Email Authentication - Tester

This tool validates email authentication DNS records for any domain. It checks the following protocols that help prevent email spoofing and improve deliverability:

  • SPF (Sender Policy Framework) — Specifies which mail servers are authorized to send email for your domain
  • DKIM (DomainKeys Identified Mail) — Adds cryptographic signatures to emails to verify authenticity
  • DMARC (Domain-based Message Authentication, Reporting, and Conformance) — Links SPF and DKIM, tells receivers how to handle failed authentication
  • MX (Mail Exchange) — DNS records that specify mail servers for the domain
  • CAA (Certification Authority Authorization) — Specifies which CAs are allowed to issue SSL certificates

Each properly configured record contributes to a total email security score.

Lookup

Enter a domain to check its email authentication records:

API usage

There is also an API that returns the same results in JSON format, its endpoint is: /api/lookup?domain=example.com

You can find the OpenAPI specification and Swagger UI at /api-docs/ui/