A PowerShell tool for comprehensive SPF, DKIM, and DMARC analysis.
Set-ExecutionPolicy RemoteSigned -Scope CurrentUser
.\EmailAuthChecker.ps1Input Options: Single domain, multiple domains (comma-separated), file input, or email headers
| Protocol | Checks | Max Points |
|---|---|---|
| SPF | 9 checks (syntax, DNS optimization, macro security) | 40 pts |
| DKIM | 5 checks (selectors, key strength, validation) | 30 pts |
| DMARC | 5 checks (policy, reporting, alignment) | 30 pts |
- 🏆 Excellent (95-100): Requires DMARC p=reject
- ✅ Good (80-94) |
⚠️ Fair (60-79) | ❌ Poor (40-59) | 🚨 Critical (<40)
- MX Record Analysis: Mail server configuration and provider detection
- Email Provider Detection: Microsoft 365, Google, AWS SES, etc.
- Streamlined Reporting: Clean output with reduced noise
- Console: Real-time analysis progress
- HTML Report: Interactive dashboard with security scores and recommendations
- Microsoft Links: Direct documentation for remediation
| Component | Requirement |
|---|---|
| PowerShell | 5.1+ (Windows) or Core (Cross-platform) |
| OS | Windows 10+, Linux, macOS |
| Network | Internet access for DNS queries |
- QUICKSTART.md - 5-minute setup guide
- INSTRUCTIONS.md - Comprehensive usage guide
| Issue | Solution |
|---|---|
| Script won't run | Set-ExecutionPolicy RemoteSigned |
| DNS timeouts | Run as Administrator |
| Permission errors | Use elevated PowerShell |
Version 1.5 | MIT License | Author: Abdullah Zmaili