From aggregate reports to hosted services — everything you need to achieve full DMARC enforcement and protect your domain reputation.
Real-time scoring, detailed reports, and forensic-level insight into every authentication event.
Automatically ingest and parse DMARC aggregate XML reports from every major mailbox provider. Visualize volume, alignment, and policy disposition over time.
Drill into individual message-level failure reports with full header analysis. Identify the exact source IP, envelope sender, and authentication chain that caused each failure.
Collect and analyze SMTP TLS Reporting data. Monitor certificate failures, policy mismatches, and downgrade attacks across your mail transport layer.
Automatically identify and classify every IP and service sending on behalf of your domain. Distinguish legitimate third-party senders from unauthorized or shadow IT sources.
Enrich every sending source with reverse DNS, ASN ownership, geolocation, and reputation data. Spot spoofing attempts originating from unexpected regions or networks.
Actionable diagnostics, guided remediation, and continuous monitoring so misconfigurations never go unnoticed.
Deep inspection of your DMARC, SPF, DKIM, MX, and BIMI records. Surface syntax errors, conflicting entries, and missing configurations with clear severity ratings.
Every issue comes with a step-by-step fix — including the exact DNS record value to publish. Copy-paste ready for your registrar or DNS provider.
Flatten nested includes, eliminate redundant mechanisms, and stay within the 10-lookup limit. Automatic SPF macro generation for complex multi-vendor setups.
Continuous polling of your authentication records. Get instant alerts via email, Slack, or webhook when any DMARC, SPF, DKIM, MX, or MTA-STS record is modified or removed.
Validate selector records, check key length and algorithm strength, detect expired or revoked keys, and track rotation schedules across all signing domains.
Verify your Brand Indicators for Message Identification record and Verified Mark Certificate. Preview how your logo renders in supported inboxes before publishing.
Fully hosted authentication services you can enable with a single DNS record — no servers to operate.
We host your MTA-STS policy file and serve it over HTTPS — enforcing TLS encryption for inbound mail without running your own web server. Point a CNAME and you're done.
DMARCADE provides dedicated RUA and RUF addresses under our infrastructure. Reports are received, decompressed, validated, and stored — ready for analysis in seconds.
Point your SPF include to our service and we dynamically resolve, flatten, and serve your record — keeping you under the 10-lookup limit as upstream providers change their IPs.
Upload your SVG logo and VMC certificate, and we host them on a globally distributed CDN with proper headers and cache control — no web server configuration required.
Multi-channel alerting, API-first automation, and role-based collaboration for security teams.
Configurable notifications via email, Slack, Microsoft Teams, PagerDuty, and custom webhooks. Set thresholds for alignment drops, volume spikes, and policy failures.
Full programmatic access to domains, reports, scores, and alerts. Build custom dashboards, integrate with your SIEM, or automate policy rollouts across domains.
Invite team members with granular roles — viewer, analyst, or admin. Scope permissions by domain group. Enterprise plans include SSO via SAML/OIDC and audit logging.
Auto-generate branded PDF summaries on a weekly or monthly cadence. Share compliance posture with stakeholders who don't need dashboard access.
Simulate the impact of moving from p=none to quarantine or
reject. See which senders would be affected before committing to enforcement.
Group domains by brand, business unit, or client. Apply shared alert rules and reporting templates. Manage hundreds of domains from a single pane with bulk operations.
Start with the free plan — monitor your first domain in under five minutes. Upgrade when you're ready for full enforcement.