DarkHorse IT Security Scanner

We are a managed-service provider, and when we go to clients we have always had to check their security posture using multiple different tools. One website to check whether their email was set up correctly, another to check whether their website security headers were configured, another to check SSL. The information was scattered, the workflow was clunky, and prospects could not run the same checks on themselves without paying for or signing up to those separate tools.

---

We incorporated those services into a single tool and made it free to the public to use. Type a domain, get a report, no signup. Our clients can also come and check whether their email is set up using current best-practice security requirements, because if those are not met the chances of an email reaching somebody's inbox drop significantly. Without DMARC, DKIM, and SPF set up correctly in the DNS, an email cannot be verified as coming from a legitimate source, so most servers route it to spam or junk.

The scanner explains all of that in plain English. It checks email authentication (SPF, DKIM, DMARC), security headers, SSL/TLS, blacklist status, and detected technology stack, and it returns a single report with remediation guidance per finding.

We also published an open-source repo on GitHub. The tool that does the security checks is open and transparent, and can be audited itself. We rigged the public-facing version into our sales workflow, but the audit logic is not hidden behind a paywall or a black box.

---

Our managed-services team uses it on every client domain we touch. Prospects use it on their own domain and discover at least one issue in email auth, headers, or blacklist status almost every time, which becomes the conversation starter. Open-sourcing the check engine on GitHub keeps the tool honest: anyone can read the code, audit the logic, and trust the result.

---