Domain Age Checker

Find out exactly when a domain was registered and when it expires. Newly registered domains are a top phishing indicator — check before you click.

How to Use the Domain Age Checker

  1. Enter a domain name or full URL in the scanner.

  2. Click Scan to run the analysis including RDAP/WHOIS data.

  3. Review the registration date, last update, expiry date, and registrar.

  4. Check the domain age indicator — very new domains (< 30 days) warrant extra caution.

Domain Age Checker — Frequently Asked Questions

Why is domain age important for security?
Phishing domains are typically registered days or hours before a campaign launches. A domain that's only a few days old is a strong phishing indicator, especially combined with brand name mimicry.
What is RDAP?
RDAP (Registration Data Access Protocol) is the modern successor to WHOIS. It provides structured, machine-readable domain registration data including creation date, expiry, registrar, and registrant information.
Can legitimate sites have new domains?
Yes, new legitimate sites exist. Domain age alone isn't conclusive — it's one signal among many. IncogSay combines domain age with other factors to calculate a holistic threat score.
How old should a domain be to be considered safe?
Domains older than 1 year are generally less suspicious. Domains under 30 days old require extra scrutiny, especially when combined with brand name mimicry or suspicious URL patterns.
What is domain expiry data used for?
Expiring domains can be purchased by attackers to impersonate legitimate sites. Checking expiry dates helps identify potentially abandoned or captured domains.