What's Included

Your RedRadar report covers all 6 OSINT reconnaissance modules that security teams and attackers use to map your external footprint:

• 🌐 Domain & Subdomain Enumeration — Full subdomain map, orphaned records, zone transfer exposure, and dangling DNS vulnerabilities
• 🔒 TLS & Certificate Analysis — Certificate validity, cipher suite strength, HSTS configuration, wildcard risk, and CT log anomalies
• 📦 Open Ports & Exposed Services — Internet-facing services, Shodan/Censys indexed findings, exposed admin panels, and database port exposure
• 📧 Email Security (SPF / DKIM / DMARC) — Full email authentication audit: misconfiguration severity, phishing risk level, and step-by-step remediation
• 🔑 Leaked Credentials & Repository Exposure — Employee credentials in breach databases, exposed API keys and secrets in public repositories, paste site mentions
• 🏢 Brand & Reputation Signals — Typosquatted domains, phishing campaigns impersonating your brand, dark web mentions and forum references

Who This Is For

• Startup founders preparing for enterprise deals — Get ahead of procurement security reviews with documented findings and a remediation history
• Technical co-founders and engineering leads — Know your external exposure without spending days running tools manually
• Series A and Series B companies — Security due diligence is standard in fundraising. Have your external posture documented before investors ask

How It Works

1. Order and submit your domain — Complete your order and provide your primary company domain. No account setup, no agents, no access to your systems required.
2. RedRadar runs reconnaissance — Our OSINT pipeline runs all 6 modules against your external footprint within 24 hours.
3. Receive your PDF report — A prioritized PDF with every finding, severity rating, context, and recommended fix. Ready to share with your team, board, or enterprise prospects.

Frequently Asked Questions

Do you need access to my systems?
No. RedRadar is entirely passive OSINT — we only use publicly available data sources. We never touch your servers, request credentials, or require network access.

How is this different from a penetration test?
A penetration test requires scope agreements, legal review, and active probing of your systems. RedRadar is a passive external reconnaissance report — faster, lower-friction, and focused specifically on what's already visible from the outside. Many customers use RedRadar first to identify surface-level findings, then engage a pen tester for deeper testing once the basics are resolved.

What format is the report delivered in?
You receive a PDF report. Findings are organized by severity (Critical → High → Medium → Low), each with a description, risk explanation, and remediation guidance.

How soon will I receive the report?
Reports are typically delivered within 24 hours of order submission. Complex or large infrastructure may take up to 48 hours.

Can I share the report with enterprise prospects or auditors?
Yes. The report is designed to be shareable. Many customers include it in their vendor security packages or reference it when responding to security questionnaires.