Hazumi News | Show HN: Dnsaudit.io – A Free Advanced DNS Security Scanner for Real-World Risks

Hi HN,

I've been building DNSAudit.io in my spare time during weekends and late nights this year. It started as a small personal experiment and slowly grew into a full DNS security scanner.

DNSAudit.io runs fully remote. No setup, no accounts. Just enter a domain, and it analyzes DNS security posture across multiple areas, not only configuration issues.

It currently checks for:

- Weak or missing SPF, DKIM, DMARC - Insecure mail routing - Oversized or suspicious TXT records - Exposed or sensitive subdomains - Missing DNSSEC on zones that need integrity - Old, abandoned, or inconsistent nameservers - Dangerous wildcard setups - Malware or payloads hidden inside TXT records - And more than 50 other security signals across DNS

This has been a fun project to build. It gives me space to experiment, test ideas, and refresh my DNS knowledge. Still early, but I'll keep expanding the scanner monthly.

Would love feedback or criticism!!

Here's the link: https://dnsaudit.io

Summary

dnsaudit.io is a tool that provides a comprehensive DNS audit, analyzing a domain's DNS configuration and identifying potential issues or vulnerabilities. The tool offers detailed reports and insights to help users improve their domain's security and online presence.

Story

Show HN: Dnsaudit.io – A Free Advanced DNS Security Scanner for Real-World Risks