DMARC Checker

Email Security Analyzer

"Checks DMARC, SPF, and DKIM configuration — identifies email spoofing risk before attackers exploit it."

What it does

Email spoofing is one of the most common attack vectors in phishing campaigns. Without DMARC, anyone can send emails that appear to come from your domain — your employees, your customers, your partners will see emails from you that you never sent.

The DMARC tool checks three related email authentication standards: SPF (which mail servers are allowed to send from your domain), DKIM (email cryptographic signing), and DMARC (what to do with emails that fail SPF/DKIM — reject, quarantine, or do nothing). It also checks MX records to verify mail server configuration. A missing or permissive DMARC record is a direct spoofing risk.

Example findings

CRITICALDMARC Missing — Domain Can Be Spoofed for Phishingdmarc

HIGHDMARC Policy: none — No Protection, Monitoring Onlydmarc

HIGHSPF Record Missing — Any Server Can Spoof This Domaindmarc

MEDIUMDMARC Subdomain Policy Not Enforceddmarc

← Back to all tools ▶ Scan with DMARC Checker

What it finds

▸Missing DMARC record (anyone can spoof your domain)
▸DMARC policy set to "none" (monitoring only, no protection)
▸DMARC policy not enforced on all subdomains
▸Missing SPF record
▸SPF record with too many DNS lookups (fails RFC)
▸Missing DKIM record
▸Weak DMARC reporting configuration

Works well with

DNS Recon →