Charlie Recon

Charlie Recon is CDA's free, automated security reconnaissance tool. It scans your organization's external-facing infrastructure across all 6 PDM domains in under 5 minutes.

What Charlie Recon scans (10 modules): 1. SSL/TLS Configuration (VSD) - Certificate validity, protocol versions, cipher strength 2. DNS Security (VSD) - DNSSEC, SPF, DKIM, DMARC records 3. HTTP Security Headers (SPH) - CSP, HSTS, X-Frame-Options, referrer policy 4. Open Port Discovery (VSD) - Common service ports, unnecessary exposure 5. Technology Fingerprinting (SPH) - CMS, frameworks, server software versions 6. Email Security (IAT) - SPF/DKIM/DMARC alignment, spoofing susceptibility 7. Data Exposure (DPS) - Sensitive files, directory listings, metadata leaks 8. Subdomain Enumeration (VSD) - Attack surface mapping, forgotten subdomains 9. Reputation Check (TID) - Blocklist status, abuse reports, threat intel feeds 10. Compliance Indicators (RGA) - Privacy policy presence, cookie consent, accessibility

How to run a scan: 1. Go to cda.security/scan 2. Enter your domain (e.g., example.com) 3. No login required. The scan runs immediately. 4. You get a progress indicator as each module completes.

Getting your results: - Without a Nexus ID: You can see scan progress but not full results - With a Nexus ID: Create one (free, 30 seconds) to claim your results - Results appear in your C3 Command Post dashboard - You get an overall score (0-100), per-domain scores, and recommended missions

What happens next: - Your results persist in C3 for trend tracking over time - Charlie recommends a campaign tier based on your score - You can convert scan findings into an FRM assessment for deeper analysis - Recommended missions show exactly what CDA would do to improve each domain