Plain-English security guides.
No jargon, no sales pitch — just what you need to understand the security checks that matter for your business domain.
What is DMARC?
How email authentication stops phishing attacks impersonating your business — and why p=none offers zero protection.
What is an SPF Record?
SPF tells the world which mail servers are allowed to send email from your domain. Without it, anyone can.
SSL Certificate Grades Explained
What A+, B, C and F actually mean for your website security — and the common mistakes that drop your grade.
HTTP Security Headers Explained
CSP, HSTS, X-Frame-Options and more. The invisible headers that protect visitors from clickjacking, XSS and injection.
Security Headers Deep Dive
A practical guide to HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy and Permissions-Policy with recommended values.
Email Authentication Deep Dive
A complete guide to SPF, DKIM, DMARC, MTA-STS, and BIMI. What each protocol does, how to set it up, common mistakes, and how to verify your configuration.
SSL/TLS Certificates Explained
What SSL/TLS is, how certificates work, certificate types (DV/OV/EV), certificate chains, how to get a cert, and common errors with fixes.
DNS Security: A Complete Guide
DNS record types, DNSSEC, DNS over HTTPS/TLS, common attacks like spoofing and cache poisoning, and best practices to protect your domain.
WHOIS and Domain Registration
How WHOIS records affect your security. Domain expiry, privacy protection, registrar locks and preventing hijacking.
Website Security Checklist
An interactive checklist covering SSL/TLS, security headers, email authentication, DNS, cookies, and monitoring. Check off each item as you go.
Want to see how your domain scores?
Run a free scan and get a complete audit covering everything in these guides — plus a dozen more checks.
Scan my domain — free→