Email Authentication Audit

v20260317

implementing-email-security-with-dmarc-dkim-spf

Audits a domain’s email authentication by querying SPF, DKIM, and DMARC DNS records using dnspython, validating syntax/counts, flagging common spoofing risks, and producing remediation guidance.

Email Security DMARC DKIM SPF Audit Remediation Automation

Get Skill

164 downloads

Overview

Instructions

Install dependencies: pip install dnspython checkdmarc
Provide target domain(s) to audit.
Run the agent to check email security:
- Query and validate SPF records (syntax, mechanism count, includes, redirect)
- Check DKIM records for common selectors (google, default, selector1, selector2)
- Parse DMARC records (policy, subdomain policy, reporting URIs, alignment)
- Identify misconfigurations enabling spoofing
- Generate remediation recommendations

python scripts/agent.py --domain example.com --output email_security_report.json

Examples

Email Security Audit Result

Domain: example.com
SPF: v=spf1 include:_spf.google.com ~all (WARN: softfail allows spoofing)
DKIM: selector1 OK, selector2 OK
DMARC: v=DMARC1; p=none; rua=mailto:dmarc@example.com (WARN: policy=none, no enforcement)
Risk: HIGH - p=none with ~all allows email spoofing

Info

Category Development

Name implementing-email-security-with-dmarc-dkim-spf

Version v20260317

Size 9.28KB

Source mukul975/Anthropic-Cybersecurity-Skills

Updated At 2026-03-18