All email hardening aspects in one suite

The Mailhardener email hardening suite gives a full overview of the email security status of a domain.

The following email hardening standards are supported

  • SPF (rfc7208)
  • DKIM (rfc6376) incl. upcoming DKIM2
  • DMARC reporting (rfc7489) incl. upcoming DMARCbis
  • SMTP TLS reporting (rfc8460)
  • MTA-STS (rfc8461) (incl. MTA-STS policy hosting)
  • BIMI (incl. BIMI asset hosting)
  • DANE / TLSA (rfc7671, rfc7672)
  • DNSSEC (with chain validation)
Screenshot of the Mailhardener domain overview page
The domain overview shows you the hardening status of your domain.

DMARC reporting

The DMARC reporting feature gives insight into all emails being sent using your domain name in the sender address.

This includes the email sent from your email server, and third parties such as your marketing platform, billing system and reporting tools, but also unauthorized senders such as spammers or fraudsters.

The unique Mailhardener self-learning algorithm is the first to accurately distinguish forwarding email services from malicious senders, which greatly reduces false positives.

Screenshot of the Mailhardener email monitoring feature
DMARC reports show you every email sender using your domain name.

SMTP TLS reporting

Mailhardener is one of the first to offer fully featured SMTP TLS reporting using the SMTP TLS reporting standard.

This will give insight into TLS failures encountered by SMTP services attempting to deliver email to your domain.

Mailhardener will aggregate, enrich and analyze SMTP TLS reports and automatically warn you about any problems that are reported by email senders.

Screenshot of the Mailhardener TLS reporting feature
The SMTP TLS reports are aggregated and displayed in the Mailhardener dashboard.

MTA-STS policy hosting

MTA-STS is an email security standard that mitigates DNS based attacks where attackers could read or manipulate email addressed to your domain.

Deploying MTA-STS can be challenging for organizations due to its strict implementation requirements. To overcome this, Mailhardener offers hosted MTA-STS services that allows any domain to adopt MTA-STS in less than 5 minutes, with zero maintenance.

Screenshot of instant policy change feature of hosted MTA-STS
Hosted MTA-STS allows for instant policy changes.

BIMI asset hosting

BIMI is an upcoming email standard that allows organizations to improve their branding in email communication, which improves recognizability. It is like verified accounts, but for email.

Deploying BIMI can be challenging for organizations due to its strict implementation requirements. To overcome this, Mailhardener offers BIMI asset hosting services that allows any domain to adopt BIMI in less than 5 minutes, with zero maintenance.

Screenshot of instant policy change feature of hosted MTA-STS
Mailhardener BIMI asset hosting in action.

DNS change monitoring

Reports show that many high impact fraud cases were possible due to unauthorized changes made to domain settings (DNS).

Mailhardener will monitor all email related DNS features, and notify you when a change is detected.

The notification will also give you a breakdown of what difference the change will make to your email protection.

Screenshot of email indicating a detected DNS change
Example of an email notification when a DNS change is detected.

Report breakdown

There is more than one way to prevent unauthorized email, and many reasons why a receiving system might decide to accept or reject your email.

The report analysis tool gives you a breakdown in easy to understand English of how the receivers processed the email and why it did or did not accept the email.

Screenshot of a report breakdown
The DMARC report breakdown explains the report details in plain English.

Domain inspector

Most of the email fraud prevention is set up in your domain settings, so naturally this is an important part to get right.

There are many settings though, and even more subtle ways in which configuration mistakes can be made.

The Mailhardener domain inspector will show you exactly how your domain is set up, with easy to read English breakdown.

It also detects commonly made mistakes, so you don't accidentally make them.

Screenshot of the Mailhardener domain inspector
A breakdown of a DMARC record, explaining each setting in plain English.

Multi-tenant and IAM

All paid tiers of Mailhardener allow multi-tenant use and IAM. This allows organizations and MSPs to provide access to a selected set of features and domains for their clients.

Screenshot showing the 'add team member' modal with user roles
Team members can be restricted in access

Multi-team & Auditor access

Mailhardener accounts can be used to manage more than one organization, and allows for seamless switching between organizations with a single login.

All paid tiers of Mailhardener are auditable by providing read-only access to all, or a subset of domains.

Screenshot showing team selector for multi-team access
Seamlessly switch between teams using a single account

Start using Mailhardener today

Mailhardener can be evaluated, or used for non-commercial purposes, for free!

Mailhardener does not require installation of software, and you retain your current email hosting services. Mailhardener is like a plugin for a domain.

You can start using Mailhardener immediately, it takes only a few minutes to set up.