Skip to main content
dnsverifier.com

Acceptable Use Policy

Last updated: 2026-05-11

TL;DR

dnsverifier.com is a free suite of network diagnostic tools intended for use by engineers and security professionals on systems they own or are authorized to test. Using this service to attack, harass, or violate the privacy of third parties is prohibited.

What's allowed

  • Diagnosing your own domains, IP addresses, or those of your employer / clients with written authorization.
  • Research, education, and bug-bounty work that falls under an existing safe-harbor or scope statement.
  • Querying publicly published records (DNS, WHOIS, certificate transparency logs).

What's prohibited

  • Scanning, enumerating, or otherwise probing networks, hosts, or services you do not own and are not authorized to test.
  • Attempts to use this service as an attack proxy, amplification vector, or anonymization layer.
  • Automated / bulk usage that bypasses the rate limits, abuses shared upstream services (crt.sh, Wayback Machine, public DoH resolvers), or otherwise creates undue load on the service.
  • Any activity violating applicable computer-misuse / anti-hacking law (CFAA in the United States, Computer Misuse Act in the United Kingdom, equivalent local statutes).
  • Targeting critical infrastructure, government systems, or hosts located in jurisdictions where unauthorized scanning is a criminal offense regardless of intent.

Tools that carry extra responsibility

The following tools generate traffic toward the target that may be visible in its logs and could be misinterpreted as hostile activity. Use only with authorization.

  • Port Scanner — TCP connect across well-known ports. Private / loopback / link-local addresses are refused at the API.
  • TLS Grader — active probes synthesize raw TLS records (Heartbleed test, version / extension / SNI intolerance, SSLv2 ClientHello) that look unusual in TLS logs.
  • Subdomain Finder — wordlist bruteforce produces a burst of DNS queries against shared public resolvers; CT-log and Wayback Machine queries hit shared third-party APIs.

Enforcement

We may rate-limit, block, or revoke access from any source IP that appears to violate this policy. Egregious or repeated abuse may be reported to the originating network operator and, where appropriate, to law enforcement.

No warranty

The service is provided as-is, without warranty of any kind. Results may be inaccurate, incomplete, or delayed. Do not rely on this service as the sole basis for any security or operational decision. See the Terms for the full disclaimer.

Contact

Abuse reports or questions: abuse@dnsverifier.com