the problem
keeping track of subdomains and their security state is a pain. manual scans can be incomplete, and missed vulnerabilities can lead to security breaches or user data leaks.
the solution
i built an api that performs extensive subdomain enumeration using free dns and certificate transparency logs, then assigns a risk score based on common misconfigurations, outdated endpoints, or exposures.
curl example:
bash
curl -s https://subdomain-risk-ranking.apimesh.xyz/check?domain=example.com
the output:
{
"subdomain": "api.example.com",
"risk_score": 7,
"issues": ["outdated ssl cert", "exposed admin panel"]
}
how it works
it queries dns records and certificate transparency logs for subdomains, then analyzes each for security issues like ssl cert expiry, misconfigured headers, or sensitive exposure. it assigns a risk score from 0 (safe) to 10 (high risk).
try it
get a free preview to see how your subdomains stack up. pricing is $0.005 per check.
https://subdomain-risk-ranking.apimesh.xyz/preview?domain=yourdomain.com
Top comments (0)