See what search engines and AI assistants can read on your site, run a read-only security audit, and research your next domain. The passive audit reviews public security and site-health signals without active exploitation or credential testing. A free account can store audit results and enable monitoring alerts.
Enter a public domain to get a directional report covering potential exposed-secret patterns, security headers, SSL certificate health, selected DNS and email records, blacklist reputation responses, and third-party script tags declared by the homepage. DomainOptic does not currently validate DNSSEC or CAA.
We only scan what a browser can fetch. No endpoint probing or credential validation.
Every result comes with plain-English context and directional next steps.
Check whether search engines can include your homepage and understand its basic information. This separate check reviews search blocking, the preferred page address, title, summary, page language, and structured data. It does not change the security score.
No. The first scan requires no signup, and an account unlocks additional scans, saved history, and monitoring.
We check SSL certificate health, selected DNS records (A, NS, MX, SPF, common DKIM selectors, and DMARC), security headers, reputation signals, and potential secret patterns in public JavaScript. DNSSEC and CAA are outside the current scanner scope.
No. The Secret Scanner only inspects public HTML and JavaScript that a browser can fetch. It does not probe endpoints or validate credentials.
Built for builders who want a clearer first pass over public website signals. No security expertise required - we explain everything in plain English.
Plain-English explanations, a Secret Scanner focused on public code, and A+ to F grading without enterprise complexity or an upsell.
View all frequently asked questions →
A directional public-surface security health check with plain-English results. DomainOptic has no paid plan.
Run Security Audit →
Read all articles →