External trust monitoring

We watch your domains from the outside and tell you what to fix first

SkyQon checks the certificates, DNS and email authentication your domains present to the internet, scores what it finds, and gives your team the exact fix. Higher plans turn your posture into signed evidence your auditor, insurer or board can verify for themselves.

Live results in about ten seconds. No signup, no email.

No agent to install First scan in seconds Based in the EU
app.skyqon.com/posture
77Trust Score
Scan coverage96%
Email authentication82%
DNS & DNSSEC64%
Certificates & TLS45%
Remediation progress71%
SPFDKIMDMARC p=none DNSSEC offcert 18dMTA-STS subdomain takeover
Open findings
12
Domains monitored
38

Aligned to EU digital trust frameworks

Every SkyQon check maps to a control these frameworks expect — so you hand your auditor evidence, not a compliance badge.

Every finding arrives with its fix attached.

SkyQon turns DNS, email, certificate and TLS findings into remediation steps your team can complete.

  • Plain-language explanation of every finding
  • What it costs the business if left unfixed
  • Exact DNS fixes with copy-paste-ready records
  • One-click verification once you've applied a change
  • Before / after view of the score impact
Finding — DMARC policy is p=noneHigh

Add an enforced DMARC record so spoofed mail from your domain is rejected:

DNS · TXT · _dmarc.yourdomain.com
_dmarc  IN TXT  "v=DMARC1; p=reject; rua=mailto:dmarc@yourdomain.com; pct=100; adkim=s; aspf=s"
Trust Score before: 71 After fix: 79

A trust score you can defend, not a vanity number

SkyQon separates what we checked from how secure you are, so a single weak control never hides behind broad coverage.

Step 1
96%

Scan coverage

How much of your domain estate SkyQon has inspected.

Step 2
71%

Security posture

How strong the controls are across everything we inspected.

Result
77

Domain Trust Score

Derived from coverage and posture, with both inputs always shown.

Read how the Trust Score is calculated →

Prove it

Don't take our word for it. Verify a report yourself

Every SkyQon report is digitally signed (PAdES) and carries a SHA-256 content hash. Anyone you share it with can check its integrity on our public verifier, no account needed.

Download a sample report

A real NIS2 evidence report, signed, with the scoring inputs shown.

Get the sample PDF

Verify it in your browser

Drop any SkyQon report into the public verifier and it checks the signature and content hash for you.

Open the verifier

Built on the full EU trust registry

SkyQon tracks all 32 EU and EEA trust-list territories, around 4,900 qualified trust services, to verify QWACs and qualified seals against the official source.

Built by people who run production trust infrastructure

SkyQon is built and operated in the EU by engineers who run production PKI, EJBCA certificate authorities and eIDAS-aligned trust services for a living. The scoring rules, the evidence formats and the fixes come from that operational practice.

1
unified Trust Score across every module, each scored separately
< 3 min
to your first scored report
30 d
advance warning before certificates expire
0
customer records stored outside the EU
Early access

We are onboarding ten design partners in the Benelux

Early access and direct time with the engineers who build SkyQon, in exchange for honest feedback. If you operate domains that matter, we would like to hear from you.

For every team that owns a domain

SaaS companies

An expired certificate or a rejected signup email costs revenue the hour it happens. Catch both weeks early.

MSPs & IT providers

Watch every client domain from one account and hand each client a report with their name on it.

Security teams

Your EDR does not read DNS zones. Spoofing and takeover risk live in that blind spot.

Compliance teams

NIS2 Article 21 asks you to show working controls. Export the evidence, signed and reproducible.

Agencies

A client's lapsed certificate lands on your desk either way. Get the warning first.

Executives

Know your score before the auditor or the enterprise buyer asks for it.

Frequently asked questions

What is SkyQon?
SkyQon continuously monitors your domain trust posture: email authentication (SPF, DKIM, DMARC), DNS security, TLS and certificates, attack surface, compliance evidence and post-quantum readiness.
Do I need to install anything?
No. SkyQon is agent-less by default and runs from the cloud. The inline scan shows live results in seconds, and your first full monitoring scan completes within minutes of adding a domain. For deeper reach, optional cloud connectors and an internal agent are available on higher tiers.
Is there a free option?
Yes. The Free plan monitors up to 5 domains continuously at no cost and gives you a unified Trust Score with your top findings. No payment details needed to start.
How is SkyQon priced?
Plans are monthly or annual subscriptions billed in EUR or USD, from Free at €0 to Enterprise from €1,799/mo. The pricing page lists what each tier includes.
Who is SkyQon for?
Businesses that own public domains: SaaS companies, security and compliance teams, MSPs and agencies — any team where a lapsed certificate or a spoofed email becomes an incident.
Does SkyQon cover NIS2 and post-quantum readiness?
Yes. Higher tiers produce signed NIS2 compliance evidence reports and score your estate's post-quantum (PQC) readiness with an exportable migration roadmap.
Can SkyQon help with DORA?
Yes, via the DORA Trust Center add-on. SkyQon assembles the technical evidence behind DORA for financial entities and their ICT providers: a shareable supplier-readiness trust page, Register of Information support and audit-ready exports. It produces the evidence your program needs; certification itself stays with your auditor.
Does SkyQon have an API?
Yes. SkyQon offers a REST API so you can pull findings, trigger scans and integrate with your own tooling. You generate and manage API keys yourself from the dashboard, under Login & security.

Run the first scan now. A scored report in under three minutes.

Read our security & trust commitments →