Phishsight
All Tools
Free DMARC Tool

DMARC Record
Analyzer & Checker

Analyze your domain's DMARC record for free. Check policy settings, alignment configuration, and protection against email spoofing.

Enter a domain name without http:// or www (e.g., phishsight.com)

Policy Analysis

Check none, quarantine, or reject enforcement

Spoofability Check

Assess domain spoofing risk

Alignment Review

Verify SPF and DKIM alignment settings

What is DMARC?

Domain-based Message Authentication, Reporting & Conformance

DMARC is an email authentication protocol that builds on SPF and DKIM to give domain owners control over what happens when emails fail authentication. It tells receiving servers whether to accept, quarantine, or reject unauthenticated messages, and provides reporting so domain owners can monitor abuse.

DMARC Policies Explained

p=none

Monitor only. No enforcement on failing emails. Use this when first implementing DMARC to collect reports.

p=quarantine

Failing emails are sent to spam/junk. A good intermediate step before full enforcement.

p=reject

Failing emails are blocked entirely. The strongest protection against email spoofing.

DMARC Alignment

DMARC alignment ensures that the domain in the email's "From" header matches the domain authenticated by SPF or DKIM. There are two modes:

  • Relaxed (default): Organizational domain match is sufficient (e.g., mail.example.com matches example.com)
  • Strict: Exact domain match required. More secure but may break legitimate email from subdomains