Attackers don't hack your inbox.They exploit everything around it.
InboxWatch detects threats across your entire email attack surface without reading a single message.
Free for your first 15 scans. No credit card needed.
What we can and can't see
- Mail headers (from, to, date)
- Forwarding rules & filters
- OAuth app permissions
- Sign-in logs & MFA status
- Mailbox settings (POP, IMAP)
- DNS records (SPF, DKIM, DMARC)
- ×Email body content
- ×Attachments or files
- ×Contact lists
- ×Calendar details
- ×Drive files
- ×Chat messages
What does InboxWatch scan for?
100+ security checks across 10 categories
Spoofing
Display name spoofing, typosquatting, homoglyph domains
CEO name paired with an external freemail address
Phishing
Credential harvesting links, fake login pages
Deceptive URLs mimicking Microsoft or Google sign-in
Auth Validation
SPF, DKIM, and DMARC pass-rate grading per sender domain
Domains failing authentication on inbound email
Account Security
Impossible travel, risky OAuth grants, MFA status
Sign-in from two countries within the same hour
Domain Protection
Lookalike detection, brand impersonation, exposure mapping
Newly registered domain one character off from yours
Attachments
Executable extensions, macro-enabled files, double extensions
Invoice.pdf.exe masquerading as a document
Temporal
After-hours sends, volume bursts, weekend anomalies
50 outbound messages sent at 3 AM from your account
Link Analysis
Shortened URLs, redirect chains, suspicious destinations
Bit.ly link resolving to an unknown login page
Inbound Threats
Business email compromise, forwarding rules, filter manipulation
Hidden rule forwarding all mail to an external address
Calendar/Drive
Risky calendar invites, public sharing, external access
Sensitive Drive folder shared publicly without expiry
11-stage scan pipeline
Every scan passes through a multi-stage pipeline, from connection to notification in under 60 seconds.
100 detections. Every account type.
Coverage varies by provider API availability and our metadata-only OAuth scopes. Numbers show alertable detections per account type.
| Category | Personal Gmail @gmail.com | Workspace Gmail @company.com | Personal Outlook @outlook.com | Work Microsoft Microsoft 365 |
|---|---|---|---|---|
| Rules | 9 | 9 | — | 3 |
| Access | — | 3 | 1 | 6 |
| Spoofing | 6 | 6 | 5 | 5 |
| Settings | 6 | 6 | 1 | 4 |
| Security | 10 | 10 | 10 | 16 |
| Inbound | 13 | 13 | 8 | 9 |
| Total Alertable | 44 | 47 | 25 | 43 |
Why Personal Outlook shows 25 vs 43
- Mailbox rules API returns 403 for consumer accounts
- Sign-in activity, MFA status, and recovery options require org-level APIs
- No delegate access or password age APIs for personal accounts
Privacy-First Scope Constraints
- Gmail: gmail.metadata only (never gmail.readonly)
- Microsoft: Mail.ReadBasic only (never Mail.Read)
- Zero email body access across all account types
- All 100 detections work without reading message content
Complete email security platform
Scanning is just the start. These tools give you continuous protection and full visibility.
Breach Monitor
ContinuousContinuous dark web monitoring for your email credentials across known data breaches.
Phishing Simulations
TrainingTest your team with realistic phishing campaigns. Track clicks, reports, and security awareness.
Email Exposure Map
VisibilitySee every service and sender with your email, with auth grades and breach cross-references.
Trusted Senders
ControlWhitelist known senders and apps so they stop generating alerts. You control what counts as a threat.
Run all 76 checks on your account. Free.
See which of the 21 critical detections apply to you. Results in under 60 seconds.
15 free scans · No credit card required