FixWeb

// docs / domains

Domenler

A domain is a verified hostname you own. Verifying once unlocks owner-depth scans, scheduled re-scans, and live website monitoring on that hostname.

Domeni tassyklamak

Dashboard → Domains içinde hostname goşuň. Iki verification usulyndan birini saýlaň:

  • DNS TXT — döreden token-imizi _fixweb.<hostname> ýazgysyna goşuň. Biz ony siziňki däl, öz serverimizden re-resolve edýäris, şonuň üçin SPF / DMARC settings päsgel bermeýär. Adaty propagation: 1-5 minut; 10 minutlap her 30 sekuntda re-check edýäris.
  • HTTP file — token bilen kiçi text file-y /.well-known/fixweb-verification.txt ýerinde host ediň. Biz ony SSRF-guarded request path arkaly HTTPS bilen fetch edýäris.

Verification-ler domain-reverify cron tarapyndan her gün re-check edilýär. Öň verified domen token-i resolve etmegi bes etse (meselem, DNS record-y aýyrsaňyz), verification revoked bolýar we oňa garşy active scans gaýtadan goşýançaňyz verify_required bolýar.

Scheduled re-scans Pro+

Pro meýilnamasy tassyklanan domeni ≥3h depginde gaýtadan skan edip biler; Unlimited meýilnamasy ≥1h depginde. Dashboard → Domens → Tertip-i açyň, toggle-i goşuň, depgini saýlaň:

  • 1 sagat — diňe Unlimited meýilnamasynda elýeterli
  • 3h, 6h, 12h, daily, every 2 days, weekly

Her cron tick (her 15 min) scheduler due schedules-i alýar, next_run_at üstünde optimistic compare-and-swap bilen claim edýär (iki cron double-enqueue etmez ýaly), scan-usage counter-iňizi increment edýär we täze passive scan enqueue edýär. Scan domain-verification attestation-yňyzy inherit edýär — her run üçin täzeden attest etmeýärsiňiz — revoke etmek üçin schedule disable ediň.

Completion wagty scan-completed email scheduled_scan_email preference arkaly çykýar (dolandyryş Account → Settings).

Live threat detection Unlimited+

Unlimited meýilnamasy meýilnamalaýyn skanlaryň arasynda her tassyklanan domeni üç signal üçin awtomatik gözegçilik edýär:

  • Certificate transparency — her 30 minutda hostname-iňiz ýa-da islendik subdomain-iňiz bar bolan täze certs üçin crt.sh query edýäris. Täze certs new_certificate alert döredýär.
  • DNS diff — her 30 minutda A, AAAA, MX, TXT, NS, CNAME resolve edip soňky snapshot bilen deňeşdirýäris. Üýtgeşmeler dns_change alert döredýär.
  • Threat-intel — her sagatda apex hostname listings üçin Spamhaus DBL we URLhaus barlaýarys. Listings threat_intel_listing alert döredýär.

Alerts content-hash signature boýunça dedupe bolýar, şol bir change gaýtadan tapylsa re-fire bolmaz ýaly. Alerts-i Dashboard → Domains → [domain] → Monitor ýerinde görüň / dismiss ediň. Email notifications threat_alert_email pref boýunça işleýär.

Snapshot retention

Monitor snapshots 7 günden soň auto-prune bolýar, emma her (domain, signal-type) jübüti üçin iň soňky baseline galýar — indiki diff dogry bolar ýaly ol ýaşyna garamazdan saklanýar. Dismissed alerts 90 günden soň purge bolýar.

API ýa-da MCP-den trigger

Domain management häzir UI-only — verification ýa-da schedule changes üçin API surface ýok. API arkaly eýýäm verified domeniňize scan başlamak üçin POST /api/v1/scans ulanyň:

curl
curl -X POST https://fixweb.app/api/v1/scans \
  -H "Authorization: Bearer fxw_..." \
  -H "content-type: application/json" \
  -d '{"target":"https://example.com"}'
Domenler — Docs · FixWeb