Breach Horizon
Tools

Exposure Score Tool

Score a domain across email authentication, TLS, and browser security headers before attackers or insurers check it.

DMARC/SPF posture
TLS certificate health
HTTP security headers
Prioritized remediation

Exposure Report

Public-facing scan only. No login, no credentials, and no private network probing. The Exposure Report is the scanner-first view of what attackers, insurers, and vendors can verify from public evidence.

Why this matters

Score a domain across email authentication, TLS, and browser security headers before attackers or insurers check it. The goal is not to create noise. The goal is to turn a visible security signal into a clear next action a business owner, MSP, or IT lead can understand.

Breach Horizon principle
Start with public evidence, explain the business impact, then recommend the safest next step.

What to check

  • Confirm the public signal exists and is current.
  • Record the evidence in a way another person can validate.
  • Separate urgent exposure from normal hygiene work.
  • Link the finding to a remediation guide, tool, or assessment.

Recommended workflow

  1. Run the check or read the assessment criteria.
  2. Save the visible evidence.
  3. Decide whether the finding affects email trust, web trust, identity, backup, or compliance evidence.
  4. Fix the highest-confidence issue first.
  5. Re-test and document the new result.

Need it fixed rather than just found? See remediation services - flat-scope fixes for email authentication, TLS, and header findings, delivered by a practicing MSP engineer.

Output to keep

| Evidence | Why it matters | Owner | | --- | --- | --- | | Current public result | Establishes baseline | IT / MSP | | Recommended change | Shows next action | Technical owner | | Retest result | Proves closure | Reviewer |

FAQ

Is the exposure score tool free?

Yes. Breach Horizon content and public-surface checks are designed as free entry points. Some remediation links may be affiliate links and are disclosed.

Does this require internal access?

No. Tool pages are built around public-surface checks and educational guidance unless clearly stated otherwise.

See what attackers see — before they do.

Run the free passive scan, get a prioritized fix plan, and close the gaps yourself or have us do it for you.