VOOZH about

URL: https://apify.com/andok/dmarc-spf-dkim-validator

โ‡ฑ DMARC, SPF & DKIM Validator ยท Apify

Pricing

$1.00 / 1,000 domain validations

Go to Apify Store

DMARC, SPF & DKIM Validator

Validate email authentication DNS records to prevent spoofing and ensure high email deliverability for your domains.

Pricing

$1.00 / 1,000 domain validations

Rating

0.0

(0)

Developer

๐Ÿ‘ Andok

Andok

Maintained by Community

Actor stats

1

Bookmarked

4

Total users

0

Monthly active users

3 months ago

Last modified

Categories

Share

DMARC / SPF / DKIM Validator

Audit email authentication DNS records for any domain to catch deliverability killers and compliance gaps. Missing or misconfigured SPF, DMARC, and DKIM records cause emails to land in spam, fail authentication checks, and leave domains open to spoofing. Validate hundreds of domains in bulk with structured results that flag every issue.

Features

  • Three-protocol coverage โ€” validates SPF, DMARC, and DKIM records in a single run
  • Bulk domain processing โ€” scan hundreds of sender domains with configurable concurrency
  • DKIM selector scanning โ€” checks common selectors (default, selector1, selector2, google, mail, smtp) with support for custom lists
  • Issue detection โ€” flags missing records, syntax errors, overly permissive policies, and DNS lookup limits
  • DMARC policy parsing โ€” extracts policy, subdomain policy, percentage, and reporting URIs
  • SPF validation โ€” checks syntax, mechanism order, and estimates DNS lookup count
  • Raw record inclusion โ€” optionally include full DNS TXT records for debugging
  • Charge limit support โ€” respects the Apify max charge per run to control costs

Input

FieldTypeRequiredDefaultDescription
domainsarrayNo["google.com"]List of domains to validate email authentication records for
domainstringNoโ€”Single domain to validate (backwards compatible, use domains for bulk)
dkimSelectorsarrayNo["default", "selector1", ...]DKIM selectors to check. The actor tries each selector until a valid one is found
stopAfterFirstValidDkimbooleanNotrueStop checking DKIM selectors after finding the first valid one to save DNS queries
timeoutSecondsintegerNo8DNS query timeout in seconds per lookup (1-60)
concurrencyintegerNo5Number of domains to process in parallel (1-25)
includeRawRecordsbooleanNotrueInclude raw DNS TXT record strings in the output for debugging

Input Example

{
"domains":["example.com","newsletter.example.com"],
"dkimSelectors":["default","selector1","selector2","google","mailchimp"],
"stopAfterFirstValidDkim":true,
"includeRawRecords":true
}

Output

Each domain produces one dataset item with detailed SPF, DMARC, and DKIM validation results.

Key fields:

  • domain (string) โ€” the domain that was validated
  • hasSpf / spfValid (boolean) โ€” whether an SPF record exists and passes validation
  • hasDmarc / dmarcPolicy (boolean / string) โ€” whether DMARC exists and its enforcement policy
  • hasDkim / dkimValidSelectors (boolean / array) โ€” whether valid DKIM records were found and which selectors
  • spf (object) โ€” full SPF analysis with record, validity, mechanisms, and issues
  • dmarc (object) โ€” full DMARC analysis with policy, reporting URIs, and issues
  • dkim (object) โ€” per-selector DKIM results with validity status
  • issues (array) โ€” consolidated list of all problems found across protocols

Output Example

{
"domain":"example.com",
"checkedAt":"2025-03-09T14:30:00.000Z",
"hasSpf":true,
"spfValid":true,
"spf":{
"found":true,
"record":"v=spf1 include:_spf.google.com ~all",
"isValid":true,
"issues":[]
},
"hasDmarc":true,
"dmarcPolicy":"reject",
"dmarc":{
"found":true,
"policy":"reject",
"subdomainPolicy":"reject",
"percentage":100,
"reportingUris":["mailto:dmarc@example.com"],
"isValid":true,
"issues":[]
},
"hasDkim":true,
"dkimValidSelectors":["google"],
"dkim":{
"selectorsChecked":["default","selector1","google"],
"validSelectors":["google"],
"selectors":[
{
"selector":"google",
"found":true,
"isValid":true,
"issues":[]
}
]
},
"issues":[]
}

Pricing

EventCost
Domain ValidationPay-per-event pricing applies

Set ACTOR_MAX_TOTAL_CHARGE_USD to control maximum spending per run.

