Overview
Findings
Details
Related
LynxRadarDirectory → vergesense.com
A+
100 / 100

vergesense.com

Security report · Scanned February 18, 2026

Checks
8
Passed
8
Warnings
0
Critical
0
AI-Generated Summary
What this means

vergesense.com scored 100/100, demonstrating a strong security posture. No material issues found.

How vergesense.com compares

Grade distribution across 2394 companies we've scanned. vergesense.com scores better than 99% of them.

99th percentile
0 Percentile rank 100
72
A+
22
A
180
A-
182
B+
69
B
335
B-
114
C+
111
C
301
C-
110
D+
92
D
217
D-
589
F
vergesense.com — Grade A+ (100/100) 2394 companies scanned
Security checks

Each check inspects a different part of vergesense.com's public security setup. Green means healthy, yellow needs attention, red is a problem.

DNS Configuration
Strengths: 2 nameservers configured (liz.ns.cloudflare.com., curt.ns.cloudflare.com.); 2 MX records present; DNSSEC enabled; Zone transfers properly restricted.
Healthy
TLS Configuration
TLSv1.3 negotiated with TLS_AES_256_GCM_SHA384 (256-bit). Strong configuration with no deprecated protocols or weak ciphers detected.
Healthy
Known Breaches
No known breaches found in public disclosure databases.
Healthy
DMARC / Email Security
Strengths: DMARC policy set to quarantine; SPF record present with soft-fail (~all); DKIM configured (selectors: google, s1, s2, zendesk1, zendesk2).
Healthy
HSTS Header
HSTS enabled: max-age=31536000 with includeSubDomains and preload. Meets best-practice configuration.
Healthy
Security Headers
All 5 recommended security headers present: CSP, X-Content-Type-Options, X-Frame-Options, Referrer-Policy, Permissions-Policy.
Healthy
CVE Exposure
Detected technologies: cloudflare, HubSpot. (cloudflare detected but excluded from CVE matching — upstream infrastructure). No version information exposed — CVE matching not possible (this is good practice).
Healthy
Certificate Hygiene
Strengths: Certificate valid, 36 days remaining; Issued by Google Trust Services.
Healthy
At a glance

Key data points from the scan.

TLS Version
TLSv1.3
TLSv1.3 negotiated with TLS_AES_256_GCM_SHA384 (256-bit). Strong configuration with no deprecated protocols or weak ciphers detected.
DMARC Policy
p=quarantine
Strengths: DMARC policy set to quarantine; SPF record present with soft-fail (~all); DKIM configured (selectors: google, s1, s2, zendesk1, zendesk2).
SPF Record
Present
v=spf1 include:_spf.google.com include:_spf-us.ppe-hosted.com include:_spf.salesforce.com include:80
Security Headers
5/5 present
All headers configured.
HSTS
Enabled
HSTS enabled: max-age=31536000 with includeSubDomains and preload. Meets best-practice configuration.
SSL Certificate
Valid
Strengths: Certificate valid, 36 days remaining; Issued by Google Trust Services.
DNSSEC
Enabled
Strengths: 2 nameservers configured (liz.ns.cloudflare.com., curt.ns.cloudflare.com.); 2 MX records present; DNSSEC enabled; Zone transfers properly restricted.