DNS Lookup

Choose a DNS record type to search for.

Propagation & diagnostics

Compare resolvers worldwide and inspect returned answers.

Propagation testPublic resolvers, remaining TTLs, divergent responses.
Domain DNS auditParent/local NS, authority and response times.
DNSSEC CheckerValidate chain of trust, DS records and signing keys.
RDAP LookupDomain registration data via RDAP/WHOIS.
API & integrations
Keep history, monitor your zones and automate recurring checks.

Email Diagnostics

Tools to verify and validate your email authentication setup.

Syntax validation

Record inspectors

SPF

SPF syntax validator

SPF record inspector

DKIM

DKIM syntax validator

DKIM record check

DMARC

DMARC syntax validator

DMARC record inspector

DMARCbis

DMARCbis Checker

DMARCbis Migration

BIMI

BIMI syntax validator

BIMI record inspector

MTA-STS

MTA-STS syntax validator

MTA-STS record inspector

TLS-RPT

TLS-RPT syntax validator

TLS-RPT record inspector

DANE / TLSA

DANE TLSA syntax validator

DANE TLSA Checker

Deliverability

Email deliverability audit Mail header analyzer Email tester IP Blacklist Checker Domain Blacklist Checker SPF Flattener DKIM Selector Finder SMTP/MX Tester

Secure & Monitor

Record generators, policy hosting and continuous monitoring.

Generators

SPFSPF record generator DKIMDKIM generator DMARCDMARC record generator BIMIBIMI record generator MTA-STSMTA-STS generator TLS-RPTTLS-RPT generator DANEDANE TLSA generator

Hosting

MTA-STSMTA-STS hosting BIMIBIMI Hosting

Monitoring

TLS-RPTTLS-RPT Monitoring DMARCDMARC Monitoring

Report readers

DMARCDMARC report reader TLS-RPTTLS-RPT Report Reader

Network & Web

Network tools, web page analysis and certificates.

IP Tools

My IP address

Detect your IPv4/IPv6 addresses and their geolocation.

Reverse lookup

Resolve a PTR record and validate DNS consistency.

IP WhoIs

Identify the owner of an IP range and its contacts.

IPv4 netmask

Calculate network, broadcast and usable hosts for any IPv4 block.

IPv6 subnet calculator

Calculate IPv6 subnets, address ranges and reverse DNS entries.

Certificates & BIMI

BIMI logo lookup

Inspect a BIMI logo URL - format, metadata and live rendering - before rollout.

BIMI SVG converter

Convert any SVG to BIMI-compliant Tiny-PS format in seconds.

CSR parser

Inspect a CSR, extract subject details, fingerprints and requested SANs.

VMC inspector

Inspect a Verified Mark Certificate - issuer, validity and SAN coverage - before you publish BIMI.

Web

Page size checker

Check if your page exceeds Google's 2 MB crawl limit.

Phishing URL Checker

Check if a URL is flagged as phishing or malware by 4 threat intelligence sources.

Redirect Checker

Analyze HTTP redirect chains

Domain Redirect

Redirect your domains with automatic HTTPS and 301/302 redirects.

HTTP Uptime Monitor

Monitor your sites with scheduled HTTP checks and email alerts.

Status Pages

Publish a public status page grouping your HTTP monitors.

Developer Tools

Text utilities and tools for everyday dev work.

Text

Transform and measure your content in seconds.

Text case converter

Convert any block of text to upper or lower case instantly.

Slug generator

Transform any sentence into an SEO-friendly slug in seconds.

Word & character counter

Measure the length of any text, with instant word and character counts.

Password generator

Generate strong random passwords and memorable passphrases instantly.

Developer

Encoding, hashing, regex and formatting for everyday dev work.

Base64 encoder / decoder

Encode or decode any content in Base64 without leaving the browser.

Hash Generator

Compute MD5, SHA-1, SHA-256 and SHA-512 hashes of any text.

URL encoder / decoder

Encode or decode text using percent-encoding (RFC 3986) right in your browser.

Regex Tester

Test a regular expression against text and visualize matches.

JSON / YAML Formatter

Format, validate and convert JSON and YAML in one click.

🇮🇪 Email Security in Ireland

Weekly audit of email security across 6 listed companies headquartered in Ireland.

6 companies analysed · Scan week: 2026-03-23

Listed companies headquartered in Ireland score an average of 51/100 for email authentication and DNS security.
0% of Ireland companies achieve grades A+ or A in email security, while 50% score D or F.
This is 9 points above the global average of 42 across all 1601 companies in the observatory.
DMARC email authentication is deployed by 100% of Ireland companies, with 100% enforcing a reject policy to prevent domain spoofing.
SPF records are published on 100% of analysed domains, authorizing legitimate email senders.
BIMI brand indicator adoption stands at 0% in Ireland.
MTA-STS enforced TLS encryption is deployed by 0% of companies, securing inbound email delivery.
DNSSEC domain signing is active on 16.7% of Ireland domains.
The highest-scoring company is CRH with 70/100 (B).
PDD Holdings Inc. trails at 38/100, with significant room for improvement.
Scores range from 38 to 70 with a median of 52, showing disparate email security postures across Ireland listed companies.

Average score

51/ 100

DMARC reject

100%

BIMI configured

0%

MTA-STS enforce

0%

DNSSEC enabled

16.7%

0

A+

0

A

1

B

2

C

3

D

0

F

51

Average

52

Median

38

Min

70

Max

			Grade	DMARC	SPF	BIMI	MTA-STS	DANE-TLSA	DNSSEC
1	CRHcrh.com	70	B	reject	~all	✗	✗	✗	✓
2	Flutter Entertainmentflutter.com	57	C	reject	-all	✗	✗	✗	✗
3	Experianexperian.com	55	C	reject	~all	✗	✗	✗	✗
4	Smurfit Westrocksmurfitwestrock.com	49	D	reject	~all	✗	✗	✗	✗
5	DCCdcc.ie	39	D	reject	-all	✗	✗	✗	✗
6	PDD Holdings Inc.pddholdings.com	38	D	reject	-all	✗	✗	✗	✗

Understanding country-level analysis

Grouping companies by country reveals how corporate email security practices vary across markets. Countries with stricter regulatory environments or more mature cybersecurity ecosystems tend to show higher average scores.

What this page shows:

Average score - The mean email security score across all listed companies in this country
Grade distribution - How many companies fall into each grade bracket (A+ through F)
DMARC reject rate - The percentage of companies enforcing strict DMARC policies
Company table - Individual scores, grades and key indicator status

Key standards tracked

Each company is evaluated on:

SPF - Is the sending policy properly configured? Does it use -all (hard fail)?
DKIM - Are signing keys published and strong enough (2048-bit minimum)?
DMARC - Is a policy in place? Is it set to quarantine or reject?
BIMI - Is the brand logo published for inbox display?
MTA-STS - Is inbound email transport encryption enforced?
DNSSEC - Is the DNS zone signed to prevent spoofing?

FAQ - Frequently asked questions

Q: How are companies grouped by country?

A: Based on the stock exchange where they are listed.

Q: What standards are checked?

A: SPF, DKIM, DMARC, BIMI, MTA-STS, DANE/TLSA and DNSSEC.

Q: Can I compare countries?

A: Yes, via the Statistics page.

Page	Purpose
Observatory Dashboard	Overall overview with key metrics
Statistics	Cross-country and cross-sector comparison
Email Domain Check	Audit your own domain