Live · paid plan
DMARC visibility & enforcement
Upload the aggregate reports your receivers already send you. See every IP claiming to send mail from your domain. Stop guessing about who your senders are.
Aggregate ingestion
Upload the daily RUA reports Google, Microsoft, and Yahoo already send to your
rua=mailbox. We parse the standard RFC 7489 XML and index every record.Per-source alignment
For every source IP, see message volume, SPF / DKIM alignment rates, and whether the source is on your trusted-sender list.
Untrusted-sender flag
Anything sending mail as you but failing alignment surfaces front and center. Catches shadow IT before it costs you deliverability.
Policy progression
Once your trusted senders are 100% aligned, we tell you it's safe to move from
p=none → p=quarantine → p=reject. No more “is it safe yet?” guesswork.How it works
- 1. Publish a DMARC recordAdd
v=DMARC1; p=none; rua=mailto:reports@your-domain.tldto your DNS. Receivers will start sending aggregate reports within 24 hours. - 2. Forward the reports hereEither upload the daily XML zips through the UI, or POST them to the public API (Pro). We dedupe by report id so re-uploads are safe.
- 3. Tame your sender populationIdentify your real senders, add SPF / DKIM where missing, and watch the alignment rate climb toward 100%.
- 4. Graduate the policyWhen alignment is solid, the dashboard tells you to flip to
p=quarantine, wait, thenp=reject.