Analyze email headers to detect phishing attempts and authentication issues. This tool works entirely in your browser—no data is sent to our servers.
From your email client, select "View Full Headers" or "View Source" to get the complete email header.
Paste the email header into our analyzer and click "Analyze" for instant results.
Check SPF, DKIM, and DMARC authentication results and suspicious indicators.
Follow our recommendations to protect yourself from phishing and email-based attacks.
What it does: Verifies that the email was sent from an authorized mail server for the domain.
PASS: Email came from an authorized server.
FAIL: Email did not come from an authorized server—potential phishing.
What it does: Digitally signs emails to verify they haven't been altered in transit.
PASS: Email signature is valid and authentic.
FAIL: Email signature is invalid—the message may have been modified.
What it does: Combines SPF and DKIM to provide comprehensive email authentication.
PASS: Email passes both SPF and DKIM checks.
FAIL: Email fails authentication—high risk of phishing or spoofing.
Instead, navigate directly to the organization's website by typing the URL in your browser.
Contact the sender through a separate, trusted channel to verify they actually sent the email.
Malware is often delivered through email attachments. Verify before downloading.
Check that SPF, DKIM, and DMARC all pass. Failed authentication is a major red flag.
MFA protects your account even if a phisher obtains your password.
Report suspicious emails to your IT department and your email provider's abuse team.
All analysis is done locally in your browser. The email headers you paste are never sent to our servers or stored. Your data remains completely private and secure. This tool works offline and respects your privacy.
Our comprehensive security solutions go beyond email analysis to protect your entire organization.
Book a Security Consultation