Tool: port-range-scanner, Improvement: added live HTTP surface auditing on detected web ports with per-endpoint status, redirect target, HTTPS upgrade, HSTS, server, and content-type evidence, Impact: each run now exposes measurable redirecting-web-port, HTTPS-upgrade, HSTS-covered, and non-HTML web-surface counts so mixed web edge posture can be triaged from the scan itself without separate follow-up header checks.
timestamp
2026-03-31 23:40 UTC
(2026-04-01 01:40 Europe/Amsterdam)
Tool: internet-speed-test, Improvement: added a trend and congestion tracker that saves jitter, packet loss, loaded latency, and bufferbloat per run and compares the current result against the user's own recent median and best measurements, Impact: each run now exposes measurable download drift, upload drift, ping drift, and bufferbloat drift versus personal baseline so peak-hour congestion and line degradation can be spotted from the built-in history instead of manual spreadsheet comparison.
timestamp
2026-03-31 22:40 UTC
(2026-04-01 00:40 Europe/Amsterdam)
Tool: mx-lookup, Improvement: added per-family SMTP reachability auditing that probes sampled IPv4 and IPv6 MX endpoints separately and classifies each exchanger as dual-stack reachable, IPv4-only reachable, IPv6-only reachable, or unreachable on sampled paths, Impact: each run now exposes measurable dual-stack, IPv4-only, IPv6-only, and unreachable MX target counts plus per-family sampled connection latency so inbound mail IPv6 rollout gaps can be spotted without separate manual SMTP tests per address family.
timestamp
2026-03-31 21:57 UTC
(2026-03-31 23:57 Europe/Amsterdam)
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-31 21:57 UTC and 2026-03-31 23:57 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
timestamp
2026-03-31 21:40 UTC
(2026-03-31 23:40 Europe/Amsterdam)
Tool: ns-lookup, Improvement: added delegated nameserver recursion exposure auditing that directly probes every authoritative nameserver with an unrelated A lookup and reports recursion-available flags, open recursion detections, possible recursion cases, and restricted responders, Impact: each run now exposes measurable open-recursion, restricted, and ambiguous nameserver counts plus per-nameserver RA and answer evidence so authoritative DNS security drift can be spotted without separate manual recursion testing.
Show all changes (465)
Tool: tls-expiry-monitor, Improvement: added live OCSP stapling and Must-Staple auditing across resolved endpoints by probing stapled OCSP responses during the TLS handshake and parsing TLS Feature coverage from the served leaf certificate, Impact: each run now exposes measurable stapled-versus-unstapled endpoint counts, OCSP response-status coverage, stapling state variants, and Must-Staple coverage so revocation posture can be verified directly at the serving edge instead of inferred only from published OCSP URLs.
Tool: dns-leak-test, Improvement: added dual-provider metadata consensus for both the public IP path and detected resolver path using ip-api plus ipwho.is, with confidence grading and softer mismatch scoring when providers drift, Impact: each run now exposes 2-provider country and ASN consensus for both sides and is expected to cut false leak alerts caused by single-provider geolocation or ASN drift while showing clear metadata-confidence evidence.
Tool: spf-checker, Improvement: added a flattened SPF publishing planner that converts the expanded live authorization graph into a copy-ready ip4 or ip6 record, estimates TXT size, flags 255-plus and 450-plus character risk, and suggests exact TXT string split chunks, Impact: each run now exposes 1 deployable flattened SPF draft plus measurable token count, character length, chunk count, and uncovered A or MX IP carryover so operators can move over-limit SPF policies toward zero DNS lookup dependence without manual flattening or TXT split math.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-31 17:57 UTC and 2026-03-31 19:57 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: reverse-dns, Improvement: added reverse-zone DNSSEC auditing that checks DS delegation, DNSKEY presence, KSK and ZSK split, and algorithm visibility for each discovered reverse zone, Impact: each run now exposes measurable signed, unsigned, and incomplete reverse-zone DNSSEC counts plus live key and algorithm evidence so PTR trust can be evaluated without separate DS or DNSKEY dig queries.
Tool: ipv6-checker, Improvement: added browser-race style IPv4-versus-IPv6 winner analysis that runs paired provider races and reports which family wins, ties, or succeeds alone per round, Impact: each run now exposes 6 paired first-connection race outcomes plus clear IPv4-win, IPv6-win, tie, and family-only totals so dual-stack users can see expected browser path preference without manually comparing separate latency tables.
Tool: whois-lite, Improvement: added RDAP lifecycle freshness auditing with renewal-window, last-change age, transfer recency, RDAP refresh age, reinstantiation visibility, and deletion-event signals, Impact: each run now exposes 8 concrete lifecycle signals plus a healthy-watch-high-risk verdict so renewal urgency, stale registration metadata, and recent ownership or recovery events can be triaged without manual RDAP event parsing.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-31 13:57 UTC and 2026-03-31 15:57 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: dnssec-validator, Improvement: added live negative-answer DNSSEC proof auditing that queries a random nonexistent hostname per resolver and inspects NXDOMAIN authority data for NSEC or NSEC3 evidence, AD visibility, and authority-section type coverage, Impact: each run now exposes measurable resolver-level NSEC and NSEC3 proof counts plus direct NXDOMAIN proof visibility so authenticated denial-of-existence can be checked on the real negative-answer path instead of inferred only from apex metadata.
Tool: port-checker, Improvement: added live HTTP response auditing on web ports with status line, redirect target, HTTPS-upgrade visibility, HSTS presence, server header capture, and content-type evidence, Impact: each run now exposes measurable HTTP status, redirect, HTTPS-upgrade, HSTS, and server-header counts so web-service posture can be triaged directly from the port scan without separate HTTP header follow-up.
Tool: website-pagespeed, Improvement: added a cache TTL efficiency audit that classifies Lighthouse cache findings into short-cache, uncacheable, and long-cache asset buckets with host-level flagged-byte visibility and median cache-lifetime reporting, Impact: each run now exposes measurable flagged-asset count, flagged-byte volume, host spread, uncacheable count, and median TTL so repeat-visit browser caching gaps can be triaged without manual Lighthouse JSON parsing.
Tool: http-headers, Improvement: added rate limit surface analysis that normalizes modern RateLimit headers, legacy X-RateLimit families, Retry-After pacing, reset timing, and quota utilization into one audit panel, Impact: each run now exposes up to 11 concrete quota telemetry signals with utilization and pacing evidence so API throttling posture can be checked without separate manual header parsing.
Tool: security-headers-score, Improvement: added HSTS preload readiness auditing that checks final HTTPS status, max-age, includeSubDomains, preload token, and a dedicated preload verdict with scoring impact, Impact: each run now exposes 5 concrete HSTS preload signals and removes the manual browser preload checklist for 100% of analyzed URLs.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-31 09:57 UTC and 2026-03-31 11:57 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: redirect-checker, Improvement: added redirect canonicalization intent analysis that classifies each hop as HTTPS upgrade or downgrade, WWW or apex normalization, cross-host shift, port change, trailing slash cleanup, index-file cleanup, path case normalization, path rewrite, path expansion, or path shortening with a dedicated summary and per-hop labels, Impact: each run now exposes measurable canonicalization counts across 13 rewrite patterns so SEO, migration, and routing teams can see exactly what each redirect hop is doing without manual URL-diff inspection.
Tool: traceroute-viewer, Improvement: added hop address-scope auditing that classifies each visible hop as public, private RFC1918, CGNAT, unique-local IPv6, link-local, transition, loopback, documentation, or other special-use space with a dedicated signal panel and per-hop scope notes, Impact: each run now exposes measurable non-public-hop, CGNAT-hop, first-public-hop, and last-non-public-hop visibility so nested routing, ISP carrier NAT, and legacy tunnel paths can be diagnosed without separate manual IP-range checks.
Tool: dns-lookup, Improvement: added DNSSEC and rollover record support for DS, DNSKEY, CDS, and CDNSKEY with parsed key-role and algorithm visibility plus a dedicated audit table, Impact: each run now exposes measurable DS, DNSKEY, CDS, and CDNSKEY coverage with KSK-like versus ZSK-like split and algorithm counts so live DNSSEC delegation and rollover readiness can be checked without separate raw dig queries.
Tool: cidr-subnet-calculator, Improvement: added explicit IPv4 and IPv6 start-end range analysis with smallest-covering CIDR output plus exact CIDR cover decomposition, Impact: each run now turns a raw IP range into 1 summary CIDR and the exact block list needed to represent it without manual binary subnet math or separate range-to-CIDR tools.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-31 05:57 UTC and 2026-03-31 07:57 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: user-agent-analyzer, Improvement: added reduced UA detection with browser identity recovery from Client Hints and live runtime signals, Impact: each run now exposes measurable UA-reduction confidence plus recovered browser version and platform-detail evidence so frozen Chromium UA strings can be separated from full-fidelity identities without separate manual Client Hints inspection.
Tool: ip-reputation-lookup, Improvement: added live abuse mailbox deliverability validation that checks whether published RDAP abuse contact domains actually accept mail via MX, implicit MX, or Null MX, Impact: each run now exposes measurable abuse-mail-reachable, abuse-mail-unreachable, and abuse-Null-MX endpoint counts so published-but-undeliverable abuse contacts can be spotted without separate MX follow-up.
Tool: cdn-waf-detector, Improvement: added live edge network ownership auditing that enriches each forced endpoint probe with ASN, network owner, and country evidence and flags mixed-ownership edge rollouts across the tested IP set, Impact: each run now exposes measurable tested-edge ASN and owner consistency so ambiguous header-only CDN or WAF detections can be cross-checked against real edge network footprint in the same report.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-31 01:57 UTC and 2026-03-31 03:57 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: http2-http3-checker, Improvement: added active Alt-Svc authority verification that parses advertised h3 authorities and ports, safely probes up to 3 public advertised Alt-Svc targets, and reports whether each advertised authority actually negotiates HTTP/3, Impact: each run now turns HTTP/3 Alt-Svc hints into measurable verified-versus-failed advertised-authority evidence across up to 3 advertised targets, reducing false confidence from header-only h3 advertising when the advertised authority or port does not actually serve HTTP/3.
Tool: dns-propagation, Improvement: added modern DNS record propagation support for HTTPS, SVCB, CAA, and SOA plus canonical answer normalization for service-binding parameters, TTL-bearing SOA fields, and CAA values, Impact: each run now supports 4 additional high-value DNS record workflows and reduces false propagation drift from parameter-order or formatting differences when comparing modern HTTPS or SVCB answers across resolvers.
Tool: tls-checker, Improvement: added direct IP endpoint support with optional SNI and hostname-match override so certificates can be checked against origin IPs, load balancer addresses, and non-DNS test endpoints while still validating the intended hostname, Impact: each run now supports a clear new origin-IP verification workflow and exposes measurable direct-IP versus hostname-target context with explicit SNI basis, removing the separate openssl s_client plus manual hostname check step for this common TLS debugging case.
Tool: robots-sitemap-validator, Improvement: added live hreflang auditing on sampled sitemap URLs to detect missing self-references, duplicate language codes, invalid alternate targets, x-default gaps, and cross-host alternates, Impact: each run now exposes measurable hreflang cluster counts and sample-level alternate evidence so multilingual sitemap issues can be spotted without separate page-source checks.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-30 21:53 UTC and 2026-03-30 23:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: bulk-dns, Improvement: added bulk HTTPS service binding auditing that parses HTTPS RR records for ALPN, alias-mode, ECH, and IPv4 or IPv6 hints across every checked domain, Impact: each run now exposes measurable HTTPS-RR, ALPN, ECH, alias-mode, and address-hint coverage counts so modern HTTP endpoint rollout gaps can be spotted across up to 100 domains without separate dig HTTPS follow-up.
Tool: reverse-ip-lite, Improvement: added live-site clustering that groups sampled domains by final registrable root with page-title fallback so aliases, mirrors, and tenant variants collapse into shared site clusters instead of looking like separate properties, Impact: each run now exposes measurable live-site-cluster, multi-domain-cluster, clustered-domain, and largest-cluster counts so reverse-IP noise from duplicate live sites is reduced into actionable grouped evidence.
Tool: ip-location-lookup, Improvement: added optional reference-target comparison that resolves a second IP, hostname, or URL and measures closest, median, P90, and farthest target-to-reference geolocation distance with same-city, same-country, and same-ASN overlap verdicts, Impact: each run now supports a clear origin-vs-edge or user-vs-service workflow with measurable cross-target distance bands and overlap counts, removing separate manual geo comparison steps.
Tool: geo-latency-estimator, Improvement: added dual-provider geolocation consensus using ip-api and ipwho.is with per-endpoint country alignment, coordinate-drift distance, provider evidence, and explicit location-confidence grading, Impact: each run now exposes measurable source and target geo-confidence plus per-endpoint coordinate drift in km so location-based RTT estimates can be trusted or discounted without separate geo cross-checking.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-30 17:53 UTC and 2026-03-30 19:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: email-deliverability-check, Improvement: added DKIM selector strength auditing that classifies common selectors by key type, estimated key size, revoked status, and testing-mode flags with a dedicated selector-strength table and summary check, Impact: each run now exposes measurable strong, weak, revoked, and Ed25519 selector counts so weak DKIM signing posture can be spotted without separate key parsing or DNS follow-up.
Tool: dmarc-checker, Improvement: added a recommended fixes table with ready-to-publish DMARC and external reporting authorization TXT examples generated from the live lookup, Impact: turns each weak or misconfigured DMARC result into immediate copy-ready DNS actions, reducing manual remediation drafting from multiple steps to 0 for the common fix paths.
Tool: webrtc-leak-test, Improvement: added multi-probe exposure persistence auditing that classifies leaked public, private, local IPv6, and mDNS candidate addresses as stable, recurring, or transient across the STUN probe set, Impact: each run now exposes measurable stable, recurring, and transient leak counts plus per-address STUN recurrence percentages so repeatable WebRTC leaks can be separated from one-off candidate noise without manual probe-by-probe comparison.
Tool: internet-speed-test, Improvement: added burst-versus-sustained throughput profiling that compares the early transfer window against the sustained final window for both download and upload, with peak headroom and hold-up verdicts, Impact: each run now exposes measurable early-versus-sustained speed change and peak-to-sustained headroom so short burst speed can be separated from long-transfer reality without manual stopwatch sampling.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-30 13:53 UTC and 2026-03-30 15:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: ipv4-checker, Improvement: added dual-provider IP metadata consensus using ip-api and ipwho.is with per-IP provider coverage and alignment-versus-drift reporting for country and ASN context, Impact: each run now exposes measurable provider-response coverage plus aligned, partial-drift, drifting, and single-provider IP counts so single-source geolocation or ASN misreads can be spotted without separate external IP intelligence cross-checks.
Tool: uptime-response-checker, Improvement: added Server-Timing observability that parses live Server-Timing headers across all 5 repeated probes, surfaces per-run metric names, and aggregates per-metric coverage plus avg, min, max, and spread durations, Impact: each run now exposes measurable Server-Timing coverage, unique metric-set drift, and backend-timing ranges so cache-versus-origin variability can be spotted without separate header parsing or DevTools inspection.
Tool: spf-checker, Improvement: added flattened authorization overlap auditing that detects narrower inline CIDRs and resolved A or MX authorization IPs already covered by broader published SPF networks, Impact: each run now exposes measurable redundant-inline-network and resolved-IP-covered counts so unnecessary SPF sprawl can be spotted before flattening or cleanup work.
