Spoofing and mail trust
SPF, DKIM, DMARC, BIMI, MTA-STS, and related signals that shape how other systems trust mail from your domain.
External exposure mapping for small businesses
Every domain leaves a public trail. Breach Horizon maps the signals around your business, explains what they mean, and gives you a prioritized route from finding to fix.
Manage client domains? Explore Breach Horizon for MSPs →
Illustrative data / prioritized by severity and business impact
A safe first look
01 / Sample result
Each finding is organized by severity, business impact, and next move so you know what matters now, what can wait, and who should handle it.
These sample findings show how the report connects a public signal to its business impact and practical next move.
Illustrative findings only. Your report is generated from public evidence for your domain.
02 / What we map
Breach Horizon focuses on the public evidence that can affect impersonation risk, customer trust, vendor reviews, and insurance readiness.
SPF, DKIM, DMARC, BIMI, MTA-STS, and related signals that shape how other systems trust mail from your domain.
TLS certificate health, HTTPS enforcement, browser security headers, and publicly visible configuration gaps.
Subdomains, stale vendor records, takeover indicators, typosquats, and public code signals tied to your footprint.
The free scan is an external exposure check—not a vulnerability scan or penetration test. It does not attempt logins, exploit vulnerabilities, install software, or run intrusive port scans.
03 / From signal to fix
A focused workflow that replaces raw technical output with a smaller set of decisions your business can make confidently.
Passive, non-intrusive checks review the signals visible around your domain.
Findings are organized by severity, business impact, confidence, and recommended timing.
Use the guidance, hand the report to your IT provider, or ask Breach Horizon to remediate the priority findings.
Done-for-you remediation
Fixed scope · Fixed quote · No retainer
The scan narrows the conversation to the findings that matter most.
Work begins only after the deliverables and fixed quote are agreed.
Close the sprint with a before-and-after check and a clear handoff.
For managed service providers
Surface visible risks, explain the business impact, and give clients a clearer route from finding to fix.
Only scan domains you own, manage, or are authorized to assess.04 / A safe first look
The free exposure scan is designed to help small businesses understand their public posture without installing software or handing over credentials.
No. It is a passive external-exposure scan. It does not exploit vulnerabilities, attempt logins, or perform intrusive testing. Authorized penetration testing is a separate engagement.
Only scan domains you own, manage, or have permission to assess. MSPs may scan client domains when that authorization is part of their engagement.
No. The free scan reads public signals and does not modify your website, DNS, email configuration, cloud services, or user accounts.
Your results explain the visible evidence, likely business impact, severity, and recommended next move. You decide whether to fix the findings, share them with your IT provider, or request help.
The free scan asks only for the domain you are authorized to assess. Review the privacy notice for current retention and data-handling details before submitting.
Start with the exposed edge
Map the public signals around your business, understand what matters, and leave with a practical route forward.