I've been building DNSAudit.io in my spare time during weekends and late nights this year. It started as a small personal experiment and slowly grew into a full DNS security scanner.

DNSAudit.io runs fully remote. No setup, no accounts. Just enter a domain, and it analyzes DNS security posture across multiple areas, not only configuration issues.

It currently checks for:

- Weak or missing SPF, DKIM, DMARC - Insecure mail routing - Oversized or suspicious TXT records - Exposed or sensitive subdomains - Missing DNSSEC on zones that need integrity - Old, abandoned, or inconsistent nameservers - Dangerous wildcard setups - Malware or payloads hidden inside TXT records - And more than 50 other security signals across DNS

This has been a fun project to build. It gives me space to experiment, test ideas, and refresh my DNS knowledge. Still early, but I'll keep expanding the scanner monthly.

Would love feedback or criticism!!

Here's the link: https://dnsaudit.io