DMARC / SPF / DKIM Checker
SPF/DKIM/DMARC via checkdmarc. Part of AuditCore's automated security audit pipeline — runs on every scan in the Basic tier and above, with findings normalized into a single severity-rated table.
What is DMARC / SPF / DKIM Checker?
DMARC / SPF / DKIM Checker runs in the Reconnaissance phase of every AuditCore scan that includes it. Discover the target attack surface — subdomains, live hosts, hidden directories, mail config — before any active probing.
Out of the box it covers: SPF/DKIM/DMARC via checkdmarc. Findings are normalized into AuditCore's vulnerability model so they appear next to results from every other scanner — no separate tabs, no tool-specific jargon, one CVSS-rated table.
If you've ever wondered which scanners actually run when you click "Start scan" on AuditCore, this is one of them. The full pipeline is documented per phase, and you can see exactly which tools fired on any given scan from the live terminal feed.
What it tests
- SPF/DKIM/DMARC via checkdmarc
- Runs automatically as part of any Basic-tier scan and above
- Findings appear in the standard AuditCore severity table (Critical / High / Medium / Low / Info)
- Results are bundled into the PDF report and exposed via the API
Where it runs in the AuditCore pipeline
Phase 1/5 · Reconnaissance
Discover the target attack surface — subdomains, live hosts, hidden directories, mail config — before any active probing.
Source: scanners/recon/dmarc_checker.py
Sample findings
DMARC / SPF / DKIM Checker fired on a real target
Typical run produces between 0 and dozens of normalized findings depending on the target's posture. Each finding includes severity, evidence, affected URL/parameter, and a remediation hint.
Other reconnaissance scanners
FAQ
What does DMARC / SPF / DKIM Checker test for?
SPF/DKIM/DMARC via checkdmarc
Which AuditCore plan includes DMARC / SPF / DKIM Checker?
Available from the Basic plan ($99) and up. Higher tiers also include this scanner — license once, rescan unlimited.
Is DMARC / SPF / DKIM Checker safe to run on production?
Yes — DMARC / SPF / DKIM Checker runs in the Reconnaissance phase, which is non-intrusive. It only reads data the target already exposes (DNS, HTTP responses, public files, headers).
Where does DMARC / SPF / DKIM Checker run in the AuditCore scan pipeline?
Phase 1/5 — Reconnaissance. Discover the target attack surface — subdomains, live hosts, hidden directories, mail config — before any active probing.
Can I rerun DMARC / SPF / DKIM Checker without paying again?
Yes. AuditCore uses a per-domain license model — once you've purchased a tier for a domain, every rescan (manual or scheduled) is included. No metered usage.