Tool: asn-lookup, Improvement: added direct ASN input support with RIPE Stat ASN profile and announced-prefix footprint summaries, Impact: the tool now supports a clear AS12345 or 12345 lookup workflow and exposes measurable announced-prefix count, IPv4-versus-IPv6 prefix mix, and prefix-length spread without needing a separate sample IP first.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-30 09:53 UTC and 2026-03-30 11:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: cdn-waf-detector, Improvement: expanded active edge verification from IPv4-only to mixed IPv4 and IPv6 probing with per-endpoint family labels plus an IPv4-versus-IPv6 rollout verdict that reports provider-signature and challenge-page drift between address families, Impact: each run now exposes measurable IPv4-only, IPv6-only, aligned-dual-stack, or family-drift outcomes so split-family CDN or WAF deployments can be spotted without manually comparing separate address-family checks.
Tool: mx-lookup, Improvement: added live STARTTLS certificate auditing per MX target with hostname-match checks, issuer and subject evidence, expiry-day visibility, and explicit handshake-failure classification, Impact: each run now exposes measurable valid-certificate coverage plus hostname-mismatch, expiring-or-expired, and handshake-or-certificate-failure counts so broken inbound mail TLS posture can be spotted without separate SMTP TLS probes.
Tool: ns-lookup, Improvement: added direct authoritative NS RRset consistency auditing with lame-delegation detection, per-nameserver AA visibility, returned-NS-set evidence, drift details, and latency summary metrics, Impact: each run now exposes measurable matching-authority count, lame-or-non-authoritative nameserver count, and RRset-drift evidence so stale or misconfigured delegated nameservers can be spotted without separate dig NS @ns cross-checks.
Tool: whois-lite, Improvement: added RDAP secureDNS versus live parent DS alignment auditing with delegationSigned visibility, RDAP DS count, algorithm and digest summaries, and mismatch verdicts when registry metadata disagrees with live DNSSEC delegation, Impact: each run now exposes measurable parent-DS-versus-RDAP DS counts plus aligned-signed, aligned-unsigned, parent-child-mismatch, child-parent-mismatch, or RDAP-inconsistent outcomes so DNSSEC rollout ambiguity can be spotted without separate RDAP and DS cross-checks.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-30 05:53 UTC and 2026-03-30 07:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: port-range-scanner, Improvement: added IPv4-versus-IPv6 exposure drift auditing with per-port family rollout verdicts, family-specific open coverage counts, endpoint family labels, and dual-stack summary totals, Impact: each run now exposes measurable aligned, family-drift, IPv4-only, and IPv6-only port counts plus per-port IPv4 and IPv6 open coverage so dual-stack firewall or load-balancer mismatches can be spotted without manually comparing mixed address rows.
Tool: dns-leak-test, Improvement: parallelized the 5 EDNS resolver rounds with 3 concurrent workers while preserving per-round evidence order and exposing total probe runtime in the summary, Impact: expected to cut typical resolver-test wait time by roughly 40-60% versus the previous fully sequential flow while keeping the same leak classification coverage and round diagnostics.
Tool: ipv6-checker, Improvement: added IPv6 competitiveness analysis with per-provider IPv4-versus-IPv6 reliability and median-latency comparison plus a browser-race verdict, Impact: each run now exposes measurable provider-level reliability deltas and IPv6-latency gaps so working-but-deprioritized IPv6 paths can be spotted without separate manual dual-stack timing tests.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-30 01:53 UTC and 2026-03-30 03:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: tls-expiry-monitor, Improvement: added Certificate Transparency SCT auditing with per-endpoint embedded SCT visibility, SCT-count drift detection, sample CT log IDs, and rollout coverage verdicts across resolved IPs, Impact: each run now exposes measurable SCT-visible endpoint count, SCT-count variants, and full-versus-partial CT coverage so incomplete certificate transparency rollout can be spotted without manually opening x509 extension details.
Tool: reverse-dns, Improvement: added authoritative reverse-zone SOA serial consistency checks across visible nameservers with per-nameserver serial evidence, alignment versus drift verdicts, and partial-response visibility, Impact: each run now exposes measurable aligned, drifted, and partial-or-unresponsive reverse-zone counts plus per-IP responding-nameserver and unique-serial totals so out-of-sync PTR authorities can be spotted without separate dig @ns SOA checks.
Tool: redirect-checker, Improvement: added redirect cacheability auditing with per-hop Cache-Control, Expires, cacheable-versus-non-cacheable classification, TTL visibility, and high-risk cached temporary redirect detection, Impact: each run now exposes measurable cacheable permanent, cacheable temporary, high-risk cached temporary, and long-lived redirect counts so sticky misdirects and accidentally cached 302 or 307 responses can be spotted without separate manual header inspection.
Tool: tls-checker, Improvement: added live OCSP, CRL, and CA issuer endpoint reachability probing with per-endpoint status reporting and aggregate health counts, Impact: each run now exposes measurable reachable, failed, and unsupported revocation-endpoint totals so broken certificate support infrastructure can be spotted without separate manual URL checks.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-29 21:53 UTC and 2026-03-29 23:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: http-headers, Improvement: added live conditional revalidation auditing that replays ETag and Last-Modified validators against the final URL and reports whether the server answers with 304 Not Modified, 200 OK, or another status, Impact: each run now exposes measurable validator replay coverage, conditional HTTP status, and revalidation latency so broken cache-validator handling can be spotted without separate manual curl If-None-Match or If-Modified-Since tests.
Tool: website-pagespeed, Improvement: added render-blocking resource analysis with per-file and per-host blocking-time breakdowns for mobile and desktop Lighthouse runs, Impact: each run now exposes measurable blocking-file count, unique blocking-host count, total estimated render-blocking time, and top-blocker share so CSS and synchronous script paint delays can be triaged without digging through raw Lighthouse audits.
Tool: dnssec-validator, Improvement: added DNSSEC algorithm posture auditing that classifies DNSKEY and DS algorithm families, DS digest types, KSK-versus-ZSK role separation, deprecated SHA-1 carryover, and parent-child algorithm mismatches, Impact: each run now exposes measurable KSK, ZSK, deprecated-signing, SHA-1-DS, and algorithm-mismatch counts so stale parent anchors and legacy DNSSEC posture can be spotted without manually decoding flags and algorithm numbers.
Tool: cidr-subnet-calculator, Improvement: added native IPv6 compare-target overlap and membership auditing plus smallest-covering-supernet planning for pasted IPv6 hosts and CIDRs, Impact: each run now exposes measurable inside, disjoint, contained, supernet, and overlap counts for IPv6 target lists and returns 1 aggregate covering IPv6 CIDR so IPv6 subnet-fit and route-summary checks no longer require manual prefix math.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-29 17:53 UTC and 2026-03-29 19:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: port-checker, Improvement: upgraded explicit-TLS auditing on FTP, SMTP, submission, POP3, and IMAP so the checker now attempts AUTH TLS, STARTTLS, or STLS handshakes and inspects the upgraded certificate instead of only reporting that upgrade support was advertised, Impact: each run now exposes measurable upgraded-TLS-certificate verification count plus hostname-mismatch and certificate-expiry evidence on ports 21, 25, 110, 143, and 587 so false confidence from STARTTLS-advertised-only services is reduced to 0 for successfully upgraded endpoints.
Tool: dns-lookup, Improvement: added common SRV service discovery auditing for SIP, submission, autodiscover, XMPP, CalDAVS, and CardDAVS with per-service record counts, target hosts, ports, fallback visibility, and detailed priority or weight evidence, Impact: each run now checks 9 common SRV service labels and exposes measurable published-service, unique-target, unique-port, and secure-port-service counts so service-discovery DNS gaps can be spotted without separate manual SRV queries.
Tool: traceroute-viewer, Improvement: added latency accumulation profiling that buckets positive hop-to-hop RTT growth into access-edge, mid-mile, and far-edge route zones with dominant-zone verdicting and targeted fix guidance, Impact: each run now exposes measurable positive-RTT-growth totals, per-zone shares, and dominant-zone percentages so users can tell whether latency builds near the user, in transit, or near the destination without manually summing hop deltas.
Tool: http2-http3-checker, Improvement: added address-family rollout classification that distinguishes dual-stack consistent support from IPv4-only, IPv6-only, family-drift, and single-family partial rollouts for HTTP/2 and HTTP/3, Impact: each run now exposes 2 explicit family-level rollout verdicts so users can spot why IPv4 and IPv6 visitors may negotiate different protocol versions without manually comparing endpoint tables.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-29 13:53 UTC and 2026-03-29 15:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: user-agent-analyzer, Improvement: added fingerprinting exposure auditing that scores visible runtime and Client Hints signal categories plus high-entropy values like full browser versions, platform version, CPU architecture, bitness, device model, language spread, timezone, cores, and memory, Impact: each run now exposes measurable visible-signal-category and high-entropy-signal counts with a low, moderate, or high exposure verdict so fingerprintability can be judged without manually interpreting raw navigator and Client Hints data.
Tool: security-headers-score, Improvement: added dedicated Content-Security-Policy risk auditing with unsafe-inline, unsafe-eval, wildcard, insecure http:, data:, and blob: source visibility plus missing object-src, base-uri, and framing-control checks, Impact: each run now exposes measurable CSP danger counts and report-only-only posture so weak CSP deployments can be triaged without manually parsing policy directives.
Tool: bulk-dns, Improvement: added batch DNSSEC posture auditing with DS, DNSKEY, and RRSIG visibility plus per-domain verdicts for delegated-and-signed, partial, DNSKEY-without-DS, island-or-stale-parent, or unsigned states, Impact: each run now exposes measurable DNSSEC chain-visible, partial-visibility, DNSKEY-without-DS, island-or-stale-parent, and no-DNSSEC domain counts so signed delegation gaps can be spotted across up to 100 domains without separate DNSSEC lookups.
Tool: robots-sitemap-validator, Improvement: added sitemap sample canonical auditing that extracts rel=canonical from live pages, resolves relative canonicals, and classifies each sampled URL as self-aligned, missing, mismatch, invalid, or cross-host, Impact: each run now exposes measurable self-canonical, missing-canonical, mismatch, and cross-host-canonical sample counts so sitemap-to-canonical drift can be spotted without manually opening sampled pages.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-29 09:53 UTC and 2026-03-29 11:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: reverse-ip-lite, Improvement: added co-hosting confidence classification that combines forward DNS status, live web posture, and ASN continuity into high, medium, low, or unknown verdicts per returned domain, Impact: each run now exposes measurable high-confidence active co-host count, medium-confidence count, low-confidence stale-row count, and unknown count so live co-hosts can be separated from parked or stale reverse-IP leftovers without manual cross-checking.
Tool: dmarc-checker, Improvement: added wildcard external-report authorization detection for rua and ruf destinations alongside source-domain authorization mode reporting, Impact: external DMARC report targets that authorize via *._report._dmarc are now classified correctly instead of being counted as missing authorization, reducing false-negative authorization alerts for wildcard-enabled providers to 0 for those cases.
Tool: email-deliverability-check, Improvement: added DMARC external report-destination authorization auditing for rua and ruf mailto targets with per-destination authorization host, TXT evidence, and same-domain versus external classification, Impact: each run now exposes measurable authorized-versus-unauthorized external DMARC report destination counts so silent aggregate or forensic report drop-offs can be spotted without separate _report._dmarc TXT checks.
Tool: webrtc-leak-test, Improvement: added host-candidate masking analysis with fully-masked, partially-masked, and unmasked verdicts plus raw-local-IP and mDNS coverage metrics, Impact: each run now exposes measurable raw private IPv4 host count, raw local IPv6 host count, mDNS-masked host count, and masking coverage percentage so partial browser privacy masking is visible without manually diffing ICE candidates.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-29 05:53 UTC and 2026-03-29 07:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: ip-reputation-lookup, Improvement: added live RPKI route-validation checks per resolved endpoint with origin ASN, validated prefix, route-validity details, and cross-endpoint RPKI drift verdicting, Impact: each run now exposes measurable RPKI valid, invalid, not-found, and unknown endpoint counts so route-origin trust gaps can be spotted without a separate BGP or RPKI lookup.
Tool: ip-location-lookup, Improvement: added dual-provider location disagreement analysis with per-endpoint coordinate-delta distance, chosen-provider visibility, and medium-or-high drift verdicting when ip-api and ipwho.is disagree, Impact: each run now exposes measurable provider-geo-drift endpoint count and worst provider delta in km so low-confidence geolocation results can be spotted before acting on a single provider result.
Tool: asn-lookup, Improvement: added route observability analysis with RIS peer visibility percentages, visible-origin counts, route-object counts, and active-origin mismatch detection per resolved endpoint, Impact: each run now exposes measurable full-versus-partial-versus-low visibility counts, average visibility percentage, multi-origin IP count, and origin-mismatch count so weak or unstable global BGP exposure can be spotted without separate RIPE routing-status checks.
Tool: dns-propagation, Improvement: added authoritative TTL freshness classification that compares each public resolver's dominant TTL against the authoritative median and labels caches as fresh, mid-life, near expiry, or higher-than-authority anomalies, Impact: each run now exposes measurable fresh, mid-life, near-expiry, and higher-than-authority resolver counts so cache-age spread and suspicious TTL inflation can be spotted without manual TTL math.
Ops update: Recent changes (read-only) monitoring/verification pass completed for My-IP-IS at 2026-03-29 01:53 UTC and 2026-03-29 03:53 Europe/Amsterdam; no substantive change detected in last 4h; no Stripe/product/pricing changes.
Tool: ipv4-checker, Improvement: added public IPv4 /24 prefix stability analysis that groups all detected public candidates by network prefix, shows which request signals share the same /24, and classifies the result as single-path, same-prefix rotation, mixed overlap, or cross-prefix drift, Impact: each run now exposes measurable unique-public-IPv4 and unique-/24-prefix counts plus shared-prefix group count so simple address rotation can be separated from genuinely different egress networks without manual prefix comparison.
Tool: port-range-scanner, Improvement: added per-open-port TLS and STARTTLS posture auditing with certificate subject, issuer, days-left, and hostname-match analysis across scanned endpoints, Impact: each run now exposes measurable TLS-capable-open, STARTTLS-ready, hostname-mismatch, and expiring-within-30-days counts so exposed encrypted services and weak mail-upgrade rollout gaps can be spotted without a separate certificate check.
Tool: internet-speed-test, Improvement: added directional load-sensitivity analysis that measures loaded latency separately during download and upload phases, identifies which direction causes the larger queueing spike, and classifies the interactive-risk impact, Impact: each run now exposes measurable download-loaded and upload-loaded median latency deltas plus a dominant-pressure verdict so bufferbloat can be traced to download saturation, upload saturation, or both without manual side-by-side testing.
Tool: uptime-response-checker, Improvement: added cache validator and freshness drift auditing with ETag, Last-Modified, Cache-Control, Vary, and Age parsing across repeated probes, Impact: each run now exposes measurable validator coverage, ETag and Last-Modified drift, cache-policy drift, stale-by-age run count, and Age spread so inconsistent CDN or edge-cache behavior can be spotted without manual header diffing.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-28 21:53 UTC and 2026-03-28 22:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: mx-lookup, Improvement: added MX target alias-compliance auditing that follows live CNAME chains, flags alias loops, shows effective final hosts, and downgrades deliverability posture when MX targets are not direct address-bearing hosts, Impact: each run now exposes measurable alias-using MX target count and total alias-hop count so RFC-invalid mail routing setups can be spotted without manual CNAME tracing.
Tool: cdn-waf-detector, Improvement: added active challenge-page and block-response detection across the final response and forced edge-endpoint probes using body phrase, title, header, and HTTP status signals, Impact: each run now exposes a measurable challenged-edge count plus low, medium, or high confidence so CDN presence can be separated from a live WAF or bot-challenge response without manual page inspection.
