About this tool
What does the security score actually measure?
Five checks across email authentication and web security: DMARC policy (max 30 pts), SPF record (max 20 pts), DKIM signing (max 15 pts), SSL/HTTPS configuration (max 30 pts), and MX records (max 5 pts). The grade reflects your overall posture — A is 90+, B is 75–89, C is 55–74, D is 35–54, F is below 35.
How is this different from the free DMARC checker?
The
DMARC checker focuses specifically on DMARC, SPF, and DKIM in depth. This tool gives you a unified A-F grade across all security dimensions — email authentication plus SSL, HTTPS headers, and MX — in a single score. Use this for a quick overall picture; use the DMARC checker for detailed email authentication diagnostics.
What does a DMARC score of p=none mean for my grade?
A DMARC record with p=none earns 6/30 points for the DMARC check — monitoring only, no enforcement. Attackers can still send phishing emails that appear to come from your domain. Moving to p=quarantine earns 18/30; p=reject earns the full 30/30.
Can I improve my score without technical knowledge?
Many improvements are straightforward DNS record additions. Your email provider (Google Workspace, Microsoft 365, etc.) usually provides the exact records to add. The full report we send includes specific DNS records to copy and paste, not just general advice.
Does this tool store my domain or email?
Domain scans are not stored. If you provide your email to unlock the full report, it's used to send the report and to subscribe you to our security newsletter — you can unsubscribe any time. See our
privacy policy.
How often should I check my domain's security score?
Security configurations change — a deployment updates a header, a DNS change weakens SPF, an SSL certificate expires. We recommend checking at least monthly. Better yet,
Pulse and
Inbox Shield monitor these checks automatically and alert you when anything changes.