FixWeb

// docs / domains

Dominio-kuéra

A domain is a verified hostname you own. Verifying once unlocks owner-depth scans, scheduled re-scans, and live website monitoring on that hostname.

Verifying a dominio

Add a hostname at Dashboard → Dominio-kuéra. Pick one of two verification methods:

  • DNS TXT — add a record at _fixweb.<hostname> ndive pe token ore generate. We re-resolve it gui our server, not yours, so SPF / DMARC settings don't interfere. Typical propagation: 1-5 minutes; ore re-check peteĩteĩ 30 seconds guarã 10 minutes.
  • HTTP file — host a small text file at /.well-known/fixweb-verification.txt ndive pe token. We fetch over HTTPS via pe SSRF-guarded request path.

Verifications hína re-checked daily by pe domain-reverify cron. If a previously-verified dominio stops resolving pe token (e.g. nde removed pe DNS record), pe verification ha'e revoked ha active scan-kuéra against it drop back pe verify_required until nde re-add it.

Scheduled re-scan-kuéra Pro+

Plan Pro ikatu oescanea jevy peteĩ dominio oñemoañetévape ≥3h cadenciape; plan Unlimited ≥1h-pe. Eipe'a Dashboard → Dominiokuéra → Programa, embovevevy toggle, eiporavo cadencia:

  • 1 hóra — oĩ plan Unlimited-pe año
  • 3h, 6h, 12h, daily, peteĩteĩ 2 days, weekly

Every cron tick (peteĩteĩ 15 min) pe scheduler picks up due schedules, claims them via an optimistic compare-ha-swap on next_run_at (so two crons ikatu't double-enqueue), increments ne scan-usage counter, ha enqueues a fresh passive scan. The scan inherits ne dominio-verification attestation — nde don't re-attest per run — so disable pe schedule pe revoke.

On completion, pe scan-completed email goes out using pe scheduled_scan_email preference (manage at Account → Settings).

Live threat detection Unlimited+

Plan Unlimited oma'ẽ automatikamente cada dominio oñemoañetévape mbohapy señal-re escaneo ojeprograma'ipyre apytépe:

  • Certificate transparency — peteĩteĩ 30 minutes ore query crt.sh guarã pyahu certs containing ne hostname térã any subdomain. New certs fire a new_certificate alerta.
  • DNS diff — peteĩteĩ 30 minutes ore resolve A, AAAA, MX, TXT, NS, CNAME ha compare against pe last snapshot. Changes fire a dns_change alerta.
  • Threat-intel — peteĩteĩ hour ore check Spamhaus DBL ha URLhaus guarã listings of pe apex hostname. Listings fire a threat_intel_listing alerta.

Alerts dedupe on a content-hash signature so re-detecting pe same change doesn't re-fire. View / dismiss alerta-kuéra at Dashboard → Dominio-kuéra → [dominio] → Monitor. Email notifications follow pe threat_alert_email pref.

Snapshot retention

Monitor snapshots auto-prune after 7 days, except pe most recent baseline per (dominio, signal-type) pair — that one stays regardless of age so pe next diff ha'e correct. Dismissed alerta-kuéra purge after 90 days.

Trigger gui API térã MCP

Domain management ha'e currently UI-only — nahániri API surface guarã verification térã schedule changes. To start a scan against an already-verified dominio via API, use POST /api/v1/scans:

curl
curl -X POST https://fixweb.app/api/v1/scans \
  -H "Authorization: Bearer fxw_..." \
  -H "content-type: application/json" \
  -d '{"target":"https://example.com"}'
Dominio-kuéra — Docs · FixWeb