Loading
Most businesses don't know their email is vulnerable until someone exploits it. A free email security assessment takes 30 seconds and tells you exactly where you stand.
91%
of cyber attacks start with an email
$4.9M
average cost of a data breach in 2024
60%
of small businesses close within 6 months of a cyber attack
SPF is a DNS record that tells receiving servers which IP addresses are allowed to send email on behalf of your domain. Without it, attackers can send emails that appear to come from your business.
Pass: Your DNS lists which servers are authorized to send email for your domain
Fail: Anyone can send emails pretending to be from your domain
DKIM adds a digital signature to every email you send. The receiving server verifies this signature against a public key in your DNS. If the signature does not match, the email was altered.
Pass: Outgoing emails are cryptographically signed, proving they were not tampered with
Fail: Emails can be modified in transit without detection
DMARC ties SPF and DKIM together and adds a policy: none (monitor), quarantine (send to spam), or reject (block). A DMARC policy of 'reject' is the gold standard for email security.
Pass: You have a policy telling receivers what to do with emails that fail SPF/DKIM
Fail: Fraudulent emails using your domain may be delivered to victims
If your domain or IP appears on blacklists (DNSBLs), many email providers will reject your messages outright. This happens when your domain has been used to send spam, either intentionally or because it was compromised.
Pass: Your domain and sending IPs are not on any spam blacklists
Fail: Your emails may be blocked or sent to spam by major providers
TLS (Transport Layer Security) encrypts email as it travels between servers. Without TLS, anyone on the network path can read your emails. Most modern email providers require TLS.
Pass: Your mail server supports encrypted connections for email in transit
Fail: Emails are sent in plain text and can be intercepted
Type your business domain (e.g., yourcompany.com) into the assessment tool. No login or signup required.
The tool queries your DNS records, checks blacklists, and tests your mail server configuration. This takes about 30 seconds.
You get a score and detailed breakdown for each check: SPF, DKIM, DMARC, blacklists, and TLS. Each shows pass, warning, or fail.
For each failed check, the tool explains what is wrong and what needs to be fixed. Most fixes involve adding or updating DNS records.
Free, instant, no signup required. Find out if your business email is protected.
One email per month with our best articles. No spam.