AnswerCite Email Fail Simulator
Watch your domain get spoofed - then fix it with evidence.
We replicate the exact steps an attacker takes - recon → spoof → inbox - using your live DNS posture.
Then we generate an
Everything runs locally in your browser using DNS‑over‑HTTPS.
You can export the raw evidence we used - nothing hidden, nothing stored.
Toggle it on to expand the simulated playbook into tactics,
edge‑cases, and how an attacker would actually try it -` without changing the underlying scan.
Everything runs in your browser & you can export the raw evidence we used.
Advanced
Advanced
Evidence bundle
Export the raw DNS queries and responses used for this simulation.
Advanced
How it works
1) Pull posture
We check DMARC, SPF, DKIM (heuristic), MTA‑STS and TLS‑RPT via public DNS-over-HTTPS.
This gives us your live email‑trust posture with no login, no tracking, and no data stored.
2) Simulate failure
We model how a forged ceo@yourdomain would behave based on your current policies & estimate its likely inbox land‑rate across major providers.
This is a standards‑based simulation, not real deliverability testing.
3) AnswerCite
For every weakness we find, you get:
- a precise DNS fix,
- cited references from the relevant standards &
- a downloadable evidence bundle you can hand straight to stakeholders.
Turn the simulation into reality
Vigo’s Email Trust Cleanup tightens SPF, DKIM, DMARC and basic transport controls so your domain is harder to spoof and easier to manage.
Fastest win if spoofing, phishing, or deliverability is on your mind.