How It Works

VouchCore's defense pipeline operates in three stages: Scan, Score, Surface.

Stage 1: Scan

VouchCore's Conviction Engine queries public DNS infrastructure to retrieve your SPF records, DMARC policy, and DKIM selectors. Simultaneously, the platform scans certificate transparency logs, domain registration feeds, and threat intelligence sources for lookalike infrastructure targeting your brand surface.

No agent is installed. No credentials are required. No internal systems are accessed. The entire scan operates on public-facing signals.

Stage 2: Score

Raw signals are enriched through Gemini-powered analysis. Each domain receives a Conviction Score — a composite trust rating derived from SPF enforcement, DMARC policy, DKIM verification status, threat feed correlation, and historical anomaly patterns. Scores range from 0 (critical exposure) to 100 (strong posture).

Stage 3: Surface

Findings are surfaced to your authenticated dashboard with plain-language consequence statements. Rather than raw technical output, VouchCore tells you what each finding means for your organization — and what to fix first.

Scan Cadence

Enrolled nodes receive continuous passive monitoring with scheduled deep scans. Posture changes trigger alerts through your configured notification channels. The Conviction Engine re-evaluates your primary domain on each access and on a configurable schedule.