Tool: geo-latency-estimator, Improvement: added a workload readiness planner that maps estimated best, typical, and congested RTT into competitive gaming, voice or video calls, remote desktop or SSH, and web or API verdicts with explicit latency-budget headroom, Impact: each run now exposes 4 measurable use-case verdicts plus best, typical, and congested headroom against 4 latency budgets so users can judge interactive fit without translating raw RTT by hand.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-28 17:53 UTC and 2026-03-28 18:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: spf-checker, Improvement: added flattened SPF authorization-surface auditing that expands the live SPF graph into explicit ip4 and ip6 networks plus resolved A and MX sender IPs, with widest-prefix and duplicate-network collapse visibility, Impact: each run now exposes measurable authorized IPv4 and IPv6 network counts, wide-network entry counts, duplicate-network collapse count, and resolved A/MX sender IP totals so overly broad sender allowance can be spotted without manual SPF flattening.
Tool: dns-leak-test, Improvement: added resolver network-prefix diversity analysis with IPv4 /24 and IPv6 /48 grouping, family mix visibility, and shared-prefix verdicting across all successful rounds, Impact: each run now exposes measurable unique-prefix count, dominant-prefix share, and shared-prefix-versus-cross-prefix drift so users can distinguish simple resolver IP rotation from true multi-network DNS egress changes without manual prefix comparison.
Tool: reverse-dns, Improvement: added reverse-zone nameserver address diversity auditing with per-NS A and AAAA resolution, dual-stack visibility, and IPv4 /24 plus IPv6 /48 concentration analysis, Impact: each run now exposes measurable dual-stack-authority, single-stack-only, and low-diversity-prefix counts so weak reverse-DNS delegation resilience can be spotted without separate NS address lookups.
Tool: whois-lite, Improvement: added internationalized domain name support with Unicode-to-punycode normalization, original-input visibility, and explicit ASCII WHOIS target output, Impact: the tool now supports a clear new IDN lookup workflow for domains like bücher.de while exposing both Unicode and ASCII forms so non-ASCII domain checks no longer fail at input validation.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-28 13:53 UTC and 2026-03-28 14:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: ipv6-checker, Improvement: added IPv6 /64 prefix stability analysis with per-provider address-versus-prefix comparison, unique interface-ID counts, and explicit stable-prefix versus prefix-churn verdicting across repeated probes, Impact: each run now exposes measurable unique-public-IPv6, unique-/64-prefix, and unique-interface-ID counts so privacy-extension address rotation can be separated from VPN path switching or prefix churn without manual IPv6 diffing.
Tool: website-pagespeed, Improvement: added Lighthouse page-weight and third-party concentration analysis with per-device resource-type transfer shares, heavy-resource counts, provider main-thread share, and provider transfer totals, Impact: each run now exposes measurable total page weight, request count, heavy resource-type count, top resource share, third-party provider count, and top provider main-thread share so slow pages can be triaged faster without exporting Lighthouse JSON.
Tool: tls-expiry-monitor, Improvement: added cross-endpoint certificate-chain drift analysis with exact chain-profile grouping, chain-length and issuer drift detection, and handshake spread visibility across resolved IPs, Impact: each run now exposes measurable unique-chain-profile count, chain-length-variant count, unique-leaf-issuer count, and endpoint handshake spread so inconsistent edge certificate deployment can be spotted without manual per-IP chain comparison.
Tool: port-checker, Improvement: added implicit-TLS certificate auditing on open HTTPS, SMTPS, IMAPS, and POP3S ports with hostname-match checks, issuer visibility, SAN count parsing, and expiry-day analysis, Impact: each run now exposes measurable certificate hostname-mismatch, expiring-within-30-days, and already-expired counts so open encrypted ports can be triaged for certificate drift without separate TLS inspection.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-28 09:53 UTC and 2026-03-28 10:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: security-headers-score, Improvement: added browser reporting and telemetry auditing with Report-To, Reporting-Endpoints, NEL, CSP report-only, and COOP report-only parsing plus endpoint-group linkage and same-origin versus cross-origin endpoint analysis, Impact: each run now exposes measurable report-group count, unique telemetry endpoint count, same-origin-versus-cross-origin endpoint totals, linked-reporting coverage, and NEL sampling or retention gaps so silent policy-reporting failures can be spotted without manual header and JSON inspection.
Tool: dnssec-validator, Improvement: added denial-of-existence method auditing with per-resolver NSEC and NSEC3PARAM detection, set hashes, and consensus reporting, Impact: each run now exposes measurable NSEC and NSEC3PARAM record counts plus resolver-level method visibility so classic NSEC versus NSEC3-style signing can be distinguished without separate manual queries.
Tool: redirect-checker, Improvement: added redirect cookie handoff and hardening auditing with per-hop Set-Cookie parsing, Secure and SameSite=None checks, host-only versus domain-scoped visibility, prefix integrity validation, and cross-host cookie-risk detection, Impact: each run now exposes measurable cookie-setting hop counts, secure-versus-insecure cookie totals, host-only-versus-domain-scoped totals, SameSite=None-without-Secure count, and prefix-issue count so redirect login and tracking flows can be triaged without manual Set-Cookie inspection.
Tool: http-headers, Improvement: added cross-origin isolation and CORS surface auditing with COOP, COEP, CORP, Access-Control-Allow-Origin, credential mode, allowed-method/header counts, exposed-header counts, and cache-variance warnings, Impact: each run now exposes measurable allowed-method, allowed-request-header, and exposed-response-header counts plus explicit isolation and CORS risk states so over-broad browser data exposure and incomplete SharedArrayBuffer-ready isolation can be spotted without manual header interpretation.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-28 05:53 UTC and 2026-03-28 06:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: ip-reputation-lookup, Improvement: added RDAP ownership and abuse-contact auditing with registry, holder, allocation-type, IP-range, abuse-ready endpoint counts, and holder-drift analysis across resolved endpoints, Impact: each run now exposes measurable unique-holder, unique-RIR, and abuse-contact coverage so mixed ownership behind one hostname and missing abuse escalation paths can be spotted without separate RDAP lookups.
Tool: user-agent-analyzer, Improvement: added live locale and timezone coherence auditing from browser runtime metadata, including timezone name, UTC offset, and language-region mismatch checks, Impact: each run now exposes measurable timezone-offset consistency and locale-region drift signals so spoofed browser identity, emulator fingerprints, or remote-session anomalies can be spotted without separate JS timezone inspection.
Tool: ns-lookup, Improvement: added direct delegated nameserver SOA consistency checks with per-authority AA flag visibility, serial distribution, and nameserver query latency, Impact: each run now exposes measurable direct-authority nameserver count, usable authoritative-answer count, unique SOA serial count, drifted nameserver count, and median query time so hidden out-of-sync authorities can be spotted without separate dig @ns checks.
Tool: cidr-subnet-calculator, Improvement: added native IPv6 CIDR calculation and IPv6 child-subnet split planning with compressed and expanded range visibility, Impact: the tool now supports a clear new IPv6 planning workflow by exposing measurable host-bit counts, exact-or-power-of-two subnet size output, and up to 256 generated child IPv6 subnets per run without manual hex math.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-28 01:53 UTC and 2026-03-28 02:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: dns-lookup, Improvement: added HTTPS and SVCB record auditing with parsed ALPN, ECH, alias-mode, and address-hint visibility plus automatic DoH fallback when the local resolver cannot return those modern record types, Impact: each run now exposes measurable HTTPS-SVCB record count, advertised ALPN set, ECH-enabled count, alias-mode count, and IPv4-versus-IPv6 hint totals so HTTP/3 and service-binding rollout gaps can be spotted without separate dig type65 or DoH checks.
Tool: traceroute-viewer, Improvement: added distance-versus-latency segment analysis that compares hop-to-hop RTT growth against the geographic fiber floor for each geolocated route segment, Impact: each run now exposes measurable geo-comparable segment count, efficient-segment count, inflated-segment count, worst inflation factor, and worst excess RTT so routing detours or queueing can be separated from unavoidable physical distance without manual latency math.
Tool: port-range-scanner, Improvement: added multi-endpoint open-port overlap analysis with shared-port, exclusive-port, and pairwise overlap scoring across every resolved IP, Impact: each run now exposes measurable shared-open and endpoint-exclusive port counts plus per-pair overlap percentages so uneven load-balancer exposure can be separated from consistent edge posture without manual row-by-row comparison.
Tool: robots-sitemap-validator, Improvement: added recursive sitemap lastmod freshness auditing with missing, invalid, future-dated, and stale timestamp analysis across sitemap nodes, Impact: each run now exposes measurable lastmod coverage and freshness buckets so outdated or opaque sitemap update signals can be spotted without manual XML inspection.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-27 21:53 UTC and 2026-03-27 22:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: dns-propagation, Improvement: canonicalized record-answer comparison for TXT, MX, NS, CNAME, and IP literals so resolver format noise no longer counts as propagation drift, Impact: expected to cut false mismatch and stale-resolver flags caused by trailing dots, TXT chunk formatting, MX host casing, and IPv6 text style differences across all supported record types.
Tool: bulk-dns, Improvement: added batch CAA certificate issuance policy auditing with issue, issuewild, iodef, and critical unknown-tag parsing for every checked domain, Impact: each run now exposes measurable CAA-present, wildcard-authorized, incident-contact, and critical-unknown counts so certificate issuance guardrails and wildcard readiness can be triaged across up to 100 domains without separate CAA lookups.
Tool: tls-checker, Improvement: added leaf certificate scope and issuance-policy auditing with wildcard-versus-exact hostname coverage, extended key usage parsing, and full lifetime analysis against the 398-day public TLS baseline, Impact: each run now exposes measurable wildcard-name count, exact-name count, maximum name depth, lifetime days, and server-auth visibility so mis-scoped or unusually long-lived certificates can be spotted without separate x509 parsing.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-27 17:53 UTC and 2026-03-27 18:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: reverse-ip-lite, Improvement: added current-hosting drift analysis that samples forward-resolving co-hosted domains and compares each domain's live ASN and country against the source reverse-IP host, Impact: each run now exposes measurable same-ASN, ASN-drift, same-country, country-drift, unique-ASN, and unique-country counts so stale reverse-IP leftovers can be separated from domains still hosted on the same network without separate IP intelligence lookups.
Tool: ip-location-lookup, Improvement: added geographic midpoint outlier analysis that measures each resolved endpoint against the shared centroid and flags edge-stray IPs, Impact: each run now exposes measurable outlier count plus median and maximum centroid distance so CDN or anycast endpoint drift can be separated from a tight metro cluster without manual map comparison.
Tool: geo-latency-estimator, Improvement: added a TCP throughput planner that converts estimated path RTT into bandwidth-delay-product window requirements and window-limited throughput caps, Impact: each run now quantifies the receive window needed to fill 4 common line rates and the throughput cap imposed by 4 common TCP window sizes so long-distance transfer limits can be estimated without manual RTT math.
Tool: internet-speed-test, Improvement: added a transfer time planner that converts measured download and upload throughput into realistic large-file transfer estimates with asymmetry detection, Impact: each run now estimates download and upload time for 4 common file sizes and exposes the measured down-vs-up ratio so backup, sync, restore, and large-send planning no longer needs manual Mbps-to-time math.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-27 13:53 UTC and 2026-03-27 14:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: webrtc-leak-test, Improvement: changed the ICE probe engine from sequential to concurrent multi-probe execution while keeping per-probe diagnostics, Impact: worst-case browser test time drops from about 28 seconds to about 7 seconds across the 4 built-in probes - up to 75% faster with the same leak coverage.
Tool: mx-lookup, Improvement: added MX failover resilience analysis that detects duplicate targets, shared priority tiers, sampled IP overlap, and sampled IPv4 /24 plus IPv6 /48 concentration across published MX hosts, Impact: each run now exposes measurable unique-target, unique-priority, duplicate-row, shared-prefix, and exact-overlap counts so paper redundancy can be separated from real inbound mail-path diversity without separate manual DNS comparison.
Tool: email-deliverability-check, Improvement: added recursive SPF DNS lookup-budget analysis with include and redirect expansion trace plus over-limit warnings, Impact: each run now exposes a measurable SPF lookup count against the RFC 10-lookup limit so hidden SPF permerror risk can be spotted without separate manual recursion.
Tool: uptime-response-checker, Improvement: added 5-run response consistency analysis with content-type drift, partial body fingerprint drift, body-size spread, and page-title drift visibility alongside the uptime probe, Impact: each run now exposes measurable unique content types, body fingerprints, page titles, and body-size spread so flaky edges, cached error variants, and intermittent maintenance pages can be spotted even when status codes stay green.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-27 09:53 UTC and 2026-03-27 10:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: dmarc-checker, Improvement: added authentication readiness checks that discover SPF presence and common DKIM selectors on the sending domain alongside DMARC policy analysis, Impact: each run now exposes measurable SPF record status plus common-DKIM-selector coverage across 8 selectors so domains with a DMARC policy but weak underlying alignment signals can be spotted without separate SPF and DKIM lookups.
Tool: asn-lookup, Improvement: added live BGP announcement visibility analysis that classifies each resolved IP as directly announced, covered by a less-specific route, or not visibly announced, with routed resource and holder evidence, Impact: each run now exposes measurable direct-versus-covered-versus-unannounced endpoint counts so hidden route coverage gaps and non-announced targets can be spotted without separate BGP checks.
Tool: ipv4-checker, Improvement: added live IP metadata enrichment for every detected public header candidate with country, ASN, network, hosting, proxy, and mobile-path divergence analysis, Impact: each run now exposes measurable country and network drift plus hosting and proxy flag counts so forged or mixed proxy-path IPv4 evidence can be spotted without separate IP lookups.
Tool: cdn-waf-detector, Improvement: blocks localhost, private, reserved, and redirect-chain internal targets before any header or forced-edge probe runs, Impact: expected 100% rejection of internal and redirect-to-internal destination checks, reducing SSRF and internal network probing risk across both initial and redirected requests.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-27 05:53 UTC and 2026-03-27 06:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: http2-http3-checker, Improvement: blocks localhost/private/reserved targets before protocol probing, Impact: expected 100% rejection of internal/private destination checks, reducing SSRF and internal network probing risk.
Tool: dns-leak-test, Improvement: added resolver-scenario classification with public-path versus expected-route affinity scoring across the full resolver fleet, Impact: each run now exposes measurable public-country, public-ASN, expected-country, and expected-ASN match counts so users can distinguish ISP leakage, stable third-party DNS, and split-DNS rotation without manually interpreting round data.
Tool: spf-checker, Improvement: added A, MX, and exists mechanism target health auditing across the expanded SPF graph with per-target DNS resolution status and exchanger reachability evidence, Impact: each run now exposes measurable broken-A-MX-exists target counts and partial-or-unresolved mechanism references so hidden SPF authorization drift and delivery failures can be spotted without separate DNS follow-up.
Tool: reverse-dns, Improvement: added reverse-zone delegation analysis that discovers the authoritative PTR zone, shows visible NS coverage, and exposes SOA serial, refresh, retry, expire, and minimum TTL timers alongside PTR and FCrDNS results, Impact: each run now exposes measurable reverse-zone coverage with delegated-zone-found, single-NS-risk, and multi-NS counts so broken PTR hosting and weak reverse delegation can be spotted without separate SOA and NS lookups.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-27 01:53 UTC and 2026-03-27 02:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: ns-lookup, Improvement: added SOA timer risk analysis that interprets serial style, refresh, retry, expire, and minimum TTL values into refreshes-per-day, retry-attempt capacity, stale-secondary window, and warning-level operational verdicts, Impact: each run now exposes measurable SOA timing capacity and risk signals so slow zone pickup, weak retry cadence, and short stale windows can be spotted without manual RFC math.
Tool: whois-lite, Improvement: added live registration-versus-delegation nameserver consistency auditing that compares WHOIS or RDAP nameservers against the currently delegated NS set and classifies aligned, partial mismatch, mismatch, live-only, and no-live-delegation-visible states with drift evidence, Impact: each run now exposes measurable matched, registration-only, and live-only nameserver counts so stale registrar NS data and delegation drift can be spotted without separate WHOIS and NS cross-checks.
