Scanward – Free domain security scanner (SSL, DNS, headers, email auth)

I built Scanward to solve a problem I kept running into as a DevOps engineer: checking whether a domain has its security basics covered (SSL config, DNS hygiene, HTTP security headers, SPF/DKIM/DMARC) meant juggling 4-5 different tools.

Scanward runs all 5 checks in one scan and gives you an A-F grade with specific findings. The free public scanner requires no signup.

If you create an account (free tier: 1 domain), it does continuous monitoring and emails you when something changes — cert expiring, grade drops, missing headers, etc.

Tech stack: FastAPI + Celery + PostgreSQL + Redis on Railway. Next.js dashboard on Cloudflare Pages. All scanning uses public data (DNS queries, HTTP headers, SSL handshakes) — no agents to install.

Would love feedback on the scoring methodology and what checks you'd want to see added.