Email Spoof Checker — Detect Phishing and Email Spoofing

Free browser-based tool to detect email spoofing and phishing. Paste the sender display name, email address, Reply-To email, and optional raw headers to get an instant risk score. Checks for lookalike domains, brand name impersonation, Reply-To mismatches, missing MX records, and SPF/DKIM/DMARC authentication failures. Built by Abhishek Gautam, full stack developer.

What this tool checks

Frequently Asked Questions

How can I tell if an email is spoofed?

Check the actual sender email domain (not just the display name), look for lookalike domains, verify MX records exist, and check SPF/DKIM/DMARC in the raw email headers.

What is email spoofing?

Email spoofing is when a sender forges the From address to make an email appear to come from a trusted source — like a bank, courier service, or well-known company.

What are SPF, DKIM, and DMARC?

SPF verifies the sending server is authorised for the domain. DKIM checks the email was not tampered with. DMARC combines both and lets the domain owner set enforcement policy.

Is my email data stored?

No. The tool runs entirely in your browser. No data is sent to any server except an anonymous DNS query to Cloudflare public resolver to check MX records.

What is a lookalike domain?

A lookalike domain is visually similar to a legitimate one — like paypa1.com instead of paypal.com. Attackers register these to deceive recipients into trusting the email.

← abhs.in
BlogTools

Tool

Email Spoof Checker

Paste details from a suspicious email. Instantly checks for lookalike domains, display name spoofing, Reply-To mismatches, missing mail servers, and authentication failures. Nothing is stored — runs entirely in your browser.