Tool: ipv6-checker, Improvement: added IPv6 interface identifier privacy analysis that flags EUI-64 style hardware-derived exposure, low-entropy stable patterns, and privacy-randomized temporary-looking interface IDs for every observed public IPv6 address, Impact: each run now exposes measurable EUI-64-exposed versus privacy-randomized IPv6 address counts so users can spot privacy-extension gaps without manual interface-identifier inspection.
Tool: tls-checker, Improvement: added live trust-chain verification with OpenSSL verify return codes, trusted-versus-untrusted verdicts, and warning extraction for self-signed or incomplete chains, Impact: each run now exposes measurable trust status and concrete verification failure reasons so broken certificate paths can be spotted without separate openssl verification commands.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-26 21:53 UTC and 2026-03-26 22:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: redirect-checker, Improvement: added per-hop query preservation auditing that classifies preserved, changed, dropped, and added parameters across the redirect chain with parameter-name evidence, Impact: each run now exposes measurable query-preserved, query-changed, query-dropped, and query-added hop counts so broken campaign, SSO, and signed-link redirects can be spotted without manual URL diffing.
Tool: http-headers, Improvement: added response cookie hardening analysis with per-cookie Secure, HttpOnly, SameSite, session-versus-persistent, and __Secure-/__Host- prefix integrity auditing, Impact: each run now exposes measurable secure-cookie, HttpOnly, SameSite-missing, and high-risk cookie counts so session hardening gaps can be spotted without manual Set-Cookie review.
Tool: user-agent-analyzer, Improvement: added live browser runtime capture with navigator and UAData cross-checking for platform, vendor, automation, touch, language, and device metadata against the pasted user agent, Impact: each run now adds a third trust score with measurable runtime mismatch evidence so spoofed or automated browser claims can be caught even when the UA string alone looks plausible.
Tool: dnssec-validator, Improvement: added CDS and CDNSKEY rollover publishing analysis with parent-DS comparison and resolver-consensus checks, Impact: each run now exposes published-versus-parent match counts and stale-parent rollover signals so DS update lag can be spotted without separate child-versus-parent DNSSEC checks.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-26 17:53 UTC and 2026-03-26 18:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: cidr-subnet-calculator, Improvement: added aggregate covering supernet analysis for mixed IPv4 hosts and CIDRs with exact-versus-lossy summarization, gap detection, and coverage efficiency scoring, Impact: each run now exposes the smallest summary route plus extra-address and gap counts so route aggregation risk can be measured without manual binary range math.
Tool: port-checker, Improvement: added IPv4-versus-IPv6 exposure split analysis per scanned port with dual-stack, IPv4-only, IPv6-only, and closed-on-both classification across resolved endpoints, Impact: each run now exposes measurable family-level open counts and imbalanced-port totals so firewall drift and single-stack exposure are visible without manual endpoint comparison.
Tool: tls-expiry-monitor, Improvement: added leaf certificate lifecycle analysis with age, validity window, renewal-window position, and full presented-chain expiry bottleneck auditing, Impact: each run now exposes measurable leaf lifecycle usage plus shortest chain days-left and expiring-or-expired chain certificate counts so renewal risk can be spotted before the leaf certificate is the only thing being watched.
Tool: traceroute-viewer, Improvement: added geographic route analysis with per-segment distance, visible route spread, long-haul jump detection, and geo backtrack signals relative to the final visible endpoint, Impact: each run now exposes measurable geolocated-hop coverage, visible route kilometers, largest hop jump, and backtrack count so hairpinning and wrong-region transit can be spotted without manual map work.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-26 13:53 UTC and 2026-03-26 14:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: dns-lookup, Improvement: added nameserver address and glue-risk auditing that checks each returned NS host for A and AAAA reachability, in-bailiwick status, and missing-glue exposure, Impact: each run now exposes measurable nameserver coverage with checked-host, dual-stack, in-bailiwick, and missing-glue-risk counts so broken delegations can be spotted without manual NS follow-up.
Tool: security-headers-score, Improvement: added live CORS exposure audit with risk grading for wildcard or credentialed cross-origin access plus cache-safety checks via Vary: Origin, Impact: each run now surfaces measurable CORS risk on the scored endpoint instead of limiting analysis to classic hardening headers only.
Tool: dmarc-checker, Improvement: added report-destination mail-path validation with MX, Null MX, and implicit-MX checks plus support for DMARC mailto size-limit parsing, Impact: each run now exposes measurable mail-ready-versus-Null-MX-versus-no-mail-path counts across unique report destinations so broken DMARC reporting inboxes can be caught before aggregate or forensic reports disappear.
Tool: bulk-dns, Improvement: added batch DMARC policy parsing and common DKIM selector discovery alongside existing DNS, MX, SPF, and NS checks, Impact: each run now exposes measurable DMARC enforced-versus-monitor-only-versus-missing counts plus DKIM-found-versus-missing coverage across up to 100 domains in one pass.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-26 09:53 UTC and 2026-03-26 10:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: robots-sitemap-validator, Improvement: added live noindex detection on sampled sitemap URLs by checking meta robots, meta googlebot, and X-Robots-Tag signals, Impact: each run now exposes measurable noindex-blocked sample counts so XML-valid sitemaps that list intentionally non-indexable pages can be caught in one pass.
Tool: website-pagespeed, Improvement: added actionable Lighthouse issue tables for accessibility, best practices, and SEO on both mobile and desktop, Impact: each audit now exposes up to 30 prioritized non-performance findings in one run instead of only category totals.
Tool: reverse-ip-lite, Improvement: added live web posture sampling that checks up to 12 co-hosted domains for reachable HTML pages, redirects, parking or placeholder signals, non-HTML responses, HTTPS success, and extracted page titles or final URLs, Impact: each run now exposes measurable live-site versus parked-or-dead counts so reverse IP results can be triaged into real websites, redirects, and parking noise in one pass.
Tool: email-deliverability-check, Improvement: added live MTA-STS MX coverage validation that checks whether each published MX host matches at least one policy mx rule and shows per-host match evidence, Impact: each run now exposes measurable covered-versus-uncovered MX counts so transport policies that publish MTA-STS but fail to protect all live mail exchangers can be identified in one pass.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-26 05:53 UTC and 2026-03-26 06:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: mx-lookup, Improvement: added DANE and TLSA discovery per MX target with usage, selector, matching-type, DNSSEC AD visibility, and owner-name evidence, Impact: each run now exposes measurable TLSA coverage across all published MX targets and separates plain STARTTLS-only mail routes from DANE-published deployments in one pass.
Tool: http2-http3-checker, Improvement: added protocol rollout diagnostics with entry-versus-final classification, per-endpoint IPv4 and IPv6 coverage counts, and explicit hint-only versus redirect-only versus partial-edge verdicts, Impact: each run now exposes measurable active-support coverage across up to 4 resolved endpoints and separates rollout drift from mere DNS or Alt-Svc advertising so HTTP/3 and HTTP/2 rollout failures can be triaged in one pass.
Tool: asn-lookup, Improvement: added routed-prefix footprint analysis with unique prefix counts, IPv4 versus IPv6 endpoint split, RIR coverage, prefix-length spread, and single-edge versus multi-prefix versus multi-ASN verdicting, Impact: each run now exposes measurable route-spread evidence across up to 4 resolved endpoints so CDN and failover topology drift no longer hides behind ASN counts alone.
Tool: security-headers-score, Improvement: added Permissions-Policy exposure auditing that counts disabled, restricted, wildcard, and remote-origin directives and flags overexposed sensitive browser features, Impact: each run now exposes measurable feature-scoping evidence so weak feature allowlists and risky wildcard permissions no longer hide behind a header-present-only pass.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-26 01:53 UTC and 2026-03-26 02:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: webrtc-leak-test, Improvement: added per-family HTTP baseline comparison for IPv4 and IPv6 plus local-topology hint analysis from related-address and subnet exposure, Impact: each run now separates IPv4 mismatch, IPv6-only exposure, and hidden local network hints into measurable family-level leak signals so split-tunnel and dual-stack VPN leaks no longer hide behind one mixed public IP comparison.
Tool: ip-location-lookup, Improvement: added edge-footprint analysis with widest-endpoint distance, geographic midpoint, timezone drift, and per-endpoint network prefix visibility across up to 4 resolved IPs, Impact: each run now measures endpoint spread in kilometers and classifies the target as single-endpoint, single-metro, regional, multi-region, or global so CDN and anycast geolocation drift becomes visible without manual map comparisons.
Tool: dns-propagation, Improvement: added authoritative nameserver baseline checks that query the discovered zone authority directly and compare each public resolver answer against that baseline, Impact: each run now exposes authoritative consensus, public-resolver match count, and stale-resolver count so propagation lag can be separated from zone-level inconsistency without manual dig comparisons.
Tool: internet-speed-test, Improvement: added a household concurrency planner that estimates simultaneous HD video calls, 4K streams, low-latency gaming sessions, backup-heavy devices, and mixed-use headroom using measured download, upload, ping, jitter, loss, and loaded-latency pressure, Impact: each run now converts raw speed metrics into 5 concrete parallel-capacity estimates so users can see when upload or latency becomes the real bottleneck before multiple people or devices pile onto the line.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-25 21:53 UTC and 2026-03-25 22:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: ip-reputation-lookup, Improvement: added resolved-endpoint reputation drift analysis that compares risk bands, ASN spread, country spread, and hosting or proxy classification across all checked IPs for the same hostname or URL, Impact: each run now exposes measurable endpoint-consistency evidence with risk spread, medium-or-higher endpoint count, unique ASN and country counts, and a low-medium-high drift verdict instead of assuming one resolved IP represents the whole target.
Tool: user-agent-analyzer, Improvement: added Client Hints cross-checking for Sec-CH-UA, platform, mobile, arch, bitness, model, and full-version metadata with structured mismatch scoring against the pasted User-Agent string, Impact: each run now validates up to 8 extra browser-supplied identity signals so spoofed Chrome, Edge, Safari, and Firefox claims can surface as measurable UA-versus-Client-Hints drift instead of relying on raw UA text alone.
Tool: cdn-waf-detector, Improvement: expanded provider coverage with role-aware detection for Bunny CDN, QUIC.cloud, Azure Front Door, Google Cloud CDN or Armor, and StackPath, plus explicit CDN-versus-WAF labeling in the verdict and evidence output, Impact: each run now identifies up to 5 additional modern edge providers and shows their likely role directly so CDN-only and WAF-backed setups no longer collapse into one generic provider guess.
Tool: dns-leak-test, Improvement: added resolver fleet analysis that counts unique resolver IPs, countries, and ASNs across all successful rounds and lists per-resolver share, average latency, and EDNS geo hint, Impact: each run now exposes measurable split-DNS evidence with resolver, country, and ASN diversity counts so mixed-provider or cross-country DNS leakage no longer hides behind one dominant resolver.
Tool: ipv4-checker, Improvement: added special-use IPv4 range classification that separates RFC1918, CGNAT, loopback, link-local, documentation, multicast, benchmark, and other reserved tokens in header evidence and proxy-chain analysis, Impact: each run now exposes measurable per-range token counts and per-signal range-type evidence so private and reserved header contamination no longer collapses into one generic bucket.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-25 13:53 UTC and 2026-03-25 14:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: spf-checker, Improvement: added macro-aware SPF path analysis that detects macro-driven mechanisms across the expanded include and redirect graph and classifies sender-dependent versus domain-dependent behavior, Impact: each run now exposes measurable macro-token and sender-dependent count evidence so dynamic SPF branches no longer hide behind a static 10-lookup estimate.
Tool: reverse-dns, Improvement: added PTR hostname sharing analysis that classifies each reverse hostname as dedicated, small shared, or broad shared and shows same-family versus other-family forward coverage, Impact: each run now exposes measurable forward-target counts and hostname-sharing risk so generic pooled reverse DNS no longer looks equivalent to a dedicated mail-ready PTR.
Tool: port-range-scanner, Improvement: added per-port endpoint consistency analysis that classifies each scanned port as consistently open, partial exposure, mixed non-open, or consistently closed across all resolved IPs, Impact: each run now exposes measurable open-coverage percentages and cross-endpoint drift evidence so partial load-balancer or CDN exposure no longer requires manual row-by-row comparison.
Tool: geo-latency-estimator, Improvement: added route-profile-aware latency modeling that classifies endpoint pairs as metro, domestic, same-continent, or intercontinental and applies routing inflation guidance plus transoceanic risk notes instead of using straight-line distance alone, Impact: each run now exposes measurable route class and inflation-factor evidence so long-haul and submarine-like paths no longer look unrealistically similar to regional routes.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-25 09:53 UTC and 2026-03-25 10:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: uptime-response-checker, Improvement: added edge endpoint consistency probing that forces direct checks against up to 4 resolved IPs for the same host and reports per-endpoint status, latency, TTFB, and drift signals, Impact: each run can now expose partial CDN or load-balancer failures with measurable healthy-endpoint rate, unique-status count, and endpoint latency spread instead of hiding behind repeated same-path checks.
Tool: robots-sitemap-validator, Improvement: added live sitemap URL sampling that fetches indexed pages from discovered urlset files and flags non-indexable pages, cross-host redirects, and non-HTML landings, Impact: each run now verifies up to 6 real sitemap URLs across sampled child sitemaps so broken or off-host sitemap entries become visible without manual spot-checking.
Tool: tls-checker, Improvement: added revocation visibility with OCSP stapling availability status, Must-Staple detection, and extracted OCSP, CA issuer, and CRL URLs from the certificate, Impact: each run now exposes up to 4 revocation and stapling signals so responders can verify revocation coverage and stapling support posture without separate certificate parsing steps.
Tool: http-headers, Improvement: added cache behavior analysis with effective TTL, shared-cache readiness, validator coverage, Vary and Set-Cookie risk checks, and edge-cache policy visibility, Impact: each run now exposes up to 10 cache diagnostics plus warning counts so CDN and browser caching misconfigurations can be triaged in one fetch instead of separate header interpretation.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS at 2026-03-25 05:53 UTC and 2026-03-25 06:53 Europe/Amsterdam; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: whois-lite, Improvement: added live DNSSEC delegation auditing with DS record discovery, algorithm and digest-type visibility, and signed-vs-unsigned hardening verdicts, Impact: each run now exposes measurable DS coverage with live key-tag and digest evidence so unsigned delegation risk is visible without a separate DNSSEC lookup.
Tool: reverse-ip-lite, Improvement: added registrable-root clustering that collapses repeated subdomains into apex-style root groups with shared-vs-exclusive root counts, largest-cluster visibility, and per-root sample domains, Impact: each run now exposes up to 20 root clusters plus 4 new root-level concentration metrics to cut false co-hosting diversity from wildcard or tenant subdomain inflation.
Tool: website-pagespeed, Improvement: added lab-vs-field drift analysis that compares mobile Lighthouse metrics against Chrome UX Report p75 Core Web Vitals and classifies each comparable metric as aligned or drifting, Impact: each run now exposes up to 3 direct lab-vs-real-user verdicts plus aligned, drifting, and missing counts to cut false Lighthouse-only conclusions.
Tool: email-deliverability-check, Improvement: added MTA-STS policy validation and TLS-RPT reporting checks alongside existing SPF, DMARC, DKIM, and BIMI analysis, Impact: each run now validates 3 additional mail transport hardening signals and exposes live MTA-STS policy fetch status plus TLS-RPT rua coverage.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: traceroute-viewer, Improvement: added route-loop and detour detection that flags repeated hop IPs plus ASN re-entry after leaving a network, with dedicated loop signal evidence and summary counters, Impact: expected to reduce routing-loop and transit-detour triage from manual hop comparison to one run with measurable repeated-hop and ASN re-entry counts.
