Privacy controls
CyberFurl can load analytics only after you opt in. Core product features work without analytics consent.
Run free frontend-powered checks for email security, DNS posture, web exposure, and brand-risk signals. Each page uses the same public tool workflow and can be upgraded into the full CyberFurl workspace when you need monitoring and deeper evidence.
Email Security
Validate DMARC policy, reporting configuration, and enforcement posture for your domain.
Inspect SPF records, included senders, and validation issues before they affect mail delivery.
Expand nested SPF includes to understand the full sender footprint and reduce lookup overhead.
Check DKIM record availability and signing material to confirm mail authentication is published correctly.
Check whether BIMI branding records are present and aligned with your mail-authentication setup.
Validate MTA-STS records and policy publication to harden inbound SMTP transport.
Inspect TLS reporting records so you can receive delivery-failure telemetry for secure email transport.
Look for TLSA records and review whether DANE is published for your mail infrastructure.
DNS Tools
Query DNS records for a domain and review authoritative record data in one place.
Check whether DNSSEC is enabled and review signed-zone indicators returned by the backend.
Review how DNS changes appear across resolvers and detect stale propagation after updates.
Benchmark public resolvers and compare average latency to find the best-performing option.
Measure resolver response times for a domain and identify latency bottlenecks.
Inspect TTL behavior and cache consistency across resolvers for the target domain.
Check whether DNS queries appear exposed or inconsistent based on the backend leak analysis.
Verify whether the target supports DNS over TLS and whether port 853 is reachable.
Check whether the resolver supports EDNS extensions and inspect UDP size or DNSSEC flags.
Check whether the domain appears exposed to zone transfer or related enumeration risk.
Web / SSL / Infra
Inspect certificate health, TLS posture, and HTTPS trust signals for a public domain.
Analyze HTTP security headers and review protection gaps that affect browser-side hardening.
Inspect the active HTTP response headers returned by the target host.
Scan open ports for a host and review exposed services that may broaden attack surface.
Retrieve ownership, registrar, and registration lifecycle details for a domain.
Resolve PTR data for an IP or host to understand reverse mapping and infrastructure labeling.
Review hop-by-hop network path data and latency metrics for a public target.
Discover subdomains associated with a target domain and review exposed assets.
Threat / Brand
Review public breach exposure signals, provider coverage, and evidence for a target domain.
Discover lookalike domains and review which variants may carry higher brand or phishing risk.
Check the hostname behind a URL or domain against phishing-oriented threat intelligence surfaced in the frontend.
Check whether a domain appears on common DNSBL-style lists exposed through the email-security surface.
Review malware and malicious-domain intelligence already exposed by the frontend for a target domain.
Inspect published CNAME records so you can review whether any third-party references may need closer takeover analysis.