HeaderScope.com

See what email headers reveal

Analyze Email Headers for Security & Authenticity

HeaderScope analyzes email headers to verify sender authenticity, detect spoofing attempts, and trace the email's journey through mail servers. Our tool checks SPF, DKIM, DMARC authentication, spam scoring, routing paths, and transport security - headers you paste are processed locally in your browser.

How to Get Email Headers•What We Check & Why

Paste Email Headers

Paste headers to get started

Copy the headers from a suspicious email and paste them above to see what they reveal about the message's journey.

Try PhishCheck Free - Get Definitive Answers in 30 Seconds

While headers show routing and authentication claims, PhishCheck analyzes the actual email content to detect threats that headers alone can't reveal - including following every link, analyzing landing pages, detecting fake login pages, and identifying credential harvesting attempts.

Link Following & Landing Page Analysis

Automatically visits all links to detect fake login pages, credential harvesting forms, and malicious downloads

Instant Verdict in 30 Seconds

Get clear SAFE, SUSPICIOUS, or PHISHING classification with detailed explanation of all threats found

Brand Impersonation Detection

Identifies fake Microsoft, Google, PayPal, and banking login pages designed to steal your credentials

Attachment & Malware Scanning

Scans attachments for viruses, ransomware, and malicious macros - no need to risk opening them yourself

Start Your Free Trial

Simply forward suspicious emails to this address:

phish@check.craigpeterson.com

💡 Add PhishCheck to your contacts to easily forward suspicious emails for analysis

🎉 100 Free Checks During Alpha

No signup • No credit card • No obligation

Trusted by IT security teams worldwide • Headers analyzed locally, forwarded emails processed on our servers and may be retained for testing and improvements • Privacy details

Why HeaderScope?

The most comprehensive free Email Header Analyzer available.

HeaderScope is the leading email header analysis tool trusted by IT professionals, security teams, and individuals worldwide to understand email authenticity and routing.

Email Security Resources

Reference Guides

Action Guides

Phishing Attack Types

Interactive Tools

Learning & Training

Professional Guides

What HeaderScope Analyzes

Email Authentication: SPF, DKIM, and DMARC verification results from mail servers
Mail Routing: Complete delivery path showing every server that handled your email
Anti-Spam Headers: Microsoft Exchange, Office 365, and generic spam filter results
Delivery Timing: Precise timestamps and delays between mail server hops
Sender Information: From addresses, reply-to addresses, and return paths

Privacy-First Header Analysis

HeaderScope processes email headers locally in your browser. Headers you paste here never leave your device.

No server uploads of pasted headers
No account required
No tracking cookies
Client-side parsing only

Note: Emails forwarded to PhishCheck are processed on our servers and may be retained. Details

Perfect For:

IT Security Teams: Investigating suspicious emails and phishing attempts
Email Administrators: Troubleshooting delivery issues and authentication problems
Compliance Officers: Verifying email security configurations
Individual Users: Checking if an email is legitimate before clicking links