Email authentication
Use a DMARC monitoring or managed DNS workflow when SPF, DKIM, and DMARC findings show spoofing risk.
Recommended tools and remediation categories for findings surfaced by the Breach Horizon Exposure Scan. This page is intentionally practical: start with public evidence, fix the highest-confidence issue, then re-test.
Use a DMARC monitoring or managed DNS workflow when SPF, DKIM, and DMARC findings show spoofing risk.
Use platform-native header rules first, then add a CDN or edge rule set when the CMS cannot enforce HSTS, CSP, and frame protection cleanly.
Use managed certificates, uptime checks, and renewal alerts so certificate expiry and redirect drift do not become insurance or trust findings.
Run the Exposure Report again after each change and keep before/after evidence for vendors, insurers, or leadership.
Run the free passive scan, get a prioritized fix plan, and close the gaps yourself or have us do it for you.