New

Test your email deliverability

Send a test email and get a complete diagnosis of your SPF, DKIM and DMARC authentication in seconds.

DNS & deliverability platform

Everything you need to verify your DNS zones and email authentication

Q: Does the DNS lookup run from multiple regions?

Yes, each query runs across 18 resolvers on four continents so you see what your recipients experience.

Q: Can I export my audit results?

Reports and histories download as CSV, JSON and PDF. Pro plans can also push exports to S3 or BigQuery.

Q: How do monitoring alerts work?

Pick a domain and record type to watch: we automatically query 18 resolvers and notify you by email or webhook as soon as a difference or latency anomaly appears.

Q: How do you handle oversized SPF records?

SPF Lab calculates lookup counts, highlights cascading includes and suggests safe flattening strategies.

Q: Can I share a saved request?

Yes. Every stored request includes a shareable link with sensitive inputs redacted, and you can turn it into a monitor in one click.

Q: Is there an API?

Absolutely. Every key capability is available through a REST API with token authentication and webhooks for alerts.

Q: Is the platform a good fit for agencies?

Multi-brand organisations are supported with shared access, folders and per-client quotas.

Q: Do you offer a free trial?

All tools can be launched for free. Paid plans unlock history, automated exports and priority support.

Resolve, audit and fix DNS, SPF, DKIM, DMARC and BIMI records from a single dashboard with easy-to-use diagnostics.

Run a DNS lookup DMARC inspector

Domains analysed: 48K+
Aggregated data since 2025
DNS queries processed: 12M/mo
SPF/DKIM/DMARC reports generated: 260K+
Active monitors: 8K+
Alerts sent as soon as a difference or latency anomaly is detected

Core engines

Three modules at the heart of CaptainDNS to troubleshoot zones, secure authentication and keep campaigns out of spam folders.

Universal DNS lookup

Instant A, AAAA, MX, TXT and CNAME resolutions across 18 resolvers with latency and RCODE insights.

Start a lookup

Online DKIM checker

Instantly validate your DKIM signatures, verify the DNS public key and diagnose configuration errors blocking your emails.

Check a DKIM

SPF/DKIM/DMARC analyzers

Hardened parsers, policy suggestions and lookup budgeting to prevent blocks and maximise alignment.

Explore analyzers

CaptainDNS email header analyzer screenshot

Email header analysis

Decode your email headers in an instant

Paste raw email headers and get a detailed report on authentication, delivery path and spam verdict.

Automatic SPF, DKIM and DMARC validation with trust verdict
Deliverability score and instant spam diagnosis
Complete identification of sender identities and recipients
Full delivery path and transit server analysis

Analyze a header

Deliverability audit

Audit your domain before every campaign

Get a complete deliverability score and actionable recommendations to fix your SPF, DKIM, DMARC, BIMI and MX records.

Comprehensive audit of all email authentication protocols
Detailed compliance score with rating per protocol
MX records verification and TLS configuration check
BIMI validation with logo extraction and display

Audit a domain

CaptainDNS email deliverability audit screenshot

Latest articles

Blog

CaptainDNS · February 22, 2026

Architecture diagram showing Postfix, Bind9 and Let's Encrypt connected by DANE/TLSA

Set up DANE/TLSA with Postfix, Bind and Let's Encrypt

Step-by-step tutorial to deploy DANE on a self-hosted mail server with Postfix, Bind9, DNSSEC and Let's Encrypt.

CaptainDNS · February 22, 2026

DNSSEC chain of trust: from the DNS root to your domain, each level verifies the next using cryptographic keys

Understand the DNSSEC chain of trust in 5 minutes

The chain of trust is the core principle behind DNSSEC. This guide explains every link, from the DNS root to your domain, with clear diagrams.

CaptainDNS · February 21, 2026

DANE/TLSA: authenticating email server TLS certificates via DNS and DNSSEC

DANE/TLSA: the complete guide to authenticating email certificates via DNS

DANE (RFC 6698/7672) binds TLS certificates to domain names using DNSSEC-signed TLSA DNS records. Learn how to deploy it to secure SMTP transport.

About

Making deliverability transparent for the teams that run email

We build CaptainDNS to give marketing and SRE teams complete visibility into DNS configuration and deliverability signals. Every tool explains what must be fixed and why it matters.

Our distributed infrastructure mirrors the reality of your recipients. Know whether resolvers in Frankfurt, Sydney or Montreal see the same answer, and get alerted as soon as a divergence appears.

Global resolvers monitored: 18
Uptime over 12 months: 99.99%
Support response time: < 24 h
Continents covered: 4

FAQ

Frequently asked questions

Stay in control of DNS and deliverability with actionable explanations. Here are the answers to the most common requests.

Does the DNS lookup run from multiple regions?

Yes, each query runs across 18 resolvers on four continents so you see what your recipients experience.

Can I export my audit results?

Reports and histories download as CSV, JSON and PDF. Pro plans can also push exports to S3 or BigQuery.

How do monitoring alerts work?

Pick a domain and record type to watch: we automatically query 18 resolvers and notify you by email or webhook as soon as a difference or latency anomaly appears.

How do you handle oversized SPF records?

SPF Lab calculates lookup counts, highlights cascading includes and suggests safe flattening strategies.

Can I share a saved request?

Yes. Every stored request includes a shareable link with sensitive inputs redacted, and you can turn it into a monitor in one click.

Is there an API?

Absolutely. Every key capability is available through a REST API with token authentication and webhooks for alerts.

Is the platform a good fit for agencies?

Multi-brand organisations are supported with shared access, folders and per-client quotas.

Do you offer a free trial?

All tools can be launched for free. Paid plans unlock history, automated exports and priority support.

Launch your next audit in seconds

Try it for free, then upgrade to the plan that matches your volume when you're ready.

Run a DNS domain audit