External trust evidence

External domain trust evidence for Web3 and security teams.

Monitor which domains are trusted, exposed, drifting, or ready for review before users and partners do.

12 modules
DNS, email, TLS, web, frontend, phishing, breach, and Web3 trust paths.
Public first
A safe score preview for scanned domains before private evidence is exposed.
Workflow ready
Status, comments, exports, and ownership context for authenticated teams.
Scan a domain
Public score first

Public scores only appear for domains already scanned in VANTAGE. If no score appears, sign in or request access to run the first scan and generate the full report. Public lookups are rate limited to 10 requests per IP per minute.

Live report previewEvidence attached
web3sec.news
72
public score
Risk band
Medium
DNS
84
Email
62
Web3
78
HighDMARC policy needs enforcement
Open
Email spoofing and brand-abuse risk is visible before a launch or review.
MediumFrontend dependency drift
Reviewing
Runtime packages changed since the approved baseline.
LowCAA policy can be tightened
Assigned
Certificate issuance policy should be explicit for trusted authorities.
InfoENS and contract evidence attached
Verified
Wallet-facing trust paths sit beside DNS, mail, and web controls.
A report surface, not a brochure surface
Public visitors can inspect a safe score preview. Signed-in teams get the full evidence trail, workflow state, comments, and exports tied to the same domain.
Public score examples

Safe public previews from scanned domains.

Recent cached scores are stripped to safe summary fields so visitors can see what the public benchmark returns.

Check another domain
Loading recent public scores.
Evidence VANTAGE collects

One domain security report across the controls that determine whether a domain can be trusted.

Domains carry product traffic, wallet prompts, support journeys, docs, governance, APIs, and customer review evidence. The scan keeps those signals in one place so risk is not split across disconnected tools.

DNS control
Registrar state, expiry, nameserver drift, DNSSEC, CAA, wildcard DNS, and ownership evidence.
Email trust
DMARC, SPF, DKIM, MX, MTA-STS, spoofing exposure, and blacklist context.
Web exposure
HTTPS posture, certificates, headers, exposed services, admin/API clues, and CDN/provider signals.
Attack surface
Forgotten hosts, stale infrastructure, takeover indicators, public ports, and third-party dependencies.
Client-side integrity
Runtime scripts, package evidence, dependency drift, vulnerable frontend components, and baseline changes.
Web3 trust
ENS, content hashes, contracts, EIP-1967 proxies, RPC auth probes, wallet lists, phishing, and lookalikes.
Remediation workflow

The finding stays connected to its evidence, status, and export.

VANTAGE is shaped around the operational loop after discovery: confirm the issue, track ownership, leave comments, close the gap, and produce a current report without copying raw scanner output into another tool.

01
Scan

Run an external scan

Start with the public score, then attach authenticated evidence, history, and report exports.

02
Triage

Prioritize findings

Severity, affected assets, evidence, and remediation guidance stay together in one queue.

03
Resolve

Track ownership

Teams can keep workflow status and comments beside the finding instead of in a separate spreadsheet.

04
Prove

Export current evidence

Reports are generated from the latest workflow state so reviews see what is actually open.

Portfolio view

Treat trusted domains like product infrastructure.

The same organization may rely on app, docs, wallet, support, governance, API, redirect, launch, and regional domains. VANTAGE gives those assets a common evidence model and review path.

User paths
App, wallet, support, docs, governance, API, launch, and regional domains that users already trust.
Drift monitoring
Recurring scans compare ownership, DNS, certificate, frontend, and exposure changes over time.
Review packets
Public summaries help triage; private reports carry evidence for customers, partners, and internal reviews.
Private workspace
Move from public score to owned remediation
Public scores are quick triage for cached domains. Private scans create the evidence, ownership context, remediation steps, exports, API access, monitoring, and review history teams need to actually close risk.
Priority
High-value domains ranked by exposed impact.
Drift
DNS, TLS, frontend, and ownership changes tracked over time.
Web3
Wallet-facing ENS, contract, proxy, RPC, and phishing evidence.
Evidence
Readable artifacts for security, product, leadership, and customers.