Tools

Operational utilities backed by the SecDNS control plane. Protective DNS, recursive filtering, and authoritative zone hosting are all wired into these tools.

Policy Import

Starter+

Bulk-upload allow / deny domains from CSV. Validates, dedupes, and pushes rules to a profile via PATCH.

Service

apps/api

ProfilesService

POST /v1/profiles/:id/rules/bulk

Worker

—

Open tool

DNS Security Audit

Free (limited) · Enterprise (full)

Scan domains for SPF, DMARC, DKIM, DNSSEC, AXFR exposure, dangling CNAMEs, and 25+ checks with compliance mapping.

Service

apps/api

NestJS API (ScansModule)

POST /v1/scans
GET /v1/scans/:jobId
GET /v1/scans/:jobId/results

Worker

apps/worker

Celery Worker

tasks.py
dns_scanner.py
worker_listener.py

Open tool

Zone Import

Pro+

Upload a BIND zone file and import records into your hosted zone via PATCH RRsets.

Service

apps/api

ZonesModule

POST /v1/zones
PATCH /v1/zones/:id/records

Worker

—

Open tool

RPZ Policy Test

Starter+

Simulate a DNS lookup against a profile policy. See which allow/deny rule matched (or which blocklists would apply) before deploying.

Service

apps/api

ProfilesService

POST /v1/profiles/:id/test

Worker

—

Open tool