NVZS (Net Visibility Zone Score) is a domain security analysis tool built around the idea of “enter a domain and get a security score within seconds.” Its checks cover SSL certificates, security response headers, DMARC/email security, server information, tech stack, domain age and registration details, and domain suffix status. The copy clearly states that it performs passive scanning and does not modify the target domain, making it better suited for external visibility health checks and baseline assessments than as a WAF, EDR, or exploit-based vulnerability scanner.
From a feature perspective, NVZS’s value lies in aggregating multiple common domain security checks into an NVZ Score and exposing structured results via API. The API supports domain-based queries, uses api_key authentication, and can force a rescan with fresh=1; cached results are free, while rescans consume tokens. The sample response includes SSL issuer and validity period, DMARC/MTA-STS/TLS Reporting, IP and location, tech stack, security headers, and approximate domain suffix status, making it suitable for embedding into SaaS products, monitoring scripts, or customer security scoring workflows.
Pricing is straightforward: the free plan includes 50 API calls per month; Pro costs USD 15/month with 1,000 calls and support for up to 50 bulk queries; Enterprise costs USD 49/month and offers unlimited API calls, unlimited bulk queries, and priority processing. Based on the public pricing, it looks cost-effective for developers and small to midsize teams. For large-scale customer domain inspections, Enterprise’s unlimited calls are appealing, but the site does not disclose any fair use policy, SLA, or service reliability commitments.
The strengths are its low barrier to entry, clear API, coverage of common weak points in domain security, and relatively low risk thanks to passive scanning. The downsides are also apparent: there is no visible information on compliance certifications, privacy terms, enterprise permissions, alerting, reports, or ticket-based support; scan history/archives are only marked as supported on Enterprise; and the website contains multiple Not Found pages and template content, so the product’s maturity and documentation completeness still need further verification.
NVZS is suitable for developers, security consultants, and SMB IT teams looking to run pre-launch domain checks, customer security assessments, or bulk monitoring of SSL/DMARC/security header configurations. It is not a replacement for professional vulnerability scanning, attack surface management, or continuous compliance platforms. Access from mainland China and supported payment methods are not disclosed, so before purchasing, users should test direct connection stability, API latency, and payment availability. Comparable tools include SecurityHeaders.com, SSL Labs, MXToolbox, Censys, and Shodan.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on nvzs.com official site.
nvzs.com is an Unknown Cybersecurity provider. TG4G tracks its product information, an overall rating of 7.0/10, and a China-accessibility score of China direct-connect friendly. Click "Visit Official Site" to reach nvzs.com directly.