Domain Audit

Complete domain audit: DNS records, WHOIS, SSL certificate, SPF/DKIM/DMARC, blacklist check and visual screenshot in one unified report.

What is Domain Audit?

Domain Audit is a comprehensive analysis tool that combines five separate checks into a single report — DNS records, WHOIS registration data, SSL certificate, SPF/DKIM/DMARC email authentication and blacklist status — plus a website screenshot. Instead of running each tool individually, you get a complete health overview of any domain in seconds.

What does Domain Audit check?

DNS Records

Queries A, AAAA, MX, NS, TXT and CAA records. Below each A record IP it shows the reverse DNS (PTR lookup) — the hostname behind the IP. It also resolves mail.{domain} and webmail.{domain} and shows their A records (with reverse) when present. When the MX points to a spam-filtering service (SpamExperts, SpamFilter, etc.), it additionally reveals the actual mail server behind the filter via mail.{domain}. Next to the MX records the email provider is auto-detected (Google Workspace, Microsoft 365, Zoho, Proton, DNHost, etc.) and shown with its logo.

WHOIS

Domain registration details: registrar, creation/expiry dates, nameservers, EPP status codes. Useful for verifying ownership and renewal deadlines.

SSL Certificate

Verifies the SSL/TLS certificate of the domain. Shows issuer, expiry date, days remaining, Subject Alternative Names (SAN) and hostname match. Warns if the certificate expires within 30 days.

SPF / DKIM / DMARC

Email authentication checks: SPF policy, DMARC policy with parsed tags (p=, rua=, ruf=), and detection of common DKIM selectors (default, google, mandrill, s1, s2, k1, selector1, selector2).

Blacklist

The primary MX IP is checked against 19 major DNS-based spam blacklists (SpamCop, Barracuda, SORBS, UCEProtect, etc.). Any listing means email from that server is at risk of being blocked.

Screenshot

A visual snapshot of the website's homepage, captured via Google PageSpeed Insights. Loads asynchronously to avoid blocking the rest of the report.

Frequently Asked Questions

What does the overall status mean?

✅ all checks passed · ⚠️ warnings (e.g. SSL expiring soon, missing DKIM) · ❌ at least one failure (expired SSL, blacklisted IP, missing nameservers).

Why is the screenshot slower than the rest?

Google PageSpeed Insights typically takes 10–30 seconds. The other checks complete in 1–3 seconds, so the report appears first and the screenshot fills in afterwards.

How long is data cached?

DNS records: 2 minutes. Email auth & blacklist: 5 minutes. WHOIS & SSL: 1 hour. Screenshot: 6 hours. Cache is shared with the individual tools — running the standalone WHOIS first warms the audit's cache.

What about the reverse DNS shown below A records?

Reverse DNS (PTR record) maps an IP back to a hostname. It helps identify the hosting provider or server role — e.g. 91.107.216.86 ↳ server.example.com.