DMARC Report
Analyzer
Upload or paste a DMARC aggregate report XML file to visualize authentication results, source IPs and disposition breakdowns — 100% client-side.
Click to uploador drag & drop
DMARC aggregate report XML file
Frequently Asked Questions
What is a DMARC aggregate report?
DMARC aggregate reports are XML files sent by mail receivers (like Gmail, Yahoo, Outlook) to the address specified in your DMARC DNS record (rua tag). They summarize how emails from your domain were authenticated — showing source IPs, SPF/DKIM results, and what action was taken (none, quarantine, reject).
Is my data sent to any server?
No. This tool runs entirely in your browser. The XML file is parsed using the browser's DOMParser API and never leaves your device. No data is uploaded, stored, or transmitted anywhere.
What XML format is supported?
The tool supports the standard DMARC aggregate report format (RFC 7489) as generated by major mail providers like Google, Microsoft, Yahoo, and others. The root element should be <feedback> containing <report_metadata>, <policy_published>, and one or more <record> elements.
How are the pass/fail rates calculated?
Each record in the report has a message count. The tool sums the counts for records where DKIM and/or SPF passed vs failed, giving you weighted percentages based on actual message volume — not just the number of source IPs.
Can I analyze multiple reports at once?
Currently you can analyze one report at a time. Upload or paste a new file to replace the current analysis. For bulk analysis of many reports, consider a dedicated DMARC monitoring service.
Complete Guide: How to Use the DMARC Report Analyzer
Parse and analyze DMARC aggregate report XML files to understand who is sending email from your domain. Our analyzer converts complex XML data into clear, visual reports showing authentication pass/fail rates, sending sources, and alignment status — helping you move toward DMARC enforcement safely.
Step-by-Step Instructions
- 1
Upload a DMARC report
Upload the XML file received from DMARC aggregate reports (usually emailed to your rua= address). The tool accepts both raw XML and ZIP/GZ compressed files.
- 2
View the summary
See total message volume, pass/fail percentages for DKIM and SPF, and the reporting organization details.
- 3
Analyze sending sources
Each source IP is shown with its volume, DKIM/SPF results, and reverse DNS. Identify legitimate senders vs. unauthorized ones.
- 4
Take action
Use the insights to update SPF/DKIM configuration for legitimate senders and tighten your DMARC policy to block spoofing.
Common Use Cases
- ✓DMARC deployment — monitor authentication results before moving from p=none to p=reject
- ✓Spoofing detection — identify unauthorized parties sending email as your domain
- ✓Email service audit — discover all services sending email on behalf of your domain
- ✓SPF optimization — find sources that fail SPF and add them to your SPF record
- ✓Compliance reporting — generate email authentication compliance reports for auditors
- ✓Troubleshooting — diagnose why legitimate emails are failing DMARC checks
Pro Tips
Related Tools
Website Security Scanner
Scan a website for security headers, HTTPS config, cookie flags, and common vulnerabilities.
DMARC Record Checker
Validate your domain's DMARC policy. Check alignment, policy mode, reporting URIs and configuration issues.
SPF Record Checker
Validate SPF records and detect issues — too many lookups, syntax errors, and missing includes.
DKIM Record Checker
Look up and validate DKIM public key records. Verify selector, key length, algorithm and flags.