The Engine Behind the Audit

A simple, fast system that uses public records. We don't need your private data, mailbox access, or admin passwords.

No Memory

The API doesn't store your data between requests. Every audit is fresh and based on the latest public records.

Safe and Private

We never ask for your passwords or admin access. If a security setting isn't public, we don't try to check it.

Clear Results

You get the same clear report every time you check the same setup. Our rules follow the official standards for email security.

DMARC Enforcement Shield

What is Evaluated

DMARC Policy

Checks if your policy is strong and where your reports are sent.

SPF Configuration

Checks for errors and ensures your setup isn't too complex to work.

DKIM Keys

Finds your keys and checks if they are set up correctly.

Transport Security (MTA-STS / TLS-RPT)

Checks for your encryption rules and failure reporting.

BIMI Readiness

Checks if your domain is ready for brand logos in mailboxes.

MX Records

Checks for errors in how mail is routed to your domain.

Endpoint Progression

The platform provides a logical progression from quick checks to operational lifecycle management.

  • /free Low-friction qualification and top-line posture reads.
  • /pro Full structured findings, raw evidence, and deep breakdown.
  • /compare Diff two audits to prove remediation worked securely.
  • /fix-plan Group findings into exact action steps for operators.
  • /domains Batch triage across large portfolios to isolate risk.

Designed for Workflows

The engine is built to drive automation, not just one-off manual reviews. Explore how to integrate the API into your established stack.

Workflow Library

Observable Evidence

See how the engine transforms raw DNS responses into structured finding arrays and remediation instructions.

Sample API Response