Security Test: DNSSEC not enabled¶

Scanner(s) Support¶

GraphQL Scanner	REST Scanner	Frontend Scanner

Description¶

Default Severity:

DNSSEC (Domain Name System Security Extensions) is not enabled for the domain. Without DNSSEC, the domain is vulnerable to DNS spoofing and other types of attacks that can compromise the integrity of DNS responses.

Configuration¶

Identifier: configuration/dnssec_disabled

Examples¶

All configuration available:

checks:
  configuration/dnssec_disabled:
    skip: false # default

Compliance and Standards¶

Standard	Value
OWASP API Top 10	A06:2021