Built to give MSPs the truth,
not a talking point.

We built the scanner MSPs actually needed — fast, honest, client-ready, and focused on what matters.

What we stand for.

Every decision we make comes back to these six principles.

Respect for Your Time
39 checks in under 40 seconds. No onboarding calls. No demos required. Real answers immediately, without wasting anyone's day.
"

We built CyberEdge IQ because MSPs kept telling us the same thing: they knew their clients were exposed, but they had no clean way to prove it without it turning into a sales pitch. Clients would nod along, tune out, and do nothing.

We wanted to build something an MSP could hand to any business owner and let the data do the talking. No agenda. No urgency manufactured by a salesperson. Just a clear, honest picture of what attackers can already see about your organization — right now, from the outside.

The Leadership at CyberEdge IQ

Three steps. Under 40 seconds.

No account needed for a free scan. No agents to install. No access to your systems.

1
Enter any domain
Type in any domain name — your client's, a prospect's, or your own. No login required for a free scan.
2
We run 39 checks
Encryption, email security, DNS, headers, web vulnerabilities, and reputation — all checked using only publicly available information.
3
Get a grade + full report
An A–F security grade, prioritised findings, plain-English explanations, and a branded PDF report ready to send to your client.
✓ No account needed ✓ No intrusion or system access ✓ Results in under 40 seconds

39 checks across 6 categories.

Everything an attacker can see about your domain from the outside — before they use it against you.

8 checks
Encryption & Transport
SSL certificate validity, HTTPS enforcement, HSTS policy, HTTP/2 & HTTP/3, HSTS preload status, mixed content, and certificate transparency.
7 checks
Email Security
SPF, DMARC, DKIM, MTA-STS, TLS reporting, BIMI, and email deliverability scoring. Catches the gaps that let attackers impersonate your domain.
6 checks
Security Headers
CSP, X-Frame-Options, X-Content-Type-Options, Referrer Policy, Permissions Policy, and cross-origin headers. Browser-level protections that most sites miss.
8 checks
DNS & Domain
Domain expiry, nameserver redundancy, CAA records, registry lock, reverse DNS, DNS propagation, global availability, and subdomain exposure via certificate transparency logs.
6 checks
Web Application
Open redirects, sensitive file exposure, admin panel visibility, directory listing, CORS policy, cookie security, information disclosure, and WAF/CDN detection.
4 checks
Reputation & Intelligence
Google Safe Browsing, PhishTank lookup, data breach history, typosquat detection, and third-party script risk. What threat intelligence databases say about this domain.

What CyberEdge IQ does

CyberEdge IQ runs a full external security assessment of any domain in seconds — designed for the multi-client reality MSPs work in, where answers need to be fast, credible, and easy to hand to a client.

Scan any client domain in under 40 seconds
No onboarding, no agents, no access needed. Type a domain and get a full security picture immediately.
Branded PDF reports ready to send
Generate a clean, professional report in seconds. Hand it to any business owner and let the data speak for itself.
Multi-client dashboard with scheduled reports
Track all your clients in one place. Set up automated monthly reports so you always know where each client stands.
Findings clients can actually understand
Every finding includes a plain-English explanation of what it means and why it matters — no IT degree required.
Sample report card
A
GRADE
87 / 100
Good posture, minor gaps
MED DMARC policy set to p=none
LOW No CAA record configured
28 checks passing cleanly
Get in touch

Questions? We're here.

For MSP plan inquiries, white-label questions, or anything else.

Email
support@cyberedgeiq.com
Response Time
Within 1 business day
MSP Plans

Frequently asked questions.

Is this a real penetration test?+
No — and that's intentional. CyberEdge IQ is an external reconnaissance scan, not a penetration test. We only use publicly available information — the same sources an attacker would use before targeting your organization. We never attempt to access private systems, inject code, or exploit vulnerabilities. Think of it as "what can someone see about you from the outside."
Is any data stored about the domains I scan?+
We log basic scan metadata (domain, grade, score, IP) to track aggregate usage statistics and enforce fair-use limits on free scans. We do not store the full scan results, findings details, or any sensitive data long-term. Scan data older than 30 days is automatically deleted.
How accurate is the security score?+
The score is based on 39 checks using only publicly visible signals — what any external attacker can see. It's accurate for external exposure assessment but won't catch internal vulnerabilities, unpatched software, or configuration issues that aren't externally visible. A score of 100/100 means your external attack surface is well-hardened, not that you're immune to all attacks.
Can I white-label the reports for my clients?+
Custom branding is on our roadmap for the MSP/Company plan. Currently, reports include the CyberEdge IQ branding. If white-labelling is important to your business, reach out to us at support@cyberedgeiq.com — we're building this feature and want to understand what you need.
Does scanning a domain notify the domain owner?+
No. We only use passive checks — DNS lookups, SSL certificate inspection, HTTP header analysis, and queries to public databases like Google Safe Browsing and certificate transparency logs. None of these methods notify the domain owner or leave traces in their server logs beyond standard web requests.
How many free scans do I get?+
Free users get 3 scans per 30 days from the same device. This limit is tracked by a combination of your IP address and browser fingerprint. MSP account holders on any paid plan get unlimited scans across all their client domains.