Paste raw email headers or upload a .eml file to extract key fields, identify the likely originating IP, and review SPF/DKIM/DMARC verdicts from Authentication-Results. All analysis runs locally in your browser.
Need an example?
Load a clean header or a phishing-like header to see what the analyzer detects.
All parsing is performed locally in your browser. Do not paste sensitive content beyond headers.