Tool: ipv6-checker, Improvement: added IPv6 address-type analysis that classifies observed public IPv6 results as native global, NAT64 synthesized, 6to4, Teredo, IPv4-mapped, or other atypical paths alongside the existing dual-stack probe, Impact: expected to reduce IPv6 misdiagnosis from one family-level pass or fail result to one run with explicit transition-mechanism evidence and measurable unique IPv6 type visibility.
Tool: redirect-checker, Improvement: added client-side redirect discovery with meta refresh and JavaScript navigation detection alongside standard HTTP Location tracing, Impact: expected to reduce missed browser-only redirect paths from 1 blind spot to visible classified hops in one run, with separate HTTP-vs-client redirect counts and explicit redirect evidence.
Tool: ns-lookup, Improvement: added resolver-path SOA serial consistency checks across system, Google, and Cloudflare with serial distribution, drift detection, and per-resolver timing evidence, Impact: expected to reduce hidden DNS propagation and cache-drift triage from separate SOA lookups to one run while exposing measurable unique-serial count, drifting-resolver count, and lookup latency.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: dnssec-validator, Improvement: added validating-resolver verdict checks with AD flag, RCODE, answer count, and resolver comment evidence across Cloudflare, Google, and Quad9, Impact: expected to reduce bogus DNSSEC triage from multiple separate resolver tests to one run while exposing measurable validation-consensus and SERVFAIL or no-AD outcomes.
Tool: mx-lookup, Improvement: added reverse-DNS trust auditing for sampled MX IPs with PTR discovery, forward-confirmed reverse DNS validation, and dynamic-hostname risk flags, Impact: expected to cut mail-host trust triage from separate PTR and forward-DNS checks to one run while exposing measurable forward-confirmed, missing-PTR, and dynamic-risk counts.
Tool: cidr-subnet-calculator, Improvement: added subnet overlap and membership analysis for pasted IPv4 hosts or CIDRs with equal-contained-supernet-partial-overlap-disjoint verdicts and per-target details, Impact: expected to reduce subnet-scope validation from repeated manual comparisons to one run across multiple hosts and ranges while exposing measurable inside-outside and overlap counts.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: tls-expiry-monitor, Improvement: added live OCSP and CRL endpoint extraction with revocation URL reachability checks, latency, HTTP status, and final URL evidence, Impact: expected to cut certificate incident triage time by exposing whether published revocation infrastructure is reachable in one run instead of requiring separate certificate parsing and manual OCSP or CRL URL testing.
Tool: port-checker, Improvement: added application-aware service fingerprint hints with TLS or STARTTLS evidence and per-port exposure-risk guidance for open results, Impact: expected to reduce first-pass port triage time by turning open-port findings into measurable service detections plus encrypted-ready and cleartext-risk counts in one run.
Tool: dns-lookup, Improvement: added multi-public-resolver consistency checks for A, AAAA, NS, and MX with per-resolver latency and TTL evidence, Impact: expected to cut false-positive DNS interpretations by showing resolver drift in one run and flagging propagation or cache mismatch cases that are invisible from a single-system lookup.
Tool: bulk-dns, Improvement: added run-level DNS timing resilience metrics (median, P95, slowest, and slow-domain outlier count at dynamic 95th-percentile-based thresholds) to surface resolver-performance regressions in one post-run summary, Impact: expected to cut DNS triage time by highlighting per-batch latency outliers directly and enabling faster identification of domain-level DNS response bottlenecks when checking up to 100 domains.
Ops update: Monitoring/verification pass completed for My-IP-IS; no substantive tool/product changes in last 4h and no Stripe/product/pricing changes.
Tool: port-range-scanner, Improvement: added open-port exposure risk intelligence with per-result Critical, High, Medium, or Info classification and port-specific remediation guidance plus risky-open summary counters, Impact: expected to reduce first-pass exposed-service triage time by highlighting critical and high risk open ports directly in one run and quantifying risky exposure as Critical/High counts.
Tool: asn-lookup, Improvement: added geo-divergent ASN detection that flags ASNs resolving across multiple countries in one run and reports impacted IP count plus country spread evidence, Impact: expected to reduce anycast and CDN route-misread triage time by exposing cross-country ASN spread directly instead of manual per-IP country comparison.
Tool: robots-sitemap-validator, Improvement: added recursive sitemap tree validation that follows sitemapindex child loc entries with per-node HTTP or XML checks, cross-host detection, and aggregate URL-entry counting up to 16 sitemap nodes in one run, Impact: expected to reduce false sitemap healthy conclusions by exposing broken child sitemap nodes and nested coverage gaps that top-level sitemap.xml checks miss.
Tool: ipv4-checker, Improvement: added proxy-chain diagnostics for X-Forwarded-For and Forwarded with client-side and edge-side candidate extraction, chain depth, and private or invalid token integrity checks, Impact: expected to reduce proxy misattribution and spoof-triage time by exposing up to 2 chain perspectives and measurable chain contamination counts in one run.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: dns-propagation, Improvement: added resolver TTL intelligence with per-round TTL range capture, per-resolver dominant-answer TTL median, consensus TTL median, and estimated max convergence window derived from current resolver TTLs, Impact: expected to reduce DNS change ETA guesswork by exposing measurable cache-expiry windows in one run and improving propagation triage speed when answers are mismatched.
Tool: security-headers-score, Improvement: added cross-origin isolation readiness audit with COOP and COEP policy validation, explicit readiness verdict, and targeted remediation notes, Impact: expected to reduce misconfigured isolation deployments by exposing missing or weak COOP and COEP combinations in one run and improving SharedArrayBuffer readiness triage speed.
Tool: dmarc-checker, Improvement: added nearest-parent DMARC policy discovery for subdomains with effective-policy host and domain visibility, inheritance depth, and inherited-policy risk findings when sp is not explicit, Impact: expected to reduce false no-DMARC conclusions for subdomains by recovering inherited policy context in one run and surfacing measurable parent-depth evidence for faster remediation.
Tool: dnssec-validator, Improvement: added DNSKEY RRSIG validity-window analysis across Cloudflare, Google, and Quad9 resolvers with per-resolver counts for valid, expired, and not-yet-valid signatures plus earliest-expiry visibility, Impact: expected to reduce false DNSSEC healthy conclusions by exposing signature-timing failures in one run and surfacing expiry risk within a 72h warning window.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: http2-http3-checker, Improvement: added resolved-endpoint protocol drift analysis that probes up to 4 A/AAAA IPs with forced-host handshakes and reports per-IP HTTP/2 and HTTP/3 negotiation plus latency evidence, Impact: expected to reduce false single-endpoint protocol conclusions by exposing partial edge support and measurable endpoint-level drift in one run.
Tool: cdn-waf-detector, Improvement: added active endpoint consistency probing that forces direct checks against up to 4 resolved edge IPs with per-IP HTTP status, probe latency, and detected provider set, plus drift verdicting when provider signatures differ across endpoints, Impact: expected to reduce false single-endpoint CDN or WAF conclusions by validating provider fingerprints across multiple live edge IPs in one run and exposing measurable per-endpoint divergence evidence.
Tool: webrtc-leak-test, Improvement: added multi-STUN diagnostics with per-probe ICE timing and NAT mapping stability analysis (consistent endpoint vs port-varying or multi-egress behavior) plus public-IP mismatch evidence, Impact: expected to improve leak-triage accuracy by validating endpoint behavior across 3 STUN probes instead of a single probe and exposing measurable per-probe candidate and timing diagnostics in one run.
Tool: reverse-dns, Improvement: added PTR mail-posture intelligence with multi-resolver PTR count analysis, dynamic-hostname risk detection, and per-IP SMTP trust grading alongside FCrDNS evidence, Impact: expected to reduce mail-reputation triage time by turning PTR ambiguity and dynamic naming signals into explicit good-warning-risk outcomes in one run.
Tool: internet-speed-test, Improvement: added use-case readiness analysis that maps measured download, upload, ping, jitter, loss, and loaded-latency bufferbloat into workload verdicts for video calls, cloud gaming, 4K streaming, and cloud backup, Impact: expected to reduce interpretation time by converting 6 raw metrics into 4-5 actionable workload readiness outcomes in a single run.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: website-pagespeed, Improvement: added automatic CrUX origin-level fallback when URL-level field data is missing, plus explicit field-data coverage visibility and CWV good-metrics pass summary, Impact: expected to reduce no-data Core Web Vitals verdicts by recovering p75 field metrics from origin scope and showing measurable CWV pass coverage in one run.
Tool: whois-lite, Improvement: added nameserver address diversity auditing with live A and AAAA resolution checks per nameserver plus IPv4 /24 and IPv6 /48 concentration detection and unresolved nameserver risk scoring, Impact: expected to reduce DNS resilience blind spots by exposing nameserver resolution failures and single-prefix concentration in one lookup with measurable resolved-nameserver and prefix-diversity counts.
Tool: ip-location-lookup, Improvement: added dual-provider consensus geolocation per endpoint using ip-api plus ipwho.is with agreement scoring across country, city, ASN, and coordinates plus confidence grading and low-consensus endpoint counting, Impact: expected to reduce single-provider geolocation misclassification risk by validating up to 4 agreement signals per endpoint and surfacing low-consensus endpoints directly in one run.
Tool: user-agent-analyzer, Improvement: added browser-token version extraction and cross-family consistency auditing with major-version drift checks (Edge vs Chrome), synthetic multi-browser token detection, and Safari Version-token integrity validation, Impact: expected to improve spoofed UA detection accuracy by surfacing token-composition anomalies in one run with explicit version evidence instead of relying on generic mismatch hints.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: email-deliverability-check, Improvement: added BIMI readiness auditing with DMARC eligibility gating, default._bimi TXT parsing, and live HTTPS logo URL reachability plus content-type validation, Impact: expected to reduce brand-indicator rollout failures by surfacing BIMI policy blockers and logo-hosting issues in one run with explicit HTTP and MIME evidence.
Tool: tls-checker, Improvement: added certificate-chain public key strength auditing with per-certificate algorithm and key-size analysis plus weak-key detection and protocol exposure risk classification based on legacy versus modern TLS support, Impact: expected to reduce hidden weak-crypto risk by surfacing weak chain keys and legacy TLS enablement in one run with explicit weak-key counts and protocol risk verdicts.
Tool: spf-checker, Improvement: added recursive include and redirect target health validation that checks each referenced domain for missing or multiple SPF records and surfaces target-level status with evidence, Impact: expected to reduce hidden SPF PermError risk by exposing broken include or redirect dependencies in one run with explicit affected-target counts.
Tool: dmarc-checker, Improvement: added multi-resolver DMARC TXT validation with system DNS plus Cloudflare and Google DNS-over-HTTPS, including resolver consensus and mismatch evidence in the report, Impact: expected to reduce resolver-specific false negatives by validating DMARC visibility across up to 3 independent resolver paths in one run.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: geo-latency-estimator, Improvement: added active TCP RTT baseline probing from the My-IP-Is server with per-target estimate-vs-measured delta analysis across resolved endpoints, Impact: expected to reduce geo-only latency guesswork by adding measurable median RTT evidence and model deviation visibility per target in one run.
Tool: mx-lookup, Improvement: added MTA-STS MX policy coverage validation that checks whether each published MX host matches at least one policy mx pattern and flags uncovered targets, Impact: expected to reduce false mail transport security confidence by exposing partial MTA-STS enforcement coverage as a measurable matched-target ratio in one run.
Tool: bulk-dns, Improvement: added authoritative nameserver diversity audit that resolves NS host IPs and flags IPv4 /24 and IPv6 /48 concentration risk plus unresolved NS host evidence per domain, Impact: expected to reduce DNS failover blind spots by surfacing single-network nameserver concentration and resolution gaps across up to 100 domains in one run.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: uptime-response-checker, Improvement: added per-run network timing breakdown with cURL total, TTFB, server processing time, DNS lookup, TCP connect, and TLS handshake metrics plus run-level averages for TTFB and server time, Impact: expected to reduce root-cause triage time by separating network path latency from server response latency in one run instead of relying on a single total response metric.
Tool: http-headers, Improvement: added redirect security-header drift analysis that compares first-hop versus final-hop values for each tracked security header and flags removed, changed, or added headers with a chain risk level, Impact: expected to reduce false confidence on redirecting sites by exposing security header degradation across hops in one run instead of checking only the final response.
Tool: ip-reputation-lookup, Improvement: upgraded IP metadata enrichment to query ip-api and ipwho.is in one run with provider consensus checks for ASN, country, hosting, and proxy or VPN classification plus a side-by-side provider comparison table, Impact: expected to reduce single-provider misclassification risk by surfacing cross-provider mismatches directly and increasing reputation confidence visibility from 1 source to up to 2 sources per checked IP.
Tool: dns-leak-test, Improvement: expanded resolver analysis to 5 rounds with dominant-share classification and full per-round resolver evidence including IP, country, ASN, and latency, Impact: expected to reduce false leak alarms on rotating resolvers by distinguishing fixed, primary-with-rotation, and high-rotation DNS patterns in one run.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: reverse-ip-lite, Improvement: added cross-IP overlap matrix with Jaccard similarity plus all-IP shared-domain and exclusive-domain counters for multi-endpoint targets, Impact: expected to cut co-hosting drift triage time by showing whether resolved endpoint IPs share the same domain pool in one run instead of manual side-by-side comparison.
Tool: ipv6-checker, Improvement: added DNS64 and NAT64 detection using multi-provider DNS-over-HTTPS checks for synthesized AAAA responses on ipv4only.arpa with extracted /96 prefix evidence, Impact: expected to reduce false IPv6-only misdiagnosis by distinguishing native dual-stack from IPv6-only plus NAT64 environments in one run.
Tool: dns-lookup, Improvement: added DNS posture insights with zone-authority checks, dual-stack readiness summary, TTL spread analysis, and MX target address reachability audit for up to 5 exchangers, Impact: expected to reduce DNS and mail-routing triage time by surfacing unresolved MX targets and key configuration gaps in a single lookup run.
Tool: ns-lookup, Improvement: added NS resilience audit with in-bailiwick glue-risk detection, dual-stack distribution analysis, and IPv4 /24 plus IPv6 /48 prefix concentration checks across authoritative nameservers, Impact: expected to reduce DNS delegation outage triage time by exposing missing glue-like records and nameserver network concentration risks in a single lookup run.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: ipv4-checker, Improvement: added per-signal token integrity analysis that separates public IPv4, private or reserved IPs, and malformed tokens with anomaly-aware spoof risk scoring and integrity verdicts, Impact: expected to reduce false trust in forwarded headers by exposing header contamination patterns and suspicious token mixes in one run.
Tool: traceroute-viewer, Improvement: added per-hop ASN enrichment with automatic transit handoff timeline and ASN transition scoring integrated into findings and route-quality metrics, Impact: expected to reduce peering-boundary root-cause time by surfacing exact ASN change hops and transition count in one run instead of manual per-hop ownership lookups.
Tool: redirect-checker, Improvement: added redirect method safety analysis that classifies each hop as POST rewrite-risk (301/302/303) or method-preserving (307/308) and adds chain-level risk verdicts with hop counts, Impact: expected to reduce form-submit and API redirect breakage triage time by surfacing method-loss risk in one run instead of manual status-code interpretation per hop.
Tool: robots-sitemap-validator, Improvement: added robots Sitemap directive integrity audit that normalizes and validates up to 8 declared sitemap URLs with live HTTP reachability, XML root validation, entry counts, and cross-host or cross-scheme risk detection, Impact: expected to reduce missed indexing breakages by surfacing broken or risky robots-declared sitemap targets in a single run instead of requiring separate manual checks per directive.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: cidr-subnet-calculator, Improvement: added VLSM host-group planner that accepts comma-separated required host counts and auto-allocates best-fit child subnets in descending order with overflow detection and per-group waste visibility, Impact: expected to reduce manual subnet design work from multi-step spreadsheet planning to one run by generating right-sized CIDR allocations, usable ranges, and leftover-capacity evidence in a single output.
