Enter a domain, URL, IP, email, or record and get a focused result without setup.
View SSL certificates from transparency logs
GET /v1/certificates?domain=example.com
Use the browser tool for a fast answer, then move the same logic into scripts, monitoring, or product flows when it becomes repeatable.
Enter a domain, URL, IP, email, or record and get a focused result without setup.
Outputs highlight statuses, risks, records, and next actions instead of raw provider noise.
Use the request and response examples to turn a one-off check into an API call or recipe.
Used by people at amazing companies
Each page is shaped around a practical operational question, not just a raw lookup.
See the current DNS, registration, security, pricing, or reputation evidence.
Compare the result with related checks so the next move is easier to trust.
Copy examples, open linked tools, or move into API documentation when you need scale.
Transparent docs, authenticated requests, and visible reliability details make it easier to evaluate DomScan before you ship.
OpenAPI, Swagger, Postman, CLI, SDK, and MCP links are one click away.
Authenticated endpoints use API keys with clear credit costs before you call them.
Start with 10,000 monthly credits and upgrade only when usage grows.
Start from the curl and HTTP samples, then map the parameters into your application code.
We query Certificate Transparency (CT) logs to show all SSL/TLS certificates issued for a domain. This includes the certificate issuer (Let's Encrypt, DigiCert, etc.), validity dates, Subject Alternative Names (SANs), and certificate chain. You can see both current and historical certificates.
Expired or misconfigured SSL certificates cause browser security warnings that damage user trust and hurt SEO rankings. Certificate monitoring helps you: renew before expiration, detect unauthorized certificate issuance, verify CAA records are working, and ensure proper SSL configuration across all subdomains.
Yes! Use our domain watchlist feature to monitor certificate expiration. You can also use the REST API (GET /v1/certificates) to build custom monitoring. For comprehensive domain monitoring including SSL, DNS, and availability, check our domain health tool which provides an overall security score.
GET /v1/certificates?domain=example.com
{
"certificates": [
{ "common_name": "example.com", "is_expired": false }
]
}
The browser experience previews DomScan's structured endpoints, so teams can validate a use case before writing code.
We query Certificate Transparency (CT) logs to show all SSL/TLS certificates issued for a domain. This includes the certificate issuer (Let's Encrypt, DigiCert, etc.), validity dates, Subject Alternative Names (SANs), and certificate chain. You can see both current and historical certificates.
Expired or misconfigured SSL certificates cause browser security warnings that damage user trust and hurt SEO rankings. Certificate monitoring helps you: renew before expiration, detect unauthorized certificate issuance, verify CAA records are working, and ensure proper SSL configuration across all subdomains.
Certificate Transparency (CT) is a public logging system where Certificate Authorities must record all issued SSL certificates. This helps detect misissued or fraudulent certificates. Our tool queries CT logs to show you every certificate ever issued for your domain - useful for security audits and detecting unauthorized subdomain certificates.
Our tool searches CT logs which include certificates for subdomains. This is also useful for subdomain discovery - if a certificate was issued for staging.example.com, it will appear in results even if you did not know that subdomain existed. Combine with our subdomain finder for comprehensive asset discovery.
Yes! Use our domain watchlist feature to monitor certificate expiration. You can also use the REST API (GET /v1/certificates) to build custom monitoring. For comprehensive domain monitoring including SSL, DNS, and availability, check our domain health tool which provides an overall security score.