Example Domain Security Report

See What JCPIT Checks Before You Share Business Details

The Domain Scanner gives an Instant score first, then unlocks the full report after a quick business contact step. This sample shows the report structure, how findings are explained, and the kind of next steps JCPIT recommends without exposing real client data.

Run the Domain Scanner Request an Assessment
Sample Report Preview

Built to Make Public Risk Understandable

The real scanner checks public signals only. JCPIT turns those signals into a plain-English report so owners can see what matters, what can wait, and where a deeper assessment is useful.

Domain and email authentication checks

Email trust

We review SPF, DKIM and DMARC signals to show whether attackers may be able to impersonate your business email, and whether records are missing, weak, or overloaded.

  • SPF record found and lookup pressure checked
  • DKIM presence explained in business language
  • DMARC policy strength and monitoring status

Exposed service checks

Attack surface

The sample highlights public services and website signals that may increase risk, such as exposed admin surfaces, outdated fingerprints, or services that need review.

  • Public website and service exposure summary
  • Plain-English note on why each signal matters
  • Triage guidance for what to verify internally

SSL and DNS signals

Trust basics

We show whether the domain has healthy certificate and DNS signals, then explain where weak configuration can affect trust, deliverability, or resilience.

  • SSL certificate status and expiry signals
  • DNS hygiene observations
  • Follow-up items for hosting or DNS providers
How the Score Works

Risk score explanation

The score is a guide to prioritise action, not a pass or fail certificate. Missing email authentication, visible risky services, weak SSL or DNS signals, and high-impact findings lower the score.

High-risk findings are explained first.
Medium findings show what should be reviewed soon.
Healthy signals are included so the report is balanced.
Sample Finding

DMARC is monitoring only

What it means: your domain can collect email authentication data, but suspicious mail may not yet be rejected. Recommended next steps: confirm legitimate senders, tighten SPF and DKIM alignment, then move policy in stages.

Review soonPriority
Email authenticationArea
Confirm sendersNext action
What Happens Next

Recommended next steps

Run the scanner for an instant score, unlock the report when the business contact step appears, then use the recommendations to decide whether you need DNS, Microsoft 365, email security, or broader risk assessment help.

Run the Domain Scanner Request the Full Assessment