Tool: tls-expiry-monitor, Improvement: added per-endpoint TLS crypto strength analysis with public-key algorithm and key-size checks plus weak-signature detection (SHA-1 or MD5) and endpoint-level weak-crypto evidence in summary and probe table, Impact: expected to reduce missed weak-certificate deployments across multi-endpoint hosts by surfacing weak key or signature posture in every successful endpoint handshake run.
Tool: http2-http3-checker, Improvement: added HTTPS DNS record ALPN hint analysis (type HTTPS) and merged it with Alt-Svc and active protocol probes to classify DNS-advertised versus actively negotiated HTTP/2 and HTTP/3 support, Impact: expected to reduce false protocol-not-supported conclusions on edge configurations where h2 or h3 is advertised via DNS or Alt-Svc but not negotiated on the tested request path.
Tool: port-checker, Improvement: added automatic per-endpoint timeout retry with endpoint-level stability classification (open, intermittent-open, timeout, closed) and attempt-latency evidence for each probe, Impact: expected to reduce transient false-closed outcomes on jittery links by rechecking timeout-prone probes once and surfacing intermittent exposure directly in one run.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: asn-lookup, Improvement: upgraded lookups to run ip-api and ipwho.is in parallel per IP with ASN consensus classification and mismatch evidence in per-IP results, Impact: expected to reduce single-provider ASN misclassification risk by surfacing cross-provider ASN disagreements and dual-source coverage counts in one run.
Tool: dnssec-validator, Improvement: added multi-resolver DNSSEC consistency analysis using Cloudflare, Google, and Quad9 DNS-over-HTTPS with DS and DNSKEY RRset hash comparison and resolver consensus status, Impact: expected to reduce resolver-specific false DNSSEC conclusions by surfacing cross-resolver RRset drift and cache inconsistency in a single validation run.
Tool: port-range-scanner, Improvement: added lightweight service fingerprinting on open ports with protocol-aware banner probing and per-endpoint service and banner evidence in the result table, Impact: expected to reduce manual follow-up verification steps by surfacing probable service type and first-response banner inline for up to 40 open ports per scan.
Tool: dns-propagation, Improvement: upgraded propagation checks to run 3 rounds per resolver with dominant-answer aggregation, resolver drift detection, and per-resolver answer stability scoring plus a raw per-round evidence view, Impact: expected to reduce single-sample false propagation conclusions by requiring repeated resolver agreement and surfacing transient cache drift in one run.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: whois-lite, Improvement: added EPP status risk intelligence with transfer-lock visibility and critical lifecycle status detection (pendingDelete, redemptionPeriod, hold, pendingTransfer) integrated into scoring and fix guidance, Impact: expected to reduce missed domain hijack and deletion risk signals by surfacing status-derived transfer and lifecycle exposure in one lookup instead of manual EPP status interpretation.
Tool: reverse-dns, Improvement: added multi-resolver PTR consensus analysis with system resolver plus Google and Cloudflare DNS-over-HTTPS fallback and drift visibility per resolver, Impact: expected to reduce resolver-specific false no-PTR outcomes by recovering missing PTR answers and exposing cross-resolver disagreement in one run for faster reverse-DNS reliability triage.
Tool: security-headers-score, Improvement: added redirect-chain aware scoring with entry-versus-final header drift detection and HTTPS-downgrade penalty logic, Impact: expected to reduce false strong-security conclusions on redirecting sites by exposing per-run header continuity risk and downgrade findings in one scan.
Tool: internet-speed-test, Improvement: added loaded-latency and bufferbloat analysis by sampling latency during download and upload rounds and folding the latency-under-load delta into the premium verdict, Impact: expected to reduce false good-network conclusions on congested links by surfacing idle-vs-loaded latency inflation in one run for faster real-time traffic diagnosis.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: geo-latency-estimator, Improvement: added an application transaction planner that converts path RTT into estimated cold HTTPS, warm connection, HTTP/3, and interactive session setup times, Impact: expected to cut user-facing wait-time estimation from manual 1-4 RTT math to 0 steps and expose warm-vs-cold savings directly in one run.
Tool: user-agent-analyzer, Improvement: added UA consistency scoring with spoofing and token-conflict detection (browser-engine mismatch, platform-token conflicts, and unusual headless markers) plus explicit issue evidence, Impact: expected to cut manual UA spoof triage time by surfacing high-confidence inconsistency findings in one run instead of manual token cross-checking.
Tool: cdn-waf-detector, Improvement: added per-redirect-hop provider timeline with transition detection that shows when CDN or WAF signatures appear, disappear, or change across each HTTP hop, Impact: expected to reduce redirect-path triage time by showing the exact hop where edge-provider handoff occurs instead of comparing mixed final headers manually.
Tool: website-pagespeed, Improvement: added ranked Lighthouse optimization opportunities for mobile and desktop with per-audit estimated time and transfer-size savings, Impact: expected to cut performance-triage time by surfacing the top 6 highest-impact fixes per device profile in one run instead of manual audit-by-audit sorting.
Tool: geo-latency-estimator, Improvement: added multi-endpoint pair matrix analysis with min-median-max typical RTT spread and ranked shortest source-target IP pairs, Impact: expected to reduce false single-endpoint latency assumptions by exposing endpoint path variance in one run for dual-stack and load-balanced targets.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: spf-checker, Improvement: added recursive SPF include and redirect expansion with cycle detection, expanded DNS lookup budget estimation, void-lookup detection, and a live SPF dependency trace, Impact: expected to reduce false SPF pass assumptions by exposing over-limit include graphs and missing SPF dependencies in one run instead of base-record-only estimates.
Tool: tls-checker, Improvement: added full certificate chain analysis with per-certificate role, signature algorithm, and expiry visibility plus chain-wide earliest-expiry and expired-certificate risk flagging, Impact: expected to cut hidden intermediate-certificate expiry misses by surfacing chain bottlenecks and stale chain elements in one run instead of leaf-only checks.
Tool: ip-reputation-lookup, Improvement: expanded input from IP-only to IP, hostname, or URL with automatic multi-endpoint resolution and per-endpoint risk scoring across up to 4 public A and AAAA targets, Impact: expected to cut false single-endpoint conclusions by exposing highest-risk and average-risk drift across load-balanced or dual-stack targets in one run.
Tool: mx-lookup, Improvement: added MTA-STS and TLS-RPT policy auditing with live _mta-sts and _smtp._tls TXT detection, HTTPS policy-file parsing, and validity checks for mode, mx patterns, max_age, and rua destinations, Impact: expected to cut false mail-security-ready assessments by exposing transport-policy and reporting misconfigurations in the same run instead of requiring separate DNS and policy checks.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: webrtc-leak-test, Improvement: added ICE path classification and risk logic based on host, srflx, prflx, and relay candidate types with relay-only posture detection and transport visibility per candidate, Impact: expected to reduce false high-risk leak flags by separating direct local host exposure from relay-only sessions while improving VPN triage accuracy in a single run.
Tool: dmarc-checker, Improvement: added external DMARC report destination authorization auditing for rua and ruf mailto targets using source-domain specific _report._dmarc TXT checks with per-destination evidence, Impact: expected to reduce false report-ready assessments by surfacing unauthorized third-party report mailboxes and invalid report URIs in the same run.
Tool: ip-location-lookup, Improvement: added multi-endpoint geolocation consistency scanning across up to 4 resolved A and AAAA IPs with endpoint-level evidence table and country-city-ASN drift detection, Impact: expected faster CDN and anycast triage by exposing geolocation and ASN divergence across endpoints in one run instead of single-IP assumptions.
Tool: bulk-dns, Improvement: added per-MX target A or AAAA resolution auditing (up to 5 MX hosts) plus SPF record integrity checks that flag missing or multiple SPF records per domain, Impact: expected to cut false mail-ready assessments by surfacing unroutable MX targets and SPF misconfiguration signals in the same bulk run instead of requiring separate MX host and TXT audits.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: cdn-waf-detector, Improvement: added entry-versus-final provider detection with drift analysis that highlights provider changes across redirects, Impact: expected faster CDN and WAF routing incident triage by exposing edge-only versus final-only provider signatures in one run.
Tool: uptime-response-checker, Improvement: added per-run endpoint telemetry with resolved endpoint IP, negotiated HTTP version, and effective final URL plus run-summary drift counters for unique endpoint IPs, final URLs, and HTTP versions, Impact: expected faster load-balancer and edge-route incident triage by exposing backend or protocol drift directly in one 5-run check instead of manual packet and redirect comparison.
Tool: ns-lookup, Improvement: added parent-child delegation consistency audit that compares parent NS delegation with child authoritative NS records and flags aligned, partial mismatch, or mismatch states with exact host diffs, Impact: expected faster DNS delegation incident triage by removing manual cross-checking and exposing stale or split NS sets in one run.
Tool: reverse-ip-lite, Improvement: added forward DNS validation for each discovered co-hosted domain with verified, stale, and unresolved status plus resolved A/AAAA evidence, Impact: expected to reduce false co-hosting assumptions by showing whether each returned domain still resolves back to the tested IP in the same run.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: email-deliverability-check, Improvement: added live SMTP reachability and STARTTLS coverage probing across up to 3 MX hosts with per-host handshake evidence and connect timing, Impact: expected to cut false-ready mail assessments by exposing transport-layer delivery blockers and TLS support gaps in a single run instead of DNS-only checks.
Tool: http-headers, Improvement: added case-insensitive security-header detection and a quality-scored posture audit with per-header warnings for weak values (for example short HSTS max-age, unsafe CSP directives, and unsafe Referrer-Policy), Impact: expected to reduce false missing-header reports caused by header casing to near zero and cut manual header-quality interpretation from multiple checks to one scored run.
Tool: dns-leak-test, Improvement: upgraded detection to run 3 resolver rounds with stable-resolver selection, resolver-stability confidence, unique-resolver drift visibility, and public-IP endpoint fallback, Impact: expected lower single-sample false positives by requiring repeated resolver agreement and exposing confidence as round-based stability percentage.
Tool: ipv6-checker, Improvement: upgraded to a multi-provider reliability probe that runs 3 rounds per family across ipify and local API endpoints with pass ratio, median latency, and per-attempt evidence, Impact: expected lower false IPv6 failure diagnosis by requiring repeated cross-provider confirmation instead of a single endpoint check and exposing reliability as pass percentage.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: tls-expiry-monitor, Improvement: added multi-endpoint TLS consistency probing across up to 4 resolved A/AAAA IPs with per-endpoint handshake status, hostname-match evidence, and certificate fingerprint comparison, Impact: expected faster load-balanced certificate incident triage by reducing manual per-IP TLS checks from multiple runs to one run with direct drift detection.
Tool: port-checker, Improvement: upgraded scans to resolve and test up to 4 public A and AAAA endpoint IPs per target port with endpoint-level evidence, Impact: expected to reduce false closed results on dual-stack and round-robin hosts by validating each configured port across multiple live endpoints in one run.
Tool: redirect-checker, Improvement: added per-hop security transition analysis with cross-host redirect detection and HTTPS-downgrade flags plus entry-versus-final host comparison, Impact: expected faster open-redirect and transport-downgrade triage by surfacing host-boundary jumps and insecure protocol transitions in one run without manual hop inspection.
Tool: dns-lookup, Improvement: added loop-safe CNAME chain tracing with per-hop canonical target mapping, alternate-target notes, terminal host detection, and automatic A or AAAA endpoint count expansion for each hop, Impact: expected to reduce multi-step alias-debug workflow from separate CNAME plus A/AAAA checks to one run with up to 10 traced hops and explicit terminal endpoint visibility.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: ipv4-checker, Improvement: added cross-header IPv4 agreement analysis with parsed candidate evidence per signal and automatic spoof-risk classification (Low, Medium, High) based on mismatch count and corroborating headers, Impact: expected faster proxy-chain and forged-header triage by reducing manual header comparison from multiple checks to one run with explicit agreement signals and conflict counts.
Tool: cidr-subnet-calculator, Improvement: added optional child subnet split planning that expands an input IPv4 CIDR into a target prefix and returns per-child network, broadcast, usable range, and usable-host counts with safe truncation at 512 rows, Impact: expected to reduce manual subnet-allocation work from repeated single-subnet calculations to one run that can generate up to 512 planned child subnets with full addressing evidence.
Tool: http2-http3-checker, Improvement: added entry-point versus final-destination protocol probing with redirect-chain downgrade detection and first-redirect visibility for both HTTP/2 and HTTP/3 checks, Impact: expected faster edge-to-origin misconfiguration diagnosis by showing where protocol support drops in a single run instead of requiring separate manual no-redirect and follow-redirect tests.
Tool: asn-lookup, Improvement: added resilient dual-provider ASN intelligence with automatic fallback from ip-api to ipwho.is and per-IP source attribution plus source-coverage summary, Impact: expected lookup completion rate increase during upstream throttling or outages by allowing one provider failure without losing the whole run and exposing evidence of which source served each result.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: dnssec-validator, Improvement: added cryptographic DS-DNSKEY chain validation that computes DNSKEY key tags and RFC digest matches (SHA-1, SHA-256, SHA-384) and flags delegation mismatches with per-DS evidence, Impact: expected validation accuracy increase by eliminating DS-plus-DNSKEY false positives and surfacing real stale-parent or rollover mismatch cases in one run.
Tool: traceroute-viewer, Improvement: added per-hop packet-loss estimation and min-avg-max jitter telemetry plus automatic bottleneck detection that flags high-loss and large latency-jump hops with endpoint evidence, Impact: expected faster network path triage by reducing manual hop comparison and loss spotting from multiple traceroute passes to one run with ranked bottleneck signals.
Tool: robots-sitemap-validator, Improvement: added robots.txt crawl-rule simulation that parses User-agent Allow and Disallow groups and evaluates wildcard versus Googlebot access decisions across common sensitive paths with matched-rule evidence, Impact: expected faster SEO and crawler-policy debugging by turning manual rule interpretation into one run with explicit allowed or blocked decisions per path and agent.
Tool: webrtc-leak-test, Improvement: added HTTP-vs-WebRTC public IP mismatch detection by fetching the browser HTTP public IP and comparing it against discovered public ICE candidates, with explicit mismatch flagging in the leak summary, Impact: expected faster VPN leak triage by collapsing a manual two-step cross-check into one run and immediately surfacing split-tunnel or partial-protection signals.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: mx-lookup, Improvement: added live SMTP capability probing per MX target with EHLO-based STARTTLS detection, reachability notes, and banner evidence plus aggregate STARTTLS coverage in the summary, Impact: expected faster mail security triage by replacing separate manual SMTP checks with one run that shows TLS-ready versus plaintext-only MX posture across all exchangers.
Tool: security-headers-score, Improvement: added response-cookie hardening analysis that scores Set-Cookie flags per cookie (Secure, HttpOnly, SameSite) and detects SameSite=None without Secure while folding cookie posture into the final security score, Impact: expected higher web-hardening accuracy by exposing cookie-level risk evidence in one run and reducing missed session-cookie misconfigurations during header audits.
Tool: reverse-dns, Improvement: expanded lookup input to accept IP, hostname, or URL and run PTR plus forward-confirmed reverse DNS checks across all resolved A and AAAA endpoints with per-endpoint evidence output, Impact: expected higher diagnosis accuracy on multi-IP and dual-stack targets by replacing single-IP PTR checks with one run that returns endpoint-level pass-fail FCrDNS results.
