Infrastructure Deep Dive
Comprehensive infrastructure analysis for security and architecture teams
Get complete visibility into domain infrastructure including WAF detection, load balancer identification, SSL/TLS cipher analysis, and certificate chain validation. Essential for security assessments and architecture reviews.
The Challenge
Understanding the full infrastructure stack behind a domain requires multiple tools and significant manual effort. Security architects need to assess WAF protection, identify load balancers, analyze SSL configurations, and validate certificate chains during assessments.
The Solution
Use EdgeDNS to perform comprehensive infrastructure analysis in a single API. Detect WAF vendors, identify load balancers and reverse proxies, analyze SSL/TLS cipher configurations, and validate complete certificate chains.
Endpoints Used
Combine these EdgeDNS endpoints to build this solution.
/v1/domain/wafTry in PlaygroundWAF Detection: Identify Web Application Firewall vendors
/v1/domain/load-balancerTry in PlaygroundLoad Balancer: Detect load balancing technologies
/v1/domain/reverse-proxyTry in PlaygroundReverse Proxy: Identify reverse proxy configurations
/v1/domain/ciphersTry in PlaygroundSSL Ciphers: Analyze supported cipher suites
/v1/domain/cert-chainTry in PlaygroundCert Chain: Validate complete certificate chain
/v1/domain/serverTry in PlaygroundServer Detection: Identify web server software and version
Results You Can Achieve
Complete infrastructure visibility
Understand the full technology stack in minutes
Security posture assessment
Identify missing WAF protection or weak SSL configs
Architecture documentation
Generate infrastructure reports for documentation
Code Example
Infrastructure deep dive
async function infrastructureDeepDive(domain) {
const headers = { 'Authorization': 'Bearer YOUR_API_KEY' };
const [waf, lb, proxy, ciphers, certChain, server] = await Promise.all([
fetch(`https://api.edgedns.dev/v1/domain/waf?domain=${domain}`, { headers }),
fetch(`https://api.edgedns.dev/v1/domain/load-balancer?domain=${domain}`, { headers }),
fetch(`https://api.edgedns.dev/v1/domain/reverse-proxy?domain=${domain}`, { headers }),
fetch(`https://api.edgedns.dev/v1/domain/ciphers?domain=${domain}`, { headers }),
fetch(`https://api.edgedns.dev/v1/domain/cert-chain?domain=${domain}`, { headers }),
fetch(`https://api.edgedns.dev/v1/domain/server?domain=${domain}`, { headers }),
].map(p => p.then(r => r.json())));
const findings = [];
// Check WAF protection
if (!waf.data.waf_detected) {
findings.push({ severity: 'high', finding: 'No WAF protection detected' });
}
// Check for weak ciphers
const weakCiphers = ciphers.data.ciphers.filter(c => c.strength === 'weak');
if (weakCiphers.length > 0) {
findings.push({ severity: 'medium', finding: `${weakCiphers.length} weak ciphers supported` });
}
// Check cert chain validity
if (!certChain.data.chain_valid) {
findings.push({ severity: 'high', finding: 'Certificate chain validation failed' });
}
return {
domain,
infrastructure: {
waf: waf.data.waf_vendor,
loadBalancer: lb.data.detected,
reverseProxy: proxy.data.detected,
},
ssl: {
strongCiphers: ciphers.data.ciphers.filter(c => c.strength === 'strong').length,
weakCiphers: weakCiphers.length,
certChainValid: certChain.data.chain_valid
},
findings
};
}Learn More
Explore industry standards and best practices related to this use case.
Ready to build Infrastructure Deep Dive?
Get started with 200 free API requests per month. No credit card required.