You may want to know who is behind a domain. In the past, this used to be relatively easy to find out. When a person bought a domain, their name was put into a “registry,” which is similar to the “phonebook of domains.” To find out who owned a domain, you would just go and look it up, using a service we discussed in an earlier section called WHOIS.
Unfortunately, it is now more complicated. People who had their email addresses and names in the “domain phonebook” would get spam email, or the information displayed on the registry would be used to try to hack their site. And many people, such as political dissidents, had good reason for not revealing their names. As a consequence, a lot of the “registrars” started offering masking services, which hide the owner of the domain.
Now if you want to find out who owns a domain, WHOIS-type services are a good first stop, even though they will usually fail for smaller sites.
To look up domain ownership, we recommend a tool called Domain Dossier. Go to the site and type in your root URL and check all the checkboxes.
When the identity is not masked, you will be able to see the owner of the domain. The first place to look is “Registrant Name” and “Registrant Organization”:
Occasionally, you may not get a useful name from the record, but the address might be telling. If the name is masked in Domain Dossier, you’ll get a record that looks like this:
You may also see the name of a masking service, such as “Domains by Proxy”:
In this case, the registrant is not from Arizona and not named “Domains by Proxy”. That is just the masking service. It is important to note that masking is common enough these days and should not cause suspicion.
While domain owners can hide their names, they cannot hide the date the domain was registered. As we will discuss in another chapter, this is often useful information. By looking at the domain registration date, you can often get a sense of whether a site has a long history behind it or if it has been spun up for a specific purpose.