the problem
managing subdomain security is a pain. endless enumeration, manual checks for misconfigurations, exposed files, outdated endpoints — it all takes time and effort. missing these issues can leave your assets exposed or open to attack.
the solution
introduce subdomain-vulnerability-scorer: an api that exhaustively enumerates subdomains using free dns and certificate transparency logs, then analyzes each for misconfigurations, exposed files, or outdated endpoints, providing a risk score for each subdomain.
GET /check?domain=example.com
// sample output shape
{
"subdomain": "api.example.com",
"risk_score": 7.2,
"issues": ["exposed admin panel", "outdated endpoint"],
"details": {
"exposed_files": ["config.php"],
"misconfigurations": ["ssl mismatch"]
}
}
how it works
this api performs exhaustive enumeration by querying free dns logs and certificate transparency logs. then, it analyzes each discovered subdomain for common misconfigurations, exposed files, and outdated endpoints using content inspection and fingerprinting, scoring each risk accordingly.
try it
get a free preview and test your own domains at https://subdomain-vulnerability-scorer.apimesh.xyz/preview. for full results, costs are just $0.005 per call. start securing your subdomains today.
Top comments (0)