Scanning domains

Scan a single domain

cymail scan --domain example.com

Output includes:

SPF record analysis
DKIM selector probing
DMARC policy evaluation
MTA-STS / TLS-RPT presence
MX record resolution
Overall score (0-100) and letter grade
Specific recommendations for improvement

Bulk scanning

Scan multiple domains from a file (one domain per line):

cymail bulk --file domains.txt

Output formats

# JSON output
cymail scan --domain example.com --format json

Example JSON output:

{
  "domain": "example.com",
  "score": 82,
  "grade": "B",
  "checks": {
    "spf": { "status": "pass", "record": "v=spf1 include:_spf.google.com ~all", "score": 18 },
    "dkim": { "status": "pass", "selectors_found": ["google", "selector1"], "score": 20 },
    "dmarc": { "status": "warn", "policy": "none", "score": 10, "recommendation": "Upgrade DMARC policy from 'none' to 'quarantine' or 'reject'" },
    "mta_sts": { "status": "fail", "score": 0 },
    "tlsrpt": { "status": "fail", "score": 0 }
  },
  "mx_records": ["alt1.aspmx.l.google.com", "aspmx.l.google.com"]
}

Platform integration

Cymail is used by the platform's M365 Security and email security scans. When run through the platform, results are stored in the findings database and tracked over time to show posture improvement.

Scan a single domain​

Bulk scanning​

Output formats​

Platform integration​

Scan a single domain

Bulk scanning

Output formats

Platform integration