Tool: whois-lite, Improvement: added resilient registration-data fallback by resolving IANA RDAP bootstrap servers and auto-merging RDAP registrar, lifecycle events, statuses, and nameservers when WHOIS output is missing or partial, plus explicit data-source visibility, Impact: expected higher lookup reliability on WHOIS-restricted registries and thinner responses by restoring key ownership and expiry fields in one run instead of failing with empty WHOIS output.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: cdn-waf-detector, Improvement: upgraded detection to be redirect-aware with per-provider weighted confidence scoring from header-key, header-value, and DNS CNAME evidence across both initial and final hosts, Impact: expected higher provider identification accuracy and clearer triage by exposing high-medium-low confidence with explicit scores and dual-host DNS evidence in one run.
Tool: port-range-scanner, Improvement: upgraded scanner to normalize URL or host input, resolve and scan all target A/AAAA addresses, and support mixed port lists plus ranges with open, closed, and timeout states, Impact: expected higher scan accuracy on multi-IP hosts and faster operator workflow by reducing per-IP rescans and manual port list expansion into one run with endpoint-level evidence.
Tool: reverse-ip-lite, Improvement: rebuilt into a true reverse IP checker with domain, URL, or IP input normalization, public-IP guardrails, automatic A/AAAA resolution, per-IP co-hosted domain discovery, and lookup timing plus source visibility, Impact: expected faster co-hosting investigations by replacing plain DNS resolve output with one run that returns shared-domain evidence and unique domain counts across up to 3 resolved IPs.
Tool: internet-speed-test, Improvement: added robust multi-round accuracy mode using trimmed averages for download, upload, and ping plus a measurement-confidence score derived from round spread and packet loss, Impact: expected lower outlier bias and clearer reliability grading by replacing single-mean reporting with repeatability-aware results and explicit confidence scoring per run.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: website-pagespeed, Improvement: added Chrome UX Report Core Web Vitals field-data verdicts (LCP, INP, CLS p75 plus good-user share and status) and full Lighthouse category breakdown for mobile and desktop, Impact: expected faster performance triage by replacing score-only output with real-user CWV pass or fail evidence and 6 additional diagnostic signals per run.
Tool: user-agent-analyzer, Improvement: rebuilt analysis to parse browser and version, operating system, device type, rendering engine, and weighted bot or crawler risk signals with a 0-100 score plus one-click current-UA fill, Impact: expected faster traffic triage by replacing class-only output with 6 additional diagnostics and stronger bot evidence in a single run.
Tool: ip-location-lookup, Improvement: rebuilt lookup to accept IP, hostname, or URL input with public-IP guardrails, automatic DNS resolution, and provider fallback from ip-api to ipwho.is plus resolved-target and data-source visibility, Impact: expected higher lookup reliability by reducing single-provider failure cases and cutting input-prep steps from multiple manual conversions to one run.
Tool: dns-propagation, Improvement: rebuilt propagation checker with URL or domain normalization, multi-record support (A, AAAA, CNAME, MX, TXT, NS), resolver latency telemetry, and consensus mismatch analysis across 4 public DNS-over-HTTPS resolvers, Impact: expected faster DNS incident triage by replacing single-output A checks with one run that quantifies propagation agreement percentage, mismatch count, and resolver timing evidence.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates confirmed within last 4h; no Stripe/product/pricing changes.
Tool: dmarc-checker, Improvement: rebuilt DMARC analysis to normalize URL and email-domain input, detect multiple-record PermError risk, parse and validate key tags (p, sp, pct, adkim, aspf, rua, ruf, fo, ri), and produce a scored findings report, Impact: expected faster email-authentication triage by reducing manual DMARC policy parsing and syntax validation from multiple DNS and RFC checks to one run with explicit risk findings and a 0-100 posture score.
Tool: dns-leak-test, Improvement: rebuilt the page into an active DNS leak audit that detects resolver egress via EDNS, enriches both public IP and resolver IP with ASN and country metadata, and produces evidence-based risk scoring with optional expected-country and expected-provider validation, Impact: expected faster and more accurate VPN DNS leak triage by replacing static instructions with one-run mismatch evidence and prioritized leak risk signals.
Tool: ns-lookup, Improvement: rebuilt NS lookup into a delegation-aware audit that normalizes URL or host input, walks parent zones to find effective authoritative NS records, adds SOA context, and resolves each nameserver to A and AAAA with address-health visibility, Impact: expected faster DNS delegation triage by replacing single-query NS output with one run that exposes effective zone source, resolver trace timing, and nameserver reachability evidence.
Tool: geo-latency-estimator, Improvement: rebuilt estimator to accept source and target as public IP, hostname, or URL with public A or AAAA resolution, reject private or reserved endpoints, and output best-case, typical, and congested RTT models plus one-way estimate and resolution evidence, Impact: expected higher triage accuracy and fewer false assumptions by replacing single-point IP-only estimation with multi-endpoint validated modeling and explicit IP evidence in one run.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive updates detected within last 4h; no Stripe/product/pricing changes.
Tool: spf-checker, Improvement: rebuilt SPF analysis with URL-host normalization, multiple-SPF PermError detection, DNS lookup budget estimation against the RFC 10-lookup limit, include and redirect extraction, and policy risk findings, Impact: expected faster email authentication triage by replacing manual SPF parsing and lookup counting with one run that highlights hard failures and near-limit risks.
Tool: tls-checker, Improvement: rebuilt the checker into a full TLS posture probe with URL or host and port normalization, certificate hostname validation, expiry risk classification with days remaining, negotiated cipher and protocol telemetry, chain-length visibility, and active TLS 1.0-1.3 support probing, Impact: expected faster certificate incident triage by replacing fragmented manual checks with one run that shows hostname trust fit, expiry urgency, and protocol compatibility evidence.
Tool: ip-reputation-lookup, Improvement: expanded the checker into a scored reputation audit with public-IP guardrails, multi-source DNSBL snapshot (Spamhaus, SpamCop, SORBS, Barracuda), and reverse-DNS plus forward-confirmed PTR validation with explicit evidence, Impact: expected faster abuse triage by replacing separate blacklist and PTR checks with one run that surfaces DNSBL hit count, FCrDNS status, and weighted risk reasoning.
Tool: bulk-dns, Improvement: upgraded from basic A or NS output to a full bulk DNS readiness audit with URL-host normalization, duplicate suppression, A and AAAA plus MX and NS evidence, null-MX detection, per-domain DNS timing, and run-level summary counters, Impact: expected faster multi-domain triage by replacing repeated single-domain checks with one run that surfaces web and mail DNS posture and likely misconfigurations.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive updates present within last 4h; no Stripe/product/pricing changes.
Tool: email-deliverability-check, Improvement: upgraded from basic presence checks to a full deliverability readiness audit with domain normalization, MX and null-MX detection, SPF record count and policy checks, DMARC policy/pct/rua parsing, common DKIM selector discovery, and a pass-fail scorecard with DNS evidence, Impact: expected faster mail setup triage by replacing manual MX/SPF/DMARC/DKIM cross-checking with one run that reports actionable failures and a readiness score.
Tool: robots-sitemap-validator, Improvement: rebuilt validation into active robots.txt and sitemap.xml checks with URL normalization, redirect and status telemetry, Sitemap directive extraction, XML structure validation, and issue summary output, Impact: expected faster crawler-readiness triage by replacing manual fetch and XML inspection steps with one run that surfaces status, structure, and actionable errors.
Tool: ipv4-checker, Improvement: replaced single REMOTE_ADDR check with proxy-aware public IPv4 detection across CF-Connecting-IP, True-Client-IP, X-Forwarded-For, X-Real-IP, and Forwarded plus source-confidence and evidence table output, Impact: expected higher detection accuracy behind CDN or reverse-proxy setups and faster troubleshooting by exposing which header produced the final IPv4 result.
Tool: http-headers, Improvement: rebuilt header fetch with redirect-aware HEAD-to-GET fallback, per-hop header chain parsing, final-response security-header checklist, and fetch telemetry including total time, redirects, and negotiated HTTP version, Impact: expected faster header debugging by collapsing multi-step redirect and security verification into one run with explicit evidence and timing context.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates detected within last 4h; no Stripe/product/pricing changes.
Tool: dns-lookup, Improvement: upgraded lookup to accept URL-host input normalization, added CAA and SOA coverage, TXT segment stitching, public-domain guardrails, and per-record-type resolver timing summary, Impact: expected faster DNS triage by replacing multi-tool validation and type-by-type checks with one run that shows coverage and lookup performance evidence.
Tool: mx-lookup, Improvement: upgraded MX analysis with null-MX detection, implicit MX fallback detection, and per-MX target A/AAAA resolution health evidence, Impact: expected faster inbound mail routing triage by reducing manual RFC fallback checks and MX target DNS validation from multiple lookups to one run.
Tool: ipv6-checker, Improvement: replaced static IPv6-only detection with active dual-stack probing that tests IPv4-only and IPv6-only browser reachability, includes per-probe latency, explicit fail reasons, and clear network-mode classification, Impact: expected faster IPv6 incident triage by reducing manual cross-check steps from multiple external tests to one in-page run with direct pass-fail evidence.
Tool: traceroute-viewer, Improvement: added strict public-target validation with URL-host normalization and DNS resolution filtering to block private or reserved destinations before running traceroute, Impact: expected 100% rejection of localhost or private-network tracing attempts and clearer run context by showing resolved public target IPs.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates detected within last 4h; no Stripe/product/pricing changes.
Tool: webrtc-leak-test, Improvement: replaced raw candidate dump with structured WebRTC leak classification for public/private IPv4, public/local IPv6, and mDNS plus ICE type parsing, risk scoring, and timeout-safe completion, Impact: expected faster privacy triage by reducing manual candidate interpretation from multiple parsing steps to one clear risk summary per run.
Tool: cidr-subnet-calculator, Improvement: upgraded subnet math with strict IPv4 validation, wildcard mask, first-last usable range, total address count, and RFC 3021-correct /31 usable-host handling, Impact: expected higher planning accuracy by removing /31 undercount errors and cutting manual subnet derivation steps from multiple calculations to one run.
Tool: whois-lite, Improvement: upgraded parsing to accept URL-style input, aggregate multi-status WHOIS lines, deduplicate nameservers, and expose days-to-expiry plus nameserver evidence, Impact: expected faster domain hygiene triage by reducing manual WHOIS cleanup steps from multiple scans to one run.
Tool: reverse-dns, Improvement: added forward-confirmed reverse DNS (FCrDNS) validation with explicit pass/fail states, forward-IP evidence, and PTR mismatch notes, Impact: expected faster mail-server and reputation troubleshooting by showing whether PTR hostname resolves back to the tested IP in one run.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; substantive tool updates detected within last 4h; no Stripe/product/pricing changes.
Tool: asn-lookup, Improvement: expanded lookup input to accept IP, hostname, or URL with multi-record DNS resolution and per-IP ASN distribution summary, Impact: expected higher routing-analysis accuracy for CDN or multi-IP domains by exposing single-ASN vs multi-ASN posture in one run.
Tool: tls-expiry-monitor, Improvement: rebuilt probing to support URL or host with custom port, TLS handshake timing, SAN or CN hostname match validation, and full presented certificate-chain visibility, Impact: expected faster certificate incident triage with fewer false host-match assumptions by showing expiry state, match evidence, and chain details in one run.
Tool: dnssec-validator, Improvement: upgraded validation from raw DS/DNSKEY counts to zone-apex-aware DNSSEC posture analysis with delegation mismatch states and DS or DNSKEY evidence tables, Impact: expected higher accuracy for host inputs like www subdomains and faster triage by showing signed, unsigned, or broken delegation outcomes with actionable proof in one run.
Tool: redirect-checker, Improvement: added relative redirect resolution with loop detection and per-hop timing plus final-hop summary, Impact: expected higher trace accuracy on relative Location chains and faster troubleshooting with direct hop count, total probe time, and loop visibility in one run.
Ops update: Recent changes (read-only) verification pass completed for My-IP-IS; monitoring active; no Stripe/product/pricing changes.
Tool: http2-http3-checker, Improvement: replaced header-only protocol guess with redirect-aware active HTTP/2 and HTTP/3 probes plus Alt-Svc fallback evidence and final-hop telemetry, Impact: expected lower false positives and faster debugging by showing negotiated protocol, final URL, redirects, status code, and probe time in one run.
Tool: cdn-waf-detector, Improvement: upgraded detection from single-header scan to combined redirect-aware header plus DNS CNAME evidence with per-provider proof output, Impact: expected higher provider identification accuracy and faster troubleshooting by showing explicit detection evidence instead of a generic guess.
Tool: security-headers-score, Improvement: replaced binary header presence scoring with weighted quality validation and HEAD-to-GET fallback fetching, Impact: expected higher scoring accuracy by distinguishing weak vs strong policies and reducing false fetch failures on HEAD-blocked endpoints.
Tool: uptime-response-checker, Improvement: added redirect rate percentage metric to the 5-run summary output, Impact: each run now exposes redirect share (%) directly, reducing manual redirect-rate calculation from 1 step to 0.
Tool: port-checker, Improvement: added closed latency p95 metric to scan summary output, Impact: each run now exposes closed-port tail latency (ms) directly, reducing manual closed-latency p95 extraction from 1 step to 0.
Tool: uptime-response-checker, Improvement: added healthy SLA miss runs metric (>=500 ms with 2xx/3xx) to the 5-run summary output, Impact: each run now exposes total healthy checks missing the <500 ms SLA as X/5 directly, reducing manual near-plus-slow healthy counting from 1 step to 0.
Tool: port-checker, Improvement: added open latency range metric (max-min) to scan summary output, Impact: each run now exposes open-port latency spread in ms directly, reducing manual max-minus-min calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added dominant status code metric (most frequent HTTP code with run count) to the 5-run summary output, Impact: each run now exposes the primary HTTP status pattern as code plus X/5 directly, reducing manual status-frequency counting from 1 step to 0.
Tool: port-checker, Improvement: added open latency p95 metric to scan summary output, Impact: each run now exposes open-port tail latency (ms) directly, reducing manual open-latency p95 extraction from 1 step to 0.
Tool: uptime-response-checker, Improvement: added near-SLA healthy runs counter (500-999 ms and 2xx/3xx) to the 5-run summary output, Impact: each run now exposes borderline-latency successful checks as X/5 directly, reducing manual 500-999 ms healthy-run counting from 1 step to 0.
Tool: port-checker, Improvement: added open latency IQR metric to scan summary output, Impact: each run now exposes middle-50% open-port latency spread (ms) directly, reducing manual open p75-p25 calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added status stability rate percentage ((unchanged adjacent status transitions)/4) to the 5-run summary output, Impact: each run now exposes HTTP status consistency (%) directly, reducing manual stable-transition calculation from 1 step to 0.
Tool: port-checker, Improvement: added near-timeout rate percentage (>=900 ms) to scan summary output, Impact: each run now exposes near-timeout probe share (%) directly, reducing manual near-timeout ratio calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added status code changes counter (run-to-run code flips) to the 5-run summary output, Impact: each run now exposes HTTP status volatility as X/4 directly, reducing manual adjacent status-change counting from 1 step to 0.
Tool: port-checker, Improvement: added balanced probes counter (100-499 ms) to scan summary output, Impact: each run now exposes mid-latency probes as X/total directly, reducing manual 100-499 ms counting from 1 step to 0.
Tool: uptime-response-checker, Improvement: added average failed-run latency metric to the 5-run summary output, Impact: each run now exposes failed-check mean response time (ms) directly, reducing manual failed-run averaging from 1 step to 0.
Tool: port-checker, Improvement: added closed responsive rate percentage (<300 ms among closed ports) to scan summary output, Impact: each run now exposes quickly-closed probe share (%) directly, reducing manual closed-under-300 ms calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added latency interquartile range (IQR) metric to the 5-run summary output, Impact: each run now exposes middle-50% latency spread (ms) directly, reducing manual p75-p25 calculation from 1 step to 0.
