See what attackers see.
Before they do.
Scan your domain. Analyze suspicious emails. Fix problems before they become incidents.
Built by a security engineer with 35+ years in real environments, not theory.
Most security issues aren’t advanced. They’re overlooked.
- A forgotten subdomain pointing to a dead service
- An open port that shouldn’t be reachable from the internet
- A misconfigured email record that lets anyone spoof your domain
- A TLS certificate days away from expiry
- A phishing email that looks real enough to fool your team
Attackers automate finding these. Most businesses don’t.
Two tools. One goal: fewer surprises.
Built on the same principle — check what matters, explain what it means, tell you what to do next. No security team required.
Start with the problem you have.
Surface Sentinel
Scan your domain. See what’s exposed. Know what to fix.
For IT managers, MSPs, and any team responsible for their organization’s domain.
- DNS records, open ports, and exposed subdomains
- Misconfiguration detection — TLS, email spoofing, security headers
- Plain-English report with a suggested next step for each finding
- No setup. Results in under a minute.
You’ll see exactly what an attacker sees — without needing to be one.
Scan My Domain →Ephemeral Sentinel
Automate responses to phishing reports
For IT teams, help desks, and MSPs handling a steady stream of user-reported suspicious emails.
- Automatically analyzes every submitted email — no analyst required
- Phishing signal detection — spoofed senders, malicious links, social engineering
- Header analysis — authentication results and routing anomalies
- Sends a plain-English explanation back to the reporter automatically
Every reported email gets an automatic, explainable response — without hiring an analyst.
Learn More →Found email risks?
If your domain can be spoofed or your email defenses have gaps, your users are already reporting suspicious emails.
Ephemeral Sentinel automatically analyzes and responds to those reports — so nothing gets ignored.
See Ephemeral Sentinel →Three Surface Sentinel example reports. Same format. Different urgency.
Every Surface Sentinel scan produces the same structured output. What changes is what it finds.
A well-configured domain with a few minor gaps. Nothing urgent.
- DMARC set to quarantine rather than reject
- Permissions-Policy header not configured
- All ports closed, no unexpected exposure
Fixable weaknesses that widen attack surface if left unaddressed.
- DMARC missing, domain spoofing risk
- 4 security headers not configured
- SPF soft-fail allows spoofed mail through
Urgent findings that need attention before they become incidents.
- TLS certificate expires in 14 days
- SMTP relay open to the internet
- HTTP serving content, no HTTPS redirect
Security that doesn’t depend on you remembering to check.
A one-time scan shows you today’s risk. Scheduled monitoring catches what changes after you deploy, update a record, or add a new service.
- Scheduled rescans — catch new issues as your infrastructure changes
- Change detection — get notified when something unexpected appears
- Improvement tracking — see whether things are getting better or worse over time
Problems don't wait for quarterly reviews.
Need help fixing what you find?
Tools show you the problem. I help you solve it — without consulting firm overhead or a statement of work you don’t need.
- Remediation guidance specific to your environment
- Practical prioritization — fix what matters first
- Honest answers, not upsell pressure
35+ years in security engineering across real production environments. These tools automate what I've done by hand for decades.
Built by experience, not hype
ArcForgeLabs was built after 35+ years of security engineering across production environments — the kind where misconfigurations have real consequences and phishing emails reach real people. The same problems kept appearing: overlooked, unfixed, and entirely preventable.
These tools automate the diagnostic work I’ve done by hand for decades. They’re designed for IT managers, MSPs, and small teams who need honest answers without the overhead of enterprise tooling or a consulting engagement.
Used by a regional MSP managing multiple client environments.
Start with a scan. Or start a conversation.
No account required. No commitment needed. Just answers.