Enter a domain, URL, IP, email, or record and get a focused result without setup.
Find potential typosquatting threats to your domain
GET /v1/typos?domain=example.com
Use the browser tool for a fast answer, then move the same logic into scripts, monitoring, or product flows when it becomes repeatable.
Enter a domain, URL, IP, email, or record and get a focused result without setup.
Outputs highlight statuses, risks, records, and next actions instead of raw provider noise.
Use the request and response examples to turn a one-off check into an API call or recipe.
Used by people at amazing companies
Each page is shaped around a practical operational question, not just a raw lookup.
See the current DNS, registration, security, pricing, or reputation evidence.
Compare the result with related checks so the next move is easier to trust.
Copy examples, open linked tools, or move into API documentation when you need scale.
Transparent docs, authenticated requests, and visible reliability details make it easier to evaluate DomScan before you ship.
OpenAPI, Swagger, Postman, CLI, SDK, and MCP links are one click away.
Authenticated endpoints use API keys with clear credit costs before you call them.
Start with 10,000 monthly credits and upgrade only when usage grows.
Start from the curl and HTTP samples, then map the parameters into your application code.
We generate 10+ variation types: keyboard adjacency typos (gogle.com), character swaps (goolge.com), missing letters (gogle.com), doubled letters (googgle.com), homoglyphs (g00gle.com using zeros), bit-flipping attacks, TLD variations (.co instead of .com), hyphen insertion, and IDN/punycode lookalikes using unicode characters that appear identical.
Best practices include: 1) Proactively register common typos of your domain, 2) Monitor for new typosquatting registrations using our watchlist feature, 3) File UDRP complaints for infringing domains, 4) Implement DMARC email authentication to prevent spoofing, 5) Educate users about official domain. Use our social handle checker to secure matching usernames.
Yes! Use GET /v1/typos?domain=example.com&check_registered=true to find currently registered typos. Add high-risk variations to your watchlist for ongoing monitoring. The API also provides a typosquatting protection score showing how vulnerable your domain name is based on its characteristics. Perfect for security teams and brand protection services.
GET /v1/typos?domain=example.com&check_registered=true
{
"threat_level": "high",
"registered_typos": [
{ "domain": "exampel.com", "risk": "high" }
]
}
The browser experience previews DomScan's structured endpoints, so teams can validate a use case before writing code.
Typosquatting (URL hijacking) is when attackers register domains similar to popular brands using common misspellings. These domains capture traffic from typos and are used for phishing attacks, malware distribution, credential theft, ad fraud, and brand impersonation. A single typosquatting domain can compromise thousands of users who mistype your URL.
We generate 10+ variation types: keyboard adjacency typos (gogle.com), character swaps (goolge.com), missing letters (gogle.com), doubled letters (googgle.com), homoglyphs (g00gle.com using zeros), bit-flipping attacks, TLD variations (.co instead of .com), hyphen insertion, and IDN/punycode lookalikes using unicode characters that appear identical.
Best practices include: 1) Proactively register common typos of your domain, 2) Monitor for new typosquatting registrations using our watchlist feature, 3) File UDRP complaints for infringing domains, 4) Implement DMARC email authentication to prevent spoofing, 5) Educate users about official domain. Use our social handle checker to secure matching usernames.
Actions depend on the threat: For phishing/malware sites, report to Google Safe Browsing and your registrar. For trademark infringement, file a UDRP complaint or send a cease-and-desist. For parked domains, consider purchasing them. Document everything with screenshots. Check domain reputation and WHOIS to understand who registered it and when.
Yes! Use GET /v1/typos?domain=example.com&check_registered=true to find currently registered typos. Add high-risk variations to your watchlist for ongoing monitoring. The API also provides a typosquatting protection score showing how vulnerable your domain name is based on its characteristics. Perfect for security teams and brand protection services.