Skip to Content
Research with Our Labs
ReconnaissanceReconnaissance – Module Overview

Reconnaissance Modules

This section summarizes all available reconnaissance modules.

Each module has:

  • A Summary page describing what the module does and typical use cases.
  • An Endpoint page with path, parameters, and example requests.

Available Modules

  • Subdomain Finder – Discover hostnames via certificate transparency logs (crt.sh).
  • DNS & Email Security Checker – Inspect DNS, MX, SPF, DMARC, and basic DKIM.
  • Security Headers Analyzer – Evaluate common security headers on HTTP responses.
  • WHOIS / Registration Profile – Retrieve and normalize WHOIS data for a domain.
  • Privacy & Third Parties – Detect privacy signals and third-party integrations.
  • Cookie Security Analyzer – Review cookie flags and basic risk indicators.
  • TLS / Certificate Analyzer – Inspect TLS protocol, cipher, and certificate metadata.
  • CORS Policy Analyzer – Analyze CORS headers and highlight risky configurations.
Last updated on
Subdomain Finder - SummaryTLS / Certificate Analyzer – Endpoint