Email Header Inspector
Paste email headers and review sender, reply-to, authentication, and routing signals.
How to use the Email Header Inspector
Paste the full original message or full email headers, not just the visible email body, when you can.
Do not paste passwords, private documents, or sensitive attachments. The header text is processed locally in your browser.
How to use it
What results mean
What to do next
Provider instructions
Provider wording can vary. Look for full headers, original source, raw message, message source, or view details.
Zoho Mail
Outlook / Microsoft 365
Yahoo Mail
Apple Mail / other apps
Your pasted headers stay in your browser. CheckLink does not receive or store the email header text.
Do not paste passwords, private documents, or sensitive attachments.
Header summary
Header signals can be forged, missing, or modified. Use this as context, not proof.
Signals found
Authentication-Results header was not found
CautionThe pasted header does not include a mail-system summary for SPF, DKIM, or DMARC. The original message may be incomplete, or the provider may use different wording.
Next step: Paste the full original message if possible. If you only have the visible body, use Email Link Inspector to review links instead.
How to read this result
FAQ
What are email headers?
Headers are metadata that can show sender fields, routing information, and authentication results.
Does CheckLink upload my headers?
No. This inspector parses pasted header text locally in your browser.
What are SPF, DKIM, and DMARC?
They are email authentication mechanisms that help receiving systems evaluate whether a message aligns with a domain's sending rules.
Does a failed check prove phishing?
No. It is a caution signal that needs context and may deserve manual review.