C
CertPilot

Free email authentication checker

Inbox Pulse

Paste up to 25 client domains and check email authentication basics across MX, SPF, DMARC, MTA-STS, TLS-RPT, and BIMI.

This free tool helps agencies spot email-authentication gaps before clients report deliverability problems.

Paste URLs or bare domains — https:// and paths are stripped automatically.

How this works

  1. 1Paste up to 25 client domains — one per line.
  2. 2We query public DNS email-auth records for each domain.
  3. 3Review missing or weak records before deliverability issues escalate.

How to read the grades

  • AStrong foundation — MX, SPF, DMARC (enforced), and transport security in place.
  • BGood foundation — DMARC is still in monitoring mode (p=none), or transport security missing.
  • CSPF exists but DMARC is missing.
  • DKey email-auth records are missing.
  • FNo MX records or DNS lookup failed.

What this checks

  • MX records — does this domain receive email?
  • SPF — which servers are authorised to send?
  • DMARC policy — p=none, quarantine, or reject?
  • MTA-STS — encrypted mail transport policy
  • TLS-RPT — transport-layer failure reporting
  • BIMI — brand logo in supported email clients

What paid CertPilot adds

  • Daily automated monitoring — no manual runs
  • SSL certificate expiry tracking
  • Domain registration expiry tracking
  • DNS record change detection
  • Client grouping across your agency
  • Daily digest emails
  • Branded PDF reports for clients
Start free trial
← View all free tools