Skip to main content
Before running black-box (DAST) scans against a URL, LaunchSafe requires you to verify domain ownership via a DNS TXT record.

Why verification is required

DNS verification ensures you own or control the domain being tested. This prevents unauthorized scanning of third-party applications.

How to verify

1

Get your verification token

When you add a URL target, LaunchSafe generates a unique verification token for your workspace. It looks like:
launchsafe-verify=ls_abc123def456
2

Add the DNS TXT record

Add a TXT record to your domain’s DNS settings:
TypeNameValue
TXT@ or your domainlaunchsafe-verify=ls_abc123def456
3

Wait for propagation

DNS changes can take up to 48 hours to propagate, but typically complete within minutes.
4

Verify in LaunchSafe

Click Verify in your workspace settings. LaunchSafe will check the DNS record and mark your domain as verified.

Common DNS providers

  1. Go to your domain in Cloudflare
  2. Click DNSAdd Record
  3. Type: TXT, Name: @, Content: your verification token
  4. Click Save
  1. Go to Domain ListManageAdvanced DNS
  2. Click Add New Record
  3. Type: TXT, Host: @, Value: your verification token
  4. Click Save
  1. Go to My ProductsDNS
  2. Click Add under Records
  3. Type: TXT, Name: @, Value: your verification token
  4. Click Save

Troubleshooting

If verification fails, check that:
  • The TXT record value matches exactly (no extra spaces)
  • DNS has propagated (use dnschecker.org)
  • You’re verifying the correct domain (not a subdomain)