SaaSFort re:cap: external security signals
These are the security signals anyone on the public internet can observe for re-cap.com: HTTP security headers, the public DMARC policy, and whether DNS is signed. No login, no probing, nothing private. re:cap has 5 of 7 configured. This is a thin public snapshot, not the full picture. The full SaaSFort scan runs 66 checks across 25 categories.
What this is, and what it is not
This page reports only signals that are publicly visible to any visitor: response headers, a DNS TXT record, and a DNS DS record, observed on 2026-06-04. It is not a penetration test, not an intrusion, and not a complete security assessment. Header presence is one input among many and does not by itself prove a site is secure or insecure. Configurations change; re-check the live source before relying on anything here. If you own re-cap.com and want this page removed, email [email protected] and we remove it within 24 hours.
The seven public signals
| Signal | Observed | Why it matters |
|---|---|---|
| HSTS (Strict-Transport-Security) | Present | Tells browsers to refuse plain-HTTP downgrades. NIS2 Art. 21(2)(h) cryptography in transit. |
| X-Content-Type-Options | Not observed | Stops MIME-sniffing of responses. Baseline hardening header. |
| X-Frame-Options | Present | Clickjacking protection on framed content. |
| Content-Security-Policy | Present | Constrains script/style sources. The strongest single header against injected content. |
| Referrer-Policy | Not observed | Limits referrer leakage to third parties. |
| DMARC policy | Enforcing (p=reject) | Public DNS record. An enforcing policy blocks domain spoofing in phishing. |
| DNSSEC | Signed (DS record present) | Cryptographic authentication of DNS answers against tampering. |
See the other 59 checks, on your own domain, in 60 seconds
Headers are 7 of 66 checks. The full scan also covers TLS configuration, certificate chain, exposed services, cookie flags, and maps every finding to NIS2 Article 21 and ISO 27001 Annex A. No card, no signup for the first scan.
Related: NIS2 Article 21 measures · What a NIS2 audit costs · NIS2 vs ISO 27001 · Security header checklist