CQwerty
Blog·30 posts and counting

Field notes from the
operator side of security.

Plain language guides on domain posture, email authentication, web hardening. Written for the operator who needs to ship the fix this afternoon.

2026-04-21·6 minDMARCEmail

DMARC aggregate reports, reading them like an operator.

Aggregate reports show who sends mail as your domain. How to read them, route them, and act on them.

Read article Free DMARC checker
2026-04-18·7 minDataResearch

We scanned the 50 biggest SaaS platforms. 89% nail TLS. Almost nobody gets HTTP headers right.

A snapshot of public security posture across 50 popular SaaS, dev tool, and ecommerce platforms. Who leads, who lags, and what the misses say about the rest of the web.

Read article Scan your domain
2026-04-18·7 minSPFEmail

SPF flattening, fixing the 10 lookup limit.

Flattening resolves include mechanisms into IPs. When to use it, how to do it, what can go wrong.

Read article Free SPF checker
2026-04-17·6 minHSTSHTTPS

HSTS, forcing HTTPS without surprise outages.

How HSTS works, when to enable preloading, and the rollback plan if something breaks.

Read article Free HSTS checker
2026-04-17·6 minDNSSECDNS

DNSSEC, end to end.

Cryptographic signatures on DNS records. What it blocks, how to enable it, and how to verify the chain.

Read article Free DNSSEC checker
2026-04-17·5 minSSLCertificates

TLS certificate chains, when HTTPS quietly breaks.

Incomplete chains cause silent trust errors. How chains work, how to verify them, how to fix them.

Read article Free chain checker
2026-04-17·6 minCookiesWeb

Cookie security, the flags every dev should set.

Secure, HttpOnly, SameSite. The flags that block session hijacking and the defaults you can paste in.

Read article Free cookie checker
2026-04-17·7 minDNS

DNS record types, A, AAAA, CNAME, MX, TXT, more.

The record types that actually matter, what they do, and how to configure them for security and reliability.

Read article Free DNS lookup

Reading these is how operators get sharp.

Run a free scan and the report cites the same checks the articles unpack.

No credit card Results in 90 seconds Read only
Read the guides