Free Online Health Check — no login required

How healthy is your company’s tech?

Enter your domain. Sixty seconds later: a letter grade and your top five fixes. Free, no login — we only look at your public surface.

Online Health Checkpublic-surface checkPUBLIC-SURFACE SCAN

No port scans. No intrusion. Just the checks any security-minded partner runs first.

Since 1996Microsoft PartnerHouston, TXEnglish & 日本語

Methodology

What we check, and why

Five categories, all read from the outside — the same first pass any security-minded partner runs before a conversation.

DNS hygiene

NSMXCNAMESOA

Your domain’s address book. We check that name servers agree, records point where they should, and nothing is left dangling for someone else to claim. Sloppy DNS is the quiet cause of a surprising share of outages and hijacked subdomains.

Email security

TXT v=spf1DKIM selectors_dmarc

Three public records tell the world’s mail servers which senders may use your name. When they’re missing or too loose, anyone can send invoices as you — and your own legitimate mail lands in spam. This is the highest-payoff hour in small-business security.

TLS / certificates

cert chainprotocol versionsexpiry

The padlock on your site — and the protocol versions behind it. We check expiry dates, configuration, and whether retired protocols like TLS 1.0 are still accepted. An old protocol is the open window in an otherwise locked building.

Web performance & Core Web Vitals

LCPCLSpage weight

The same speed signals Google measures on every visit. Slow pages lose visitors before they finish loading and rank lower in search. Most of the fixes are unglamorous — compress images, cache properly — and pay for themselves immediately.

Microsoft 365 / cloud posture

MX → EOPtenant recordsautodiscover

Public signals of how your cloud is set up: where mail is hosted, which tenant records exist, what’s exposed by default. It’s the outside view of the platform your business lives in — and where a permissioned review digs far deeper.

Scope, plainly

We only examine what’s publicly visible — DNS records, mail-authentication records, certificate configuration, and page performance. No login, no agents, no intrusive scanning. A full assessment (with permission) goes much deeper.

Fair questions, straight answers

Is this safe and legal?

Yes. The score reads only what is already public — DNS records, mail-authentication records, certificate configuration, and page speed. It is the same information any browser, mail server, or search engine touches when it interacts with your domain. No login, no port scans, no probing of private systems.

What does the grade mean?

A letter grade, A through F, summarizing five categories of public tech hygiene, weighted toward the issues that carry real risk. An A means your public surface is tight. A B means solid with gaps. C or below means something is costing you money, speed, or safety right now. It reflects your public surface only — a first look, not a full audit.

What happens after I enter my email?

You get one PDF — the full report with a prioritized fix plan — and one follow-up from an engineer in case you want help reading it. That is it. No drip campaign, no newsletter list, and we never share your address.

Can you fix these?

Yes — that is the point. Most urgent items are about an hour of focused work, and we do this every week. Managed IT clients get this continuously: we watch these signals year-round and close gaps before they ever show up on a scorecard.