Host·Mortem
complete host diagnostics
DNS, SSL, headers, CORS, IP geolocation, email deliverability, WHOIS, and performance — nine panels, one target.
Most diagnostic tools cover one angle. HostMortem runs all ten checks against a single target — free, no account, no limits.
| Feature | HostMortem | MXToolbox | IntoDNS | Qualys SSL Labs | SecurityHeaders.com |
|---|---|---|---|---|---|
| DNS records (A, AAAA, MX, TXT, NS…) | |||||
| SSL/TLS certificate details | |||||
| HTTP security headers grading | |||||
| CORS policy check | |||||
| IP geolocation & ASN lookup | paid | ||||
| robots.txt & crawl rules | |||||
| Email deliverability (SPF, DKIM, DMARC) | |||||
| WHOIS & domain registration | partial | ||||
| Performance metrics | |||||
| All checks — one target, one run | |||||
| Free, no account required | partial |
Based on publicly documented features as of June 2026. Features may vary. Flatline indicates the feature was not found in standard free use of that tool.
Common questions about what HostMortem checks and how to read the results.
HostMortem runs ten diagnostic checks against a single target: DNS records, SSL/TLS certificate details, HTTP security headers, CORS policy, IP geolocation and ASN, robots.txt crawl rules, email deliverability (SPF, DKIM, DMARC), WHOIS registration data, performance metrics, and a security headers scan — all in one run.
Yes, completely free — no account, no sign-up, no rate limits. Enter any domain or IP address and run the full diagnostic instantly.
HostMortem sends your target to a Cloudflare Worker API, which performs live lookups across all ten diagnostic panels simultaneously. Results stream back to your browser as each check completes. No data is stored.
These are email authentication protocols. SPF specifies which servers are authorized to send mail for your domain. DKIM adds a cryptographic signature to outgoing messages. DMARC tells receiving servers what to do when SPF or DKIM fails. All three are checked in the Email panel. See the Email docs for details.
Security headers like Content-Security-Policy, X-Frame-Options, and Strict-Transport-Security protect against clickjacking, XSS, and protocol downgrade attacks. Many servers don't configure them by default. The Headers panel shows exactly which are missing. The Headers docs explain what each one does and how to set it.
Yes. Enter any IPv4 or IPv6 address in the search field. Most panels adapt automatically — the IP panel shows the address's owner, geolocation, and ASN regardless of whether you enter a domain or a raw IP.
After any change to DNS records, server configuration, or SSL certificate. Also useful when setting up a new domain, debugging email delivery failures, or preparing for a security audit.
WHOIS is a public database of domain registration records showing when a domain was registered, when it expires, and — unless privacy protection is enabled — the registrant's contact details. HostMortem's WHOIS panel pulls this data live.