What security issue would you most want to know about your domain?
by•
We built ThreatPort to surface the things that often
go unnoticed — exposed config files, misconfigured DNS,
open services, leaked credentials in source code.
Curious what you'd prioritize if you could see your
full attack surface in one place. What's the blind
spot you're most worried about? 18 views
Replies
I'll go first — in our scans, SPF/DMARC misconfiguration is the #1 silent killer. Most domains have SPF but it's set to ~all (softfail) instead of -all, which still lets attackers spoof the domain. DMARC is missing entirely on the majority. What's yours?