Every free DomainScan tool in one place — domain, DNS, IP, security, email auth and developer utilities, each with AI analysis.
Browse the full catalog. Every tool runs anonymously with no signup, returns structured JSON via the public REST API, and ships with a plain-language AI analysis layer on top of the raw output. Pick a category below or jump straight to the most-used tools.
Domain tools — WHOIS, DNS, email authentication, AI readiness
Ten tools covering registration data, DNS resolution, email authentication and AI search visibility:
Owner, age, expiry, registrar, nameservers, DNSSEC, status codes. RDAP-first with WHOIS fallback. AI analysis on every result.
Query A, AAAA, MX, TXT, CNAME, NS, SOA, CAA, SRV against Cloudflare, Google, OpenDNS or Quad9 resolvers.
Verify a DNS change has propagated worldwide — per-resolver agreement, response times and geographic spread.
Composite 0–100 health score across WHOIS, NS, SPF, DMARC, SSL and blacklist with AI-generated fix recommendations.
NS records with IP resolution, response times, propagation status and health.
Desktop and mobile screenshots via Playwright. Configurable viewport, full-page capture, format and quality.
Validate SPF — DNS lookup count vs the 10-lookup limit, mechanism expansion, policy strength.
Inspect DMARC policy, enforcement, alignment and reporting addresses.
Verify DKIM by selector — public key, key strength, DNSSEC status.
Is your site visible to GPTBot, ClaudeBot, PerplexityBot? Checks robots.txt AI policies, llms.txt, structured data, JS rendering.
Network & IP tools — geo, reputation, routing, ports
Eight tools spanning IP intelligence, network diagnostics and subnet math:
Your IPv4 and IPv6 with geo, ISP, ASN, hostname, trust score and VPN-detect.
Look up any IPv4 or IPv6 — geolocation, ISP, hostname, reverse DNS, ASN, organization, trust score.
Online ping — latency, packet loss, connection stability with mean / min / max / stddev.
All known domains hosted on an IP. Useful for shared-hosting investigation.
Check if any TCP port is open. Returns open / closed / filtered with service name.
Visual traceroute with per-hop latency, IP, hostname and ASN. Map the network path.
Network address, broadcast, mask, wildcard, total / usable hosts. IPv4 and IPv6.
Query an IP against multiple major DNSBL and reputation lists. Trust score and remediation links.
Security tools — TLS, headers, email auth, hardware identity
Four security primitives that cover most production audit needs:
Validity, issuer, trust chain, key strength, protocols, ciphers and overall grade.
HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy with a grade.
Single-call audit of SPF + DMARC + DKIM. Verifies anti-spoofing posture end-to-end.
Device manufacturer from MAC. Resolves OUI to vendor, country and device category.
Developer utilities — JWT, hashing, IDs, encoding
Five client-side utilities. All computation runs in your browser — secrets never leave the page:
Generate signed JWTs with custom claims, headers and expiration. HS256 / HS384 / HS512 / RS256 / RS384 / RS512.
Decode any JWT in-browser. Header, payload, claims, signature, expiration status. Optional local signature verification.
MD5, SHA-1, SHA-256, SHA-384, SHA-512 for text or files. Web Crypto API — runs locally.
Generate UUIDs in every common version. Bulk mode for large volumes.
Text or file input. Supports Base64URL variant.
Prism AI — conversational diagnostics across the full catalog
Don't want to pick a tool? Ask Prism AI. The assistant selects from all 50+ tools, runs them in parallel where appropriate, and synthesizes a single coherent answer with citations to the underlying data.
- "Is example.com safe?" Triggers Domain Lookup + Health + Blacklist + SSL Info in parallel — five tools, one synthesized verdict.
- "Why aren't my emails getting delivered?" Pulls SPF + DKIM + DMARC + IP Blacklist. Identifies the specific misconfiguration causing the bounce.
- "Generate a SHA-256 hash of hello" Runs the developer Hash Generator in-context. Returns the hash inline.