CONTINUOUS INTERNET TELEMETRY24H DRIFT3,251 material changesacross 2,836 domains · -147 vs yesterdayDNS DRIFT21 domains changed DNS providertop destination digicertdns.com + digicertdns.net · -6 vs yesterdayEMAIL DRIFT5 domains switched email providertop destination 365cool.com · -1 vs yesterdayCERT DRIFT8 domains switched issuing CA24h · +1 vs yesterdayNOW3,308 curated domains not answering-6,410 vs yesterdayERRORS10,962 responded with an errorlast probe · 5xx / 404 / 429 / 40324H DRIFT3,251 material changesacross 2,836 domains · -147 vs yesterdayDNS DRIFT21 domains changed DNS providertop destination digicertdns.com + digicertdns.net · -6 vs yesterdayEMAIL DRIFT5 domains switched email providertop destination 365cool.com · -1 vs yesterdayCERT DRIFT8 domains switched issuing CA24h · +1 vs yesterdayNOW3,308 curated domains not answering-6,410 vs yesterdayERRORS10,962 responded with an errorlast probe · 5xx / 404 / 429 / 403

whitehatsec.com

Observed 2026-07-12T18:11:17.588Z (14h ago). Every field below was attested with an Ed25519 signature at scan time.

Up right now
Runs onCloudflare
Email byMicrosoft 365
Also usesAtlassian
8 subdomains · cybersecurity_expanded
Every line above is a signed observation. Check the math at the bottom of the page.
INFRASTRUCTURE MAPwhat whitehatsec.com actually stands on - every host below is a signed observation
whitehatsec.com
A / AAAA
34.96.78.70
Cloudflareserves the site
NS
ns-1486.awsdns-57.orgns-496.awsdns-62.comns-1591.awsdns-06.co.ukns-672.awsdns-20.net
awsdns-57.org + awsdns-62.com + moreanswers its DNS
MX
whitehatsec-com.mail.protection.outlook.com
Microsoft 365receives its email

HTTPS probe

redirect Redirecting (3xx) 301 → https://www.blackduck.com:443/
HTTP status301
Servercloudflare
TLS protocolHTTP/3
TLS issuernot observed
Behind Cloudflareyes
Response time82 ms
DNS resolutionNOERROR
Redirect chain
https://www.blackduck.com:443/

Every field above is part of the same signed observation as the records below. Blank means not observed, never "none".

DNS Records

A 1

  • 34.96.78.70

MX 1

  • 0whitehatsec-com.mail.protection.outlook.com

TXT 4

  • v=spf1 include:spf.protection.outlook.com -all
  • MS=ms36347636
  • atlassian-domain-verification=ERQGj3m0yJJNdWHguGYiKIvWSPbcE5n0EntUhRaDlJEXVWNodORcDBKpbPe4atmk
  • v=DMARC1; p=quarantine; rua=mailto:dmarc_agg@vali.email

NS 4

  • ns-1486.awsdns-57.org
  • ns-496.awsdns-62.com
  • ns-1591.awsdns-06.co.uk
  • ns-672.awsdns-20.net

SOA 1

  • ns-1486.awsdns-57.org awsdns-hostmaster.amazon.com

CAA 5

  • issue sectigo.com
  • issue pki.goog
  • issuewild sectigo.com
  • issue google.com
  • issue letsencrypt.org

TLS Certificates (0)

None.

Subdomains (6)

The proof

Signed at scan time. Check the math yourself. Every line above is part of one signed observation. Re-hash it and check the Ed25519 signature in your own browser; nothing leaves your machine.

Verify this receipt

Put the receipt on your own site. A live badge showing what DomainDrift observes and signs for whitehatsec.com. It updates itself. It attests a signed observation - not that the site is safe.

DomainDrift signed-observation badge for whitehatsec.com <a href="https://domaindrift.io/t/whitehatsec.com"> <img src="https://domaindrift.io/badge/whitehatsec.com.svg" width="300" height="64" alt="DomainDrift signed observations for whitehatsec.com"> </a>

Ed25519 Receipt

Receipt ID
688fb63d-786f-46ec-b0f4-e6248c0f0a63
Output Hash
d82e8015c707836fdd7109c3bd8fbcbacd46f02a4a35db301c37e01a14e15a33
Signature
ed25519:7f1e8eeafa21d6260ad69c696f455e97be3eb626fb21b05fe51486e2711741f6e8733661a34c47494b6ae0691c02dc171f1edc51dbcad3dfcd091c8ce7208e05
Public Key
ed25519:d610d74ef18f683e5beb859d241d5e67dff0c122e8928b06bec1c2476f4ba27b
Parent
(genesis)
Plane
fast
Verify this in your browser