSL/TLS certificate of the domain. Shows issuer, expiry date, days remaining, Subject Alternative Names (SAN) and hostname match. Warns if the certificate expires within 30 days.

SPF / DKIM / DMARC

Email authentication checks: SPF policy, DMARC policy with parsed tags (p=, rua=, ruf=), and detection of common DKIM selectors (default, google, mandrill, s1, s2, k1, selector1, selector2).

Blacklist

The primary MX IP is checked against 19 major DNS-based spam blacklists (SpamCop, Barracuda, SORBS, UCEProtect, etc.). Any listing means email from that server is at risk of being blocked.

Screenshot

A visual snapshot of the website's homepage, captured via Google PageSpeed Insights. Loads asynchronously to avoid blocking the rest of the report.

FAQ

What does the overall status mean?

✅ all checks passed · ⚠️ warnings (e.g. SSL expiring soon, missing DKIM) · ❌ at least one failure (expired SSL, blacklisted IP, missing nameservers).

Why is the screenshot slower than the rest?

Google PageSpeed Insights typically takes 10–30 seconds. The other checks complete in 1–3 seconds, so the report appears first and the screenshot fills in afterwards.

How long is data cached?

DNS records: 2 minutes. Email auth & blacklist: 5 minutes. WHOIS & SSL: 1 hour. Screenshot: 6 hours. Cache is shared with the individual tools — running the standalone WHOIS first warms the audit's cache.

What about the reverse DNS shown next to A records?

Reverse DNS (PTR record) maps an IP back to a hostname. It helps identify the hosting provider or server role — e.g. 91.107.216.86 ← server.example.com.

DNS Lookup
Query DNS records from multiple resolvers simultaneously
DNS Diagnostics
Full DNS diagnostic check
DNS History
History of DNS record changes
Domain WHOIS
Domain registration & registrar info