Diagnose email delivery problems in seconds
Two tools in one place: send a test email and get a full authentication report, or look up the DNS records for any domain instantly. SPF, DKIM, DMARC, PTR, MTA-STS, DANE, DNSSEC, BIMI, WHOIS, security gateway detection, and more.
Tools
Message Check
Send one test email to a disposable address and get a full authentication report: SPF, DKIM, DMARC, PTR, MTA-STS, DANE, DNSSEC, BIMI, ARC chain, security gateway detection, routing hops, sender WHOIS, and complete header analysis, with plain-English explanations and fix suggestions for every issue found.
Start a test →Domain Check
Enter any domain and instantly see all its email-related DNS records: MX, SPF, DKIM, DMARC, MTA-STS, DANE, DNSSEC, BIMI, WHOIS, and name servers, with record validation, policy analysis, security gateway detection from SPF, and a direct link to your DNS provider's dashboard.
Look up a domain →How the email test works
- Get a disposable address
One click generates a private test inbox unique to your session.
- Send your test email
Send from any provider: your own server, Microsoft 365, Google Workspace, or anything else.
- See your full report
Results appear automatically within seconds. Share the link with your team or IT provider.
What gets checked
SPF, DKIM and DMARC
Live authentication results from the actual email you send, with plain-English explanations and specific steps to fix every failure. ARC chain analysis included when a security gateway is in the path.
Record validation and fix suggestions
SPF, DKIM, and DMARC records are checked for syntax errors, duplicate records, weak policies, and deprecated mechanisms. Fixable issues come with a corrected record ready to copy into your DNS.
PTR, MTA-STS and DANE
Reverse DNS lookup on the sending IP, plus transport security policy checks showing whether your domain enforces encrypted delivery.
Security gateway detection
Automatically identifies whether email passed through a security gateway (Proofpoint, Mimecast, Barracuda, Cisco IronPort, Microsoft Defender, and more) so authentication results are interpreted in the right context.
Full routing path
Every hop your email took from sender to inbox, with server names, IP addresses, timestamps, per-hop delay, and TLS status for each connection.
Header analysis
Every email header explained in plain English, including vendor-specific headers from Microsoft 365, Exchange, Google Workspace, Barracuda, IronPort, and Proofpoint.
WHOIS & domain registration
Registrar, registration date, expiration date, and domain status via RDAP, the modern WHOIS standard. Expiry warnings highlight domains approaching renewal.
Private by design
Email content is never stored or logged. Results are automatically deleted after 24 hours. No account, no tracking, no data retained.
Ready to test?
Works with any sending domain: your own mail server, Microsoft 365, Google Workspace, Proton Mail, or any other provider.