Features

Everything you need to collect, analyze, and act on DMARC aggregate reports — from a single domain to hundreds.

DMARC Report Ingestion

dmarco connects to your DMARC inbox via IMAP — or a managed email collector — and automatically polls for new aggregate reports. Incoming emails are parsed whether they arrive as single-part or multipart MIME messages, and every individual record within each report is extracted, validated, and stored.

  • IMAP polling or managed email collector — no inbox setup required
  • Every record preserved individually, not rolled into summaries
  • Automatic XML extraction from zip and gzip attachments
  • Deduplication to prevent double-counting
📬

Automated collection from Google, Microsoft, Yahoo, and every other DMARC reporter

🔍

Identify senders behind every IP address in your reports

Sender Attribution

Every IP address in your DMARC reports is enriched with reverse DNS, ASN data, and CIDR range information. dmarco maintains a built-in library of known senders — Google Workspace, Microsoft 365, Mailgun, SendGrid, Amazon SES, and more — so you can instantly see which services are sending as your domain.

  • IP enrichment with reverse DNS and geolocation
  • ASN lookup for network-level identification
  • CIDR matching against known provider ranges
  • Built-in known sender library, continuously updated

DNS Diagnostics

dmarco validates your DMARC and SPF DNS records in real time, flagging misconfigurations and providing actionable recommendations. SPF record history is tracked so you can see when changes were made and correlate them with report data.

  • DMARC record validation and policy analysis
  • SPF record parsing with include/redirect resolution
  • Actionable recommendations for record improvements
  • SPF history tracking to detect configuration drift
🧪

Live validation of your DMARC and SPF records with clear guidance

Approve or reject senders on a per-domain basis

Per-Domain Sender Review

For each domain you monitor, dmarco lets you approve or reject individual senders. The review workflow cross-references each sender against your SPF record to show whether they are already authorized, making it easy to build a complete picture of your legitimate sending infrastructure.

  • Approve/reject workflow for every discovered sender
  • SPF authorization status for each sender
  • Filter by status: approved, rejected, or pending
  • Policy enforcement readiness based on sender coverage and pass rates

Alerting

Stay informed when something changes. dmarco sends alerts when unknown senders appear or when SPF or DKIM failure rates spike. Alerts are delivered via webhooks so you can route them to Slack, PagerDuty, or any HTTP endpoint.

  • Unknown sender detection alerts
  • SPF/DKIM failure spike notifications
  • Webhook delivery to any HTTP endpoint
  • Per-organization configurable thresholds
🔔

Real-time notifications when your email authentication landscape changes

🧭

Step-by-step guidance from first login to full monitoring

Setup Wizard

Getting started with DMARC monitoring shouldn't be complicated. dmarco's guided onboarding walks you through connecting your inbox, adding domains, and verifying your DNS configuration. Per-domain progress tracking shows you exactly what's left to do.

  • Guided step-by-step onboarding flow
  • Per-domain setup progress tracking
  • DNS record verification checks
  • Inbox connection testing and validation

Multi-Tenant

dmarco is designed for teams and agencies managing multiple organizations. Each organization gets fully isolated data, its own settings, and independent sender review workflows. Secure authentication with SSO support and tier-based feature gating ensure each org gets the capabilities they need.

  • Complete data isolation between organizations
  • Secure authentication with SSO support
  • Tier-based feature gating per organization
  • Organization-scoped settings and configurations
🏢

Manage multiple organizations with complete data isolation

📊

Every record, every result — not just aggregated percentages

Record-Level Detail & Data Ownership

Most DMARC tools reduce your reports to pass/fail percentages. dmarco preserves every individual record — each source IP, each authentication result, each message count — so you can investigate issues at the most granular level. Your data belongs to you on every plan, with full export and inspection access.

  • Every DMARC record stored individually, not summarized
  • Per-IP authentication results with SPF and DKIM detail
  • Full data ownership on every plan — no lock-in
  • Data export so you always have access to your records

Ready to take control of your email authentication?

Get started in minutes. Free plan available.

Get Started Free View Pricing