occhiraPublic Exposure Scanner

occhira helps organisations understand external exposure before attackers do. We combine passive DNS, TLS, header, technology, and OSINT checks into a report written for business owners and IT partners.

The product is in public MVP. Some capabilities on the roadmap are marked as In Development or Coming Soon.

Run a scan
01 / Roadmap

Product timeline

Concept

Defined passive external assessment scope — visibility without intrusion.

Scanner core

Shipped DNS, TLS, headers, technology, and subdomain modules.

Public MVP

Homepage scans and PDF exposure reports without accounts.

In Development

Verified domains

Domain ownership verification before deeper assessments.

Coming Soon

Monitoring

Scheduled re-scans and change alerts for verified domains.

02 / Focus

What we ship

MVP

Exposure report

Structured findings with PDF export for stakeholders.

01
Live module

DNS & email

MX, SPF, and DMARC visibility.

02
RoadmapIn Development

Domain verification

Prove ownership before deeper checks.

03
Live module

TLS & headers

Certificate and browser protection signals.

04
RoadmapComing Soon

Accounts & API

Saved scans and programmatic access.

05
Live module

OSINT modules

Subdomains, robots.txt, and public path signals.

06
03 / Principles

Why we built occhira

01

VISIBILITY FIRST

You cannot reduce exposure you cannot see. occhira starts with what is public today.

02

NO INTRUSION

Passive checks only — no exploitation, no credential attacks, no red team tooling.

03

HONEST MVP

We label roadmap items clearly and do not sell features that are not shipped yet.

04

ACTIONABLE OUTPUT

Reports prioritise fixes your team can implement — written for owners, not log parsers.

Questions or feedback?

We are building occhira in the open during MVP. If you scan domains you are authorised to assess, we would like to hear what would make the report more useful for your team.

Contact us