ESC

Email and Deliverability

The DNS Toolkit can validate email addresses, check sender policy records, and audit whether a domain is set up correctly for modern email security and deliverability.

Common email endpoints

Endpoint Purpose
GET /v1/email-validate Validate an email address and mail domain
GET /v1/email-security Full SPF, DMARC, DKIM, BIMI, TLS-RPT, and MTA-STS audit
POST /v1/email-auth Validate SPF, DKIM, and DMARC from raw headers
GET /v1/disposable Detect temporary or throwaway email domains
GET /v1/generate Generate SPF, DMARC, BIMI, and related records

Python SDK examples

Validate an email address

from toolkitapi import DNS

with DNS(api_key="tk_...") as dns:
    result = dns.email_validate("[email protected]")
    print(result)

Full email security audit

from toolkitapi import DNS

with DNS(api_key="tk_...") as dns:
    audit = dns.email_security("toolkitapi.io")
    print(audit)

Validate message authentication from raw headers

from toolkitapi import DNS

raw_headers = """Received: from mail.toolkitapi.io\nFrom: [email protected]\nDKIM-Signature: ..."""

with DNS(api_key="tk_...") as dns:
    result = dns.email_auth(raw_headers)
    print(result)

Disposable domain detection

from toolkitapi import DNS

with DNS(api_key="tk_...") as dns:
    result = dns.disposable("mailinator.com")
    print(result)

What the audit checks

The email-security endpoint checks the protocols most teams care about in production:

  • SPF
  • DMARC
  • DKIM
  • BIMI
  • TLS-RPT
  • MTA-STS

For email_auth, send the full raw header block exactly as copied from the message source. The live API reference remains the source of truth for the current request format and response schema.

What the audit checks

The email-security endpoint checks the protocols most teams care about in production:

  • SPF
  • DMARC
  • DKIM
  • BIMI
  • TLS-RPT
  • MTA-STS

For email_auth, send the full raw header block exactly as copied from the message source. The live API reference remains the source of truth for the current request format and response schema.

Jump straight to live tools

  • https://dns.toolkitapi.io/tools/email-validate/
  • https://dns.toolkitapi.io/tools/email-security/
  • https://dns.toolkitapi.io/tools/email-auth/
  • https://dns.toolkitapi.io/tools/disposable/
  • https://dns.toolkitapi.io/tools/generate/

Typical checks

  • verify DMARC policy before launching outbound campaigns
  • inspect SPF includes for vendor sprawl
  • reject throwaway signups in onboarding flows
  • validate incoming message headers for phishing investigations
Previous
Domain Intelligence
Next
Security & Certificates