Zone Transfer Test API — AXFR Vulnerability Check

Description

Test whether a domain's nameservers allow unauthorized zone transfers (AXFR). Zone transfer misconfiguration is a common security vulnerability that can expose the entire DNS zone contents to attackers.

Use Cases

Security audit — detect zone transfer vulnerabilities
Penetration testing — enumerate DNS records via AXFR
Compliance checking — zone transfers should be restricted

Parameters

Name	Type	Required	Description
`domain`	string	Yes	Domain name to test
`format`	string	No	Response format: json or markdown

Example Request

bash

curl -H 'X-API-Key: YOUR_KEY' \
  'https://api.example.com/dns/zone-transfer?domain=example.com'

python

import httpx

resp = httpx.get(
    "https://api.example.com/dns/zone-transfer?domain=example.com",
    headers={"X-API-Key": "YOUR_KEY"},
)
print(resp.json())

javascript

const resp = await fetch("https://api.example.com/dns/zone-transfer?domain=example.com", {
  headers: { "X-API-Key": "YOUR_KEY" },
});
const data = await resp.json();
console.log(data);

Example Response

json

{
  "domain": "example.com",
  "vulnerable": false,
  "nameservers_tested": ["ns1.example.com", "ns2.example.com"],
  "results": [
    {"ns": "ns1.example.com", "transfer_allowed": false}
  ]
}

Zone Transfer Test

Description

Use Cases

Parameters

Related Tools in Security

DNS Health Audit

SSL/TLS Certificate Inspector

DNSSEC Validation

Typosquatting Detector