Email Security Endpoints

12 endpoints available

Complete email authentication analysis covering SPF, DKIM, DMARC, BIMI, and MTA-STS. Also includes email address validation with DNS-level checks, disposable domain detection, and email hosting provider identification. Essential for email deliverability engineers, IT admins, and email marketers.

SPF Check

/v1/security/spf

Validate SPF record syntax, DNS lookups, and policy

DKIM Check

/v1/security/dkim

Discover and validate DKIM signing keys

DMARC Check

/v1/security/dmarc

Analyze DMARC policy, alignment, and reporting

BIMI Check

/v1/security/bimi

Validate brand logo configuration for email

MTA-STS Check

/v1/security/mta-sts

Validate email transport encryption policy

Email Validation

/v1/email/validate

Validate email with DNS checks and risk scoring

Email Score

/v1/score/email

Rate email security (SPF, DKIM, DMARC)

Email Hosting

/v1/domain/email-hosting

Detect email service provider

DANE / TLSA Analysis

/v1/security/dane

Audit DANE TLSA records for mail and HTTPS hosts

Email Spoofability Score

/v1/security/spoofability

Composite spoofability score across SPF/DMARC/DKIM

SPF Trust Surface

/v1/security/spf-trust-surface

Map every sender authorized by your SPF include chain

Email Security Posture (Composite)

/v1/security/email-posture

Single-call composite that fans out across SPF, DKIM, DMARC, and DMARCbis tree-walk

Related Standards & References

Learn more about the protocols and standards behind these endpoints.

RFC 7208 - SPF

Sender Policy Framework specification

RFC 6376 - DKIM

DomainKeys Identified Mail signatures

RFC 7489 - DMARC

Domain-based Message Authentication

Try These Endpoints

Test Email Security endpoints live in the playground. No signup required.

Open Playground Get Started Guide

We use essential cookies for secure sign-in (Clerk authentication). We also use optional analytics cookies (Google Analytics) to understand page visits and site usage. No advertising or tracking cookies. Analytics cookies are disabled by default. You can reject all optional cookies or manage preferences in our cookie policy.