Use Cases

  • Email deliverability audits โ€” validate SPF, DMARC, and DKIM before launching email campaigns to avoid spam placement
  • Domain security compliance โ€” audit all company domains for proper email authentication as part of SOC 2 or security reviews
  • Client onboarding for agencies โ€” scan new client domains to identify email authentication gaps before taking over email marketing
  • Ongoing monitoring โ€” schedule weekly checks to catch broken records after DNS changes or provider migrations
  • Spoofing risk assessment โ€” identify domains with missing or permissive DMARC policies that are vulnerable to phishing

Related Actors

ActorWhat it adds
DNS Propagation CheckerVerify that updated SPF/DMARC/DKIM records have propagated across global resolvers
SSL Certificate MonitorCheck SSL certificate health alongside email authentication for a complete domain audit
Security Headers AnalyzerAudit HTTP security headers to complement email security checks

Notes

  • SPF validation is lightweight โ€” it checks syntax and common misconfigurations but does not perform full RFC 7208 processing.
  • DKIM requires knowing the selector. The actor checks common selectors by default, but if your domain uses a custom selector (e.g., mailchimp, sendgrid), add it to the dkimSelectors input.
  • Increasing the number of DKIM selectors increases DNS query count proportionally.

You might also like

Domain Security & Email Deliverability โ€” DNS, SPF, DMARC, DKIM

ryanclinton/dns-record-lookup

Audit a domain portfolio for email spoofing, broken SPF, DMARC enforcement, DNSSEC and shadow-SaaS senders. Returns a posture score, what to fix first, vendor dependencies and drift alerts โ€” not just records. Bulk DNS / SPF / DMARC / DKIM lookup, no API keys.

22

Bulk Email DNS Audit Scraper

taroyamada/email-deliverability-portfolio-audit

Scrape domain DNS data to extract SPF, DKIM, DMARC, and BIMI records. Generate structured deliverability readiness reports for client portfolios.

DMARC & Email Security Checker

taroyamada/dns-dmarc-security-checker

Validate domain infrastructure in bulk to boost email deliverability. Extract DMARC policies, SPF records, and MX configurations to keep outreach out of spam.

Email Validator

louisdeconinck/email-validator

Validate emails with checks on format, alias, DNS & disposable email. Clean lists, prevent fraud and boost deliverability with this fast and easy actor.

๐Ÿ‘ User avatar

Louis Deconinck

288

5.0

DNS, WHOIS, SPF/DMARC, SSL Domain Audit

jungle_synthesizer/dns-domain-audit

Bulk domain audit covering DNS records, WHOIS registration, SPF/DMARC/DKIM email auth, SSL certificate, and reverse DNS. No browser, no proxy -- pure Node, sub-second per domain.

๐Ÿ‘ User avatar

BowTiedRaccoon

2

Email Validator

vulnv/email-validator

Validate the deliverability of email addresses in bulk from a simple list input.

Domain Intelligence: WHOIS + DNS Bulk Lookup

scrapemint/domain-intelligence

Pass a list of domains, get WHOIS data, DNS records, and inferred signals like email provider, DNS provider, and SPF/DMARC presence. Built for SDRs, brand protection teams, and email deliverability consultants. One row per domain. Pay per lookup.

Email Security Scanner

cerridwen/email-security-scanner

DNS-only email posture for any domain: MX, SPF, DMARC, DKIM probes, MTA-STS, BIMI. No email sent. Returns score + actionable tips. Batch-friendly for CRM domains and compliance snapshots.