Enter your domain: we check your DMARC record and tell you exactly what to fix, in plain language.
Free, no signup. Result in 15 seconds, with the full report (SPF, DKIM, DMARC, website).
The test reads your domain's _dmarc DNS record and verifies that it exists, that its policy actually protects you (p=none offers no protection, p=quarantine is a good start, p=reject is the gold standard), and that the syntax is valid. You also get the full report: SPF, DKIM and your website security.
Without DMARC in reject mode, anyone can send emails that appear to come from your company — to your customers, suppliers or employees. It's the entry point for CEO fraud and targeted phishing. DMARC tells mail servers worldwide what to do with emails that fail authentication: deliver, quarantine or reject them.
It's a simple TXT record to add in your DNS. Our full report generates an action plan with the exact value to copy-paste for your provider (Microsoft 365, Google Workspace, etc.).
A DNS record (TXT on _dmarc.yourdomain.com) that tells recipients what to do with emails claiming to come from your domain but failing SPF/DKIM authentication: nothing (none), quarantine, or reject.
p=none monitors without blocking (no protection), p=quarantine sends fake emails to spam, p=reject blocks them entirely. The goal for a business is p=reject.
Yes. The DMARC test is part of Cyberbilan's free security check, no signup. We only read public DNS information.
DMARC relies on SPF and DKIM: the three work together. Our check verifies all three at once and tells you what to fix first.