Email header analyzer
Use this page when you have full mail headers and need a faster answer to whether sender authentication, relay history or reply routing looks suspicious.
The email header analyzer parses raw headers into an evidence-led view of SPF, DKIM, DMARC, From, Reply-To, Return-Path and Received-chain anomalies.
This tool turns raw mail headers into a reader-friendly breakdown of sender-authentication results, mailbox-routing anomalies and impersonation markers often missed in the visible email body.
Visible sender names and message text are easy to fake. Header data shows whether the message actually passed sender checks and where the reply or bounce path is trying to send the victim.
No single header view proves legitimacy, but failed SPF, DKIM or DMARC checks plus reply-path mismatches are strong reasons to treat the message as suspicious until verified independently.
Paste the full raw headers from your mail client, especially Authentication-Results, Received, From, Reply-To and Return-Path fields.
Scam checker
Check suspicious SMS, fake delivery updates, payment prompts and urgent verification messages to spot scam pressure before you click, pay or reply.
Open tool pageEmail review
Review suspicious senders, domain clues and phishing language to triage risky email campaigns before anyone opens links, attachments or login pages.
Open tool pageEmail posture
Check SPF, DKIM, DMARC and MX records to find email spoofing gaps, strengthen domain trust and improve business email security posture.
Open tool pageURL checker
Check suspicious links before you click with hostname, redirects, DNS, TLS, ASN, hosting provider and phishing-pattern analysis in one report.
Open tool pageBrand impersonation
Check suspicious domains, senders and fake support portals for brand impersonation, lookalike patterns, punycode, typosquatting and recent-registration risk.
Open tool pageRecovery center
Follow step-by-step recovery after phishing, hacked accounts, breach exposure, identity theft and scam incidents across Google, Microsoft, Meta and banking scenarios.
Open tool pageBreach checker
Check whether exposed email or reused passwords create real breach risk, then follow a practical 24-hour containment plan and next-step checklist.
Open tool pageIdentity theft planner
Build a step-by-step identity theft response plan after exposed personal data, fraudulent accounts, mailbox compromise, SIM swap or document leaks.
Open tool pageCrypto scam checker
Check suspicious crypto projects, fake exchange messages, guaranteed-return claims and recovery-fee demands before sending funds or identity documents.
Open tool pageRansomware triage
Triage encrypted-file incidents with isolation steps, ransom-note analysis, extension review, backup checks and decryptor guidance before recovery decisions.
Open tool pageReport incident
Submit suspicious phishing pages, malicious senders, brand impersonation attempts and emerging attack patterns so new scam clusters surface faster.
Open tool page