Skip to main content
FREE TOOL
Free ToolsEmail Security Checker

Email Security Checker

Find out if someone can send emails pretending to be from your company.

We only check public DNS records - we never access your email or servers.

No signup required. Results are instant.

Just your domain - no www or https needed

HOW IT WORKS

What We Check

SPF

Defines which servers can send email for your domain. Without it, sender identity is easy to fake.

DMARC

Tells inbox providers whether to block, quarantine, or monitor spoofed messages using your domain.

DKIM

Checks for cryptographic signing records that prove email content was not altered in transit.

MX Records

Validates where your email is delivered and identifies your provider for setup context.

COMMON QUESTIONS

Frequently Asked Questions

Can someone really send emails as my company?

Yes. Without proper email authentication (SPF, DKIM, and DMARC), anyone can send emails that appear to come from your domain. This is called email spoofing and it's used in phishing attacks targeting your clients and contacts.

What is DMARC and why does it matter?

DMARC tells receiving email servers what to do when they detect a forged email from your domain - block it, quarantine it, or just monitor. Without DMARC, forged emails are delivered normally with no warning to the recipient.

Is this scan safe to run?

Completely. We only look up publicly available DNS records for your domain - the same information any email server in the world can see. We don't access your email, servers, or any private data.

What should I do if I score badly?

Don't panic - most small businesses have email security gaps. SPF, DKIM, and DMARC can typically be configured within an hour by someone who knows what they're doing. Our free IT audit can identify exactly what needs fixing.

How often should I check my email security?

We recommend checking after any changes to your email setup - switching providers, adding a new sending service, or modifying DNS records. Otherwise, a quarterly check is good practice.

Want the Full Picture?

This Email Security Checker checks one part of your security. Our free IT audit covers everything — security, performance, compliance, and infrastructure.

Book a Free IT Audit

30-minute call. No obligation. We walk you through every finding.