Tool: port-checker, Improvement: added latency interquartile range (IQR) metric to scan summary output, Impact: each run now exposes middle-50% latency spread (ms) directly, reducing manual p75-p25 calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added error status rate percentage (4xx/5xx) to the 5-run summary output, Impact: each run now exposes combined HTTP error-status share (%) directly, reducing manual (4xx+5xx)/5 calculation from 1 step to 0.
Tool: port-checker, Improvement: added scan throughput metric (ports/s) to summary output, Impact: each run now exposes effective scan speed directly, reducing manual ports-over-time calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added SLA pass rate within healthy statuses percentage to the 5-run summary output, Impact: each run now exposes how many healthy (2xx/3xx) checks met the <500 ms SLA (%) directly, reducing manual SLA-within-healthy calculation from 1 step to 0.
Tool: port-checker, Improvement: added median closed-port latency metric to scan summary output, Impact: each run now exposes typical closed-probe response time (ms) directly, reducing manual closed-latency midpoint calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added healthy status rate percentage (2xx/3xx) to the 5-run summary output, Impact: each run now exposes healthy HTTP status share (%) directly, reducing manual (2xx+3xx)/5 calculation from 1 step to 0.
Tool: port-checker, Improvement: added responsive rate percentage (<300 ms) to scan summary output, Impact: each run now exposes responsive-probe share (%) directly, reducing manual responsive-rate calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added timeout rate percentage to the 5-run summary output, Impact: each run now exposes timeout share (%) directly, reducing manual timeout-rate calculation from 1 step to 0.
Tool: port-checker, Improvement: added open slowdown factor (max/min latency ratio) to scan summary output, Impact: each run now exposes worst-to-best open-port latency spread as a direct x-value, reducing manual max-to-min ratio calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added slowdown factor metric (max/min latency ratio) to the 5-run summary output, Impact: each run now exposes worst-to-best latency spread as a direct x-value, reducing manual max-to-min ratio calculation from 1 step to 0.
Tool: port-checker, Improvement: added timeout share of closed ports percentage to scan summary output, Impact: each run now exposes closed-port timeout composition (%) directly, reducing manual timeout-versus-closed ratio calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added slowest successful-run latency to the 5-run summary output, Impact: each run now exposes worst-case successful response time (ms) directly, reducing manual max success-latency extraction from 1 step to 0.
Tool: port-checker, Improvement: added open latency coefficient of variation percentage to scan summary output, Impact: each run now exposes normalized open-port latency volatility (CV %) directly, reducing manual stddev-to-mean normalization from 1 step to 0.
Tool: uptime-response-checker, Improvement: added latency coefficient of variation percentage to the 5-run summary output, Impact: each run now exposes normalized latency volatility (CV %) directly, reducing manual stddev-to-mean normalization from 1 step to 0.
Tool: port-checker, Improvement: added median open-port latency metric to scan summary output, Impact: each run now exposes median open-port connect time (ms) directly, reducing manual open-latency midpoint calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: removed duplicated trailing closing markup after the document end, Impact: expected 100% single valid HTML document ending, preventing malformed parser tail output.
Tool: port-checker, Improvement: added open latency standard deviation metric to scan summary output, Impact: each run now exposes open-port latency spread (stddev ms) directly, reducing manual open-latency variability calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added slow healthy runs counter (>=1000 ms and 2xx/3xx) to the 5-run summary output, Impact: each run now exposes degraded-but-successful checks as X/5 directly, reducing manual slow-success counting from 1 step to 0.
Tool: port-checker, Improvement: added average open-port latency metric to scan summary output, Impact: each run now exposes mean open-port connect time (ms) directly, reducing manual open-latency averaging from 1 step to 0.
Tool: uptime-response-checker, Improvement: added fast healthy runs counter (<200 ms and 2xx/3xx) to the 5-run summary output, Impact: each run now exposes strong-performance successful checks as X/5 directly, reducing manual sub-200 ms success counting from 1 step to 0.
Tool: port-checker, Improvement: added responsive probes counter (<300 ms) to the scan summary output, Impact: each run now exposes responsive-latency probes as X/total directly, reducing manual <300 ms counting from 1 step to 0.
Ops update: Recent changes read-only feed check completed; format and timestamps verified.
Tool: uptime-response-checker, Improvement: added SLA pass runs counter (<500 ms and 2xx/3xx) to the 5-run summary output, Impact: each run now exposes SLA-compliant checks as X/5 directly, reducing manual SLA pass counting from 1 step to 0.
Tool: port-checker, Improvement: removed duplicated trailing closing markup after the document end, Impact: expected 100% single valid HTML document ending, preventing malformed parser tail output.
Tool: uptime-response-checker, Improvement: added very fast runs counter (<50 ms) to the 5-run summary output, Impact: each run now exposes sub-50 ms checks as X/5 directly, reducing manual <50 ms counting from 1 step to 0.
Tool: port-checker, Improvement: added very fast probes counter (<20 ms) to the scan summary output, Impact: each run now exposes ultra-low-latency probes as X/total directly, reducing manual <20 ms counting from 1 step to 0.
Tool: uptime-response-checker, Improvement: added ultra fast runs counter (<100 ms) to the 5-run summary output, Impact: each run now exposes very low-latency checks as X/5 directly, reducing manual <100 ms counting from 1 step to 0.
Tool: port-checker, Improvement: added very slow probes counter (>=2000 ms) to the scan summary output, Impact: each run now exposes severe-latency probes as X/total directly, reducing manual >=2000 ms counting from 1 step to 0.
Tool: uptime-response-checker, Improvement: added very slow runs counter (>=2000 ms) to the 5-run summary output, Impact: each run now exposes severe-latency checks as X/5 directly, reducing manual >=2000 ms counting from 1 step to 0.
Tool: port-checker, Improvement: added slow probes counter (>=500 ms) to the scan summary output, Impact: each run now exposes moderate-latency probe pressure as X/total directly, reducing manual >=500 ms counting from 1 step to 0.
Tool: uptime-response-checker, Improvement: added fastest successful-run latency to the 5-run summary output, Impact: each run now exposes best-case success response time (ms) directly, reducing manual fastest-success lookup from 1 step to 0.
Tool: port-checker, Improvement: added ultra-fast probes counter (<50 ms) to the scan summary output, Impact: each run now exposes ultra-low-latency probes as X/total directly, reducing manual <50 ms counting from 1 step to 0.
Tool: uptime-response-checker, Improvement: added max failure streak counter to the 5-run summary output, Impact: each run now exposes the longest consecutive failed-check sequence as X/5 directly, reducing manual failure-streak counting from 1 step to 0.
Tool: port-checker, Improvement: added explicit refused-connections counter and refused-rate percentage to the scan summary output, Impact: each run now exposes connection-refused outcomes as X/total and %, reducing manual refused-error counting from 1 step to 0.
Tool: uptime-response-checker, Improvement: added explicit 3xx-runs counter to the 5-run summary output, Impact: each run now exposes redirect-status checks as X/5 directly, reducing manual 3xx counting from 1 step to 0.
Tool: port-checker, Improvement: added fast probes counter (<100 ms) to the scan summary output, Impact: each run now exposes low-latency probes as X/total directly, reducing manual fast-probe counting from 1 step to 0.
Tool: uptime-response-checker, Improvement: added explicit 2xx-runs counter to the 5-run summary output, Impact: each run now exposes successful HTTP status checks as X/5 directly, reducing manual 2xx counting from 1 step to 0.
Tool: http2-http3-checker, Improvement: blocks localhost/private/reserved targets before protocol probing, Impact: expected 100% rejection of internal/private destination checks, reducing SSRF and internal network probing risk.
Tool: port-checker, Improvement: added near-timeout probes counter (>=900 ms) to the scan summary output, Impact: each run now exposes slow-probe pressure as X/total directly, reducing manual near-timeout counting from 1 step to 0.
Tool: uptime-response-checker, Improvement: removed duplicated trailing HTML fragments after the closing document tags, Impact: expected 100% clean single document ending on this tool page, preventing malformed markup rendering artifacts.
Tool: port-checker, Improvement: removed duplicate broken closing tags at the end of the page markup, Impact: expected 100% valid HTML document ending for this tool page, preventing parser quirks and ensuring consistent rendering.
Tool: uptime-response-checker, Improvement: added explicit 4xx-runs counter to the 5-run summary output, Impact: each run now exposes client-error checks as X/5 directly, reducing manual 4xx counting from 1 step to 0.
Tool: port-checker, Improvement: added explicit hard-closed ports counter (closed minus timeouts) to the scan summary output, Impact: each run now exposes non-timeout closed ports directly, reducing manual subtraction from 1 step to 0.
Tool: uptime-response-checker, Improvement: added explicit 5xx-runs counter to the 5-run summary output, Impact: each run now exposes server-error checks as X/5 directly, reducing manual 5xx counting from 1 step to 0.
Tool: port-checker, Improvement: added per-scan latency standard deviation to the summary output, Impact: each run now exposes latency spread (stddev ms), reducing manual variability calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added median successful-run latency to the 5-run summary output, Impact: each run now exposes a robust success-only central latency metric (ms), reducing manual success-run midpoint calculation from 1 step to 0.
Tool: port-checker, Improvement: added p95 per-port probe latency to the scan summary output, Impact: each run now exposes tail probe latency (ms), reducing manual p95 estimation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added explicit success-runs counter to the 5-run summary output, Impact: each run now exposes successful checks as X/5 directly, reducing manual percentage-to-count conversion from 1 step to 0.
Tool: port-checker, Improvement: added median per-port probe latency to the scan summary output, Impact: each run now exposes median port probe time (ms), reducing manual middle-latency calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added explicit failure-rate percentage to the 5-run summary output, Impact: each run now exposes failed-run ratio (%) directly, reducing manual failure-rate calculation from 1 step to 0.
Tool: port-checker, Improvement: added closed-rate percentage to the scan summary output, Impact: each run now exposes closed-port ratio (%) directly, reducing manual closed-rate calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added average successful-run latency to the 5-run summary output, Impact: each run now exposes success-only mean response time (ms), reducing manual filtering/recalculation from 1 step to 0.
Tool: port-checker, Improvement: added timeout-rate percentage to the scan summary output, Impact: each run now exposes timeout ratio (%) directly, reducing manual timeout-rate calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added max success streak metric to the 5-run summary output, Impact: each run now exposes longest consecutive successful checks X/5, reducing manual streak counting from 1 step to 0.
Tool: port-checker, Improvement: added open-rate percentage to the scan summary output, Impact: each run now exposes a direct open-port ratio (%), reducing manual ratio calculation from 1 step to 0.
Heartbeat check: monitoring/verification pass completed; no substantive changes in last 4h.
Tool: uptime-response-checker, Improvement: added fast-runs counter (<300 ms) to the 5-run summary output, Impact: every run now exposes explicit fast-run count X/5, reducing manual sub-300 ms counting from 1 step to 0.
Tool: port-checker, Improvement: added fastest-open and slowest-open latency metrics to the scan summary, Impact: each run now exposes 2 additional open-port latency extremes (ms), reducing manual min/max extraction from the result table from 1 step to 0.
Tool: uptime-response-checker, Improvement: added max redirect hops to the 5-run summary output, Impact: every run now exposes worst-case redirect depth (max hops), reducing manual max-hop inspection from 1 step to 0.
Tool: port-checker, Improvement: added average scan time per port in the summary and per-open-port connect latency notes, Impact: each run now exposes 1 new aggregate latency metric (ms/port) plus port-level connect timing, reducing manual per-port timing estimation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added average redirect hops metric to the 5-run summary output, Impact: every run now exposes mean redirect depth (hops/request), reducing manual redirect-depth calculation from 1 step to 0.
Tool: port-checker, Improvement: added open/closed/timeout counters to the scan summary line, Impact: each scan now exposes 3 explicit outcome counts (open, closed, timeout) without manual table counting.
Tool: uptime-response-checker, Improvement: added redirecting-runs counter to the 5-run summary output, Impact: every run now reports explicit redirecting runs X/5, reducing manual redirect detection from 1 step to 0.
Tool: uptime-response-checker, Improvement: added slow-runs counter (>=1000 ms) to the 5-run summary output, Impact: every run now reports explicit slow-run count X/5, reducing manual threshold checks from 1 step to 0.
Tool: uptime-response-checker, Improvement: added total test duration to the 5-run summary output, Impact: 100% of runs now expose end-to-end check time in ms, reducing manual timing from 1 step to 0.
Tool: uptime-response-checker, Improvement: added failed-runs counter to the 5-run summary output, Impact: every run now shows explicit failures X/5 (adds 1 new reliability metric and reduces manual failure counting from 1 step to 0).
Tool: uptime-response-checker, Improvement: added standard deviation latency to the 5-run summary output, Impact: 100% of runs now include a dispersion metric to quantify response-time stability without manual calculation.
Tool: uptime-response-checker, Improvement: added p95 latency to the 5-run summary output, Impact: 100% of runs now include a tail-latency metric for faster spike detection.
Tool: uptime-response-checker, Improvement: added timeout run count to the 5-run summary output, Impact: timeout visibility increased from 0 to 1 explicit metric per run (shown as timeouts X/5).
Tool: uptime-response-checker, Improvement: added jitter (max-min latency) to the 5-run summary output, Impact: adds a direct variability metric to 100% of runs and reduces manual variance calculation from 1 step to 0.
Tool: uptime-response-checker, Improvement: added median latency to the 5-run summary output, Impact: reduces outlier skew in quick checks and adds one robust central metric to 100% of runs.
Tool: uptime-response-checker, Improvement: converted validation error messages to English-only wording, Impact: 100% of user-facing validation errors in this tool are now consistently English.
Tool: port-checker, Improvement: added total scan duration output in milliseconds after each run, Impact: gives immediate end-to-end timing visibility for 100% of scans and removes manual stopwatch checks.
Tool: uptime-response-checker, Improvement: added automatic 5-run summary with avg/min/max latency and success rate, Impact: reduces manual interpretation from 4 calculations to 0 per check and speeds triage.
Tool: port-checker, Improvement: reduced per-port socket timeout from 2s to 1s and added explicit timeout note in results, Impact: worst-case full 30-port scan time reduced from ~60s to ~30s (up to 50% faster).
Tool: port-checker, Improvement: blocks private/reserved localhost-style targets by validating public IP/hostname DNS resolution before scanning, Impact: expected 100% rejection of internal/private destination scans (lower SSRF and internal probing risk).
Tool: uptime-response-checker, Improvement: blocks localhost/private/reserved targets via DNS/IP validation, Impact: 100% blocking of internal/private destination hosts in this checker (SSRF risk significantly reduced).
Tool: port-checker, Improvement: support for port ranges in custom input (e.g. 8000-8010), Impact: up to 90% less manual input for contiguous scans (11 ports in 1 token instead of 11 separate values).
Tool: port-checker, Improvement: optional custom port list (comma-separated, max 30), Impact: scan coverage increased from 12 fixed ports to up to 30 targeted ports per check (+150% vs default).
Tool: stats-dashboard | Improvement: “recent changes” now visible directly on login + dashboard and verified live.
Heartbeat check: monitoring/verification pass completed; no substantive changes in last 4h.
Heartbeat check: monitoring/verification pass completed; no substantive changes in last 4h.
Heartbeat check: monitoring/verification pass completed; no substantive changes in last 4h.
Stability recovery: full dashboard + range flow restored.
Stats auth restored with password flow and app-session passthrough.
Removed temporary debug overlay after timing verification.
App monitor UI cleanup: removed clutter lines per feedback.
/stats date/range controls split into explicit actions.