See whether a domain enforces DMARC, or whether attackers can spoof it. Free and instant.
Free and anonymous. No account required.
This looks up the DMARC TXT record published at _dmarc.<domain> and parses its policy (none, quarantine, reject), subdomain policy, enforcement percentage, and aggregate-reporting addresses.
DMARC is what stops attackers from sending email that looks like it comes from a domain. A missing or 'p=none' policy means spoofing is not blocked, only monitored, which is a common gap in business email compromise.
A live DNS query over DNS-over-HTTPS retrieves the record, then a deterministic parser classifies it as strong, weak, or missing and returns specific recommendations.
p=reject (or p=quarantine) with aggregate reporting enabled. p=none only monitors and does not block spoofing.
No. It only reads the domain's public DNS record. Nothing is stored and no account is needed.
Connect your inbox and InboxWatch watches for these threats automatically. Free for your first 15 scans.
Connect your inbox