Scoring Methodology
RedScore evaluates your domain's external attack surface — the same information visible to any attacker with a browser. We scan 10 security categories, score each finding on a weighted point system, and roll everything into a single 0–100 posture score with an A–F letter grade.
The scan is entirely passive and non-intrusive. We only read publicly available DNS records, HTTP responses, certificate transparency logs, and reputation feeds. Nothing on your infrastructure is modified or exploited.
Your overall RedScore is the sum of points earned divided by points possible across all scorable findings. Each check carries a weight reflecting its security impact. Select a category below to see its checks, weights, and remediation guidance.
Grade Scale
A (90–100): Excellent posture. Controls are well-configured with minimal exposure.
B (75–89): Solid posture. Most controls pass with minor gaps to address.
C (60–74):Fair posture. Several areas need attention; common for sites that haven't been hardened.
D (40–59): Weak posture. Significant configuration gaps across multiple categories.
F (0–39): Critical posture. Fundamental security controls are missing or misconfigured.
Categories
Each category is scored independently. Click one to see every check, its weight, pass/fail thresholds, and how to fix common findings.
DNS & Domain Security
8 checks · 120 pts · 3 remediations
Email Security
4 checks · 100 pts · 6 remediations
Infrastructure Hygiene
6 checks · 120 pts · 6 remediations
Web Application Security
4 checks · 154 pts · 7 remediations
Cookie & Privacy Hygiene
4 checks · 100 pts · 13 remediations
Technology Fingerprinting
4 checks · 50 pts · 8 remediations
Public Exposure
4 checks · 100 pts · 13 remediations
Certificate Transparency & PKI Health
4 checks · 100 pts · 13 remediations
Brand & Domain Reputation
4 checks · 100 pts · 14 remediations
Third-Party Risk Surface
6 checks · 45 pts · 18 remediations