GoIPScan

Fast, private, accurate IP lookup

GoIPScan Tools Email Header Analyser

๐Ÿ“ง Email Header Analyser

Paste the full raw headers from any email to trace the delivery route, extract IPs, check SPF/DKIM/DMARC authentication, and spot suspicious behaviour. Everything runs in your browser โ€” headers are never sent to our servers.

โš‘ Findings & Warnings

๐Ÿ” Email Authentication

๐Ÿ›ค๏ธ Delivery Route

๐Ÿ“‹ Key Headers

How to Get Raw Email Headers

Gmail

Open the email โ†’ click the three-dot menu (โ‹ฎ) in the top right โ†’ Show original. Copy everything from the top of the page down to the blank line before the email body.

Outlook / Office 365

Open the email โ†’ click File โ†’ Properties. The headers are in the "Internet headers" box at the bottom. Or in Outlook on the web: open the message โ†’ three-dot menu โ†’ View โ†’ View message source.

Apple Mail

Open the email โ†’ go to View โ†’ Message โ†’ All Headers (or press Shift+Cmd+H). Select all and copy.

What Are SPF, DKIM, and DMARC?

SPF (Sender Policy Framework) โ€” checks whether the sending mail server's IP is authorised to send on behalf of the domain in the From address. A fail suggests possible spoofing.

DKIM (DomainKeys Identified Mail) โ€” a cryptographic signature verifying the email hasn't been tampered with in transit and was sent by an authorised server for that domain.

DMARC (Domain-based Message Authentication) โ€” ties SPF and DKIM together. It tells receiving mail servers what to do if either check fails โ€” reject, quarantine, or do nothing.

Concerned about email privacy?

What Websites See About You Compare VPNs โ†’