New · Free 1 scan / day

Public Surface Audit

Discover what attackers see about your company. Subdomains, certificates, exposed services — all from public sources. No agent. No setup.

Anonymous: 1 scan / 24 h, top 20 subdomains. Sign up free for the full list.

Example output · example.com

What you'll see after a scan

72
/100
high risk
Subdomains discovered
5
via Certificate Transparency logs (crt.sh)
Currently resolving
4 / 5
live A/AAAA records — likely intentional exposure

Findings

  • Found 3 subdomains with risky tokens [dev(1), staging(1), vpn(1)] — review for exposed dev/admin surfaces.
  • 4 subdomains currently resolve to live IPs — confirm each is intentional.

Subdomains

Sorted by most recent certificate
SubdomainFirst seenIPsIssuer
www.example.com2024-01-1293.184.216.34DigiCert TLS RSA SHA256
api.example.com2023-09-0893.184.216.35Let's Encrypt R3
dev.example.com2024-02-0193.184.216.36Let's Encrypt R3
staging.example.com2024-06-04doesn't resolveLet's Encrypt R3
vpn.example.com2025-01-0893.184.216.37DigiCert TLS RSA SHA256

This MVP scan uses Certificate Transparency only.

Upgrade to Pro for Shodan port + service detection, HIBP breach search, and weekly delta alerts — or a one-time $4.99 scan (coming soon).