Guardian AI

Your DMARC Reports, Explained in Plain English

Guardian AI reads every DMARC report the moment it arrives, identifies what's failing and why, and tells you exactly what to fix — in language anyone on your team can act on.

Try Guardian AI FreeSee Live Demo
<30s
to plain-English breakdown
94%
issues identified before delivery impact
10×
faster than reading raw XML
24/7
monitoring with proactive alerts
The Problem

DMARC Data Is Valuable. DMARC Reports Are Unreadable.

Every inbox provider sends you daily reports about email sent from your domain. Inside those reports is critical intelligence: who's sending as you, what's passing authentication, and what's being spoofed.

The problem? Those reports arrive as raw XML — dense, technical, and designed for machines. Most teams either:

Ignore themAnd miss spoofing attempts until it's too late
Pay consultantsThousands per month to translate XML into action
Build internal toolsWeeks of engineering time for basic visibility
Guardian AI changes that.
Ask in plain English. Get answers in plain English.

Ask a question in plain English, get an answer in plain English — with the exact fix you need. No XML parsing. No DMARC certification. No engineering time.

No XML parsing required
No DMARC certification needed
Answers in seconds, not hours
Live Demo

Ask Guardian AI Anything About Your Domain

Guardian AI has full context of your sending sources, report history, and authentication configuration. You just ask the question.

Why are Salesforce emails failing?Show me all unknown senders this weekWhat do I need to fix before moving to p=reject?Is anyone spoofing my domain?

Guardian AI

yourcompany.com · report received 4 min ago

Active
Why are some of our emails failing DMARC this week?
I can see 3 sources of DMARC failures in your reports this week:

1. Salesforce CRM — 847 emails failed SPF alignment. Your SPF record doesn't include Salesforce's sending IP range.

2. Unknown IP 91.198.174.0/24 — 312 emails were sent claiming to be from your domain. These appear to be spoofing attempts.

3. Mailchimp — 44 failures because DKIM is not enabled on your connected domain.

Want me to walk you through fixing each one?
Yes, fix the Salesforce one first.
Add `include:_spf.salesforce.com` to your SPF record.

Your current record:
v=spf1 include:_spf.google.com include:sendgrid.net ~all

Updated record:
v=spf1 include:_spf.google.com include:sendgrid.net include:_spf.salesforce.com ~all

Publish this as a TXT record on your root domain. I'll alert you once the failures stop.
Ask a question about your DMARC data…

Create an account to use Guardian AI on your domain →

Capabilities

What Guardian AI Does

Natural Language Queries

Type questions in plain English and get instant, accurate answers. "Why are emails from our CRM failing?" — Guardian AI knows your data and answers immediately.

Which senders aren't DKIM-aligned?

Report Summaries

Every aggregate report summarised automatically in human-readable format. No technical knowledge required — just a clear picture of what's happening.

You received 12,430 emails yesterday. 94% passed. 412 failed — here's why.

Proactive Threat Alerts

Real-time monitoring that alerts you the moment something changes — a new sender appears, failures spike, or a source that was passing starts failing.

Unknown IP 185.220.101.45 sent 340 emails claiming to be from your domain.

Exact Fix Instructions

Every issue comes with a precise, actionable fix. Actual DNS records to add, tailored to your specific configuration — not vague recommendations.

Add include:_spf.salesforce.com to your SPF record. Here is the full updated record.

Health Score Tracking

Guardian AI tracks your DMARC pass rate over time and shows you the impact of every change you make — so you can measure progress.

Your pass rate has improved from 71% to 94% over the last 30 days.

Sender Source Identification

Automatic mapping of all sending services — Google Workspace, SendGrid, Mailchimp, your CRM — with authentication status per sender and known vs unknown classification.

8 sending sources detected. 6 aligned. Mailchimp and your CRM need DKIM configured.

Process

How Guardian AI Works

01

Connect your domain

Add your DMARClytics reporting address to DNS. Reports start arriving from Gmail, Microsoft, Yahoo, and hundreds of other providers immediately.

02

Guardian AI reads every report

As reports arrive, Guardian AI parses the XML, identifies every sending source, and maps pass/fail results across your entire sender landscape.

03

Issues are automatically surfaced

Guardian AI correlates data across all reports, identifies patterns, and flags failures — misconfigurations, spoofing attempts, alignment problems.

04

Ask questions or read your daily summary

Chat with Guardian AI to investigate specific issues, or read your automated daily brief — everything that happened on your domain in the last 24 hours, in plain English.

Built for Teams Without DMARC Expertise

IT Teams

Get answers without learning DMARC syntax

You don't need to know what "aspf=r" means. Ask Guardian AI "why are marketing emails failing?" and get a plain-English answer with the exact fix.

  • No XML parsing required
  • No DMARC certification needed
  • Answers in seconds, not hours
Marketing & Email Teams

Fix deliverability issues before campaigns launch

Ask Guardian AI "is Mailchimp properly authenticated?" before your next send. Get a clear yes/no with remediation steps if needed.

  • Pre-campaign health checks
  • ESP configuration validation
  • Deliverability impact visibility
Agencies & MSPs

Answer client questions instantly

When a client asks "why are our emails going to spam?", you can answer in real-time — not after hours of report analysis.

  • Instant client-facing answers
  • Multi-domain context
  • White-label ready summaries

Not Another Dashboard. A Conversation.

Traditional Tools
Guardian AI
Report format
Charts and tables
Natural language conversation
Time to insight
Hours of analysis
Seconds
Technical requirement
DMARC expertise needed
No expertise required
Fix guidance
"SPF failed" (figure it out)
Copy-paste DNS records
Proactive alerts
Email digests
Real-time with context
Learning curve
Weeks
Minutes

Common Questions

Do I need to know anything about DMARC to use Guardian AI?

Not at all. You can ask questions in plain English and Guardian AI handles all the technical interpretation. Most users get meaningful insights within minutes of connecting their domain.

How does Guardian AI identify my sending services?

It analyses IP addresses and signing domains in your DMARC aggregate reports and cross-references them against a database of known email service providers — automatically identifying Google Workspace, SendGrid, Mailchimp, Salesforce, and hundreds of others.

How is this different from reading the reports myself?

DMARC aggregate reports are XML files containing raw IP addresses and policy codes — designed for machines, not people. Guardian AI parses all of that, correlates it with threat intelligence, and presents a clear summary with an action list. What takes hours manually takes seconds.

Will Guardian AI make DNS changes on my behalf?

No. Guardian AI tells you exactly what to change and provides the precise records to add, but all DNS changes are made by you. This gives you full control and a clear audit trail.

Which plans include Guardian AI?

Guardian AI is available on Professional and Agency plans. The Starter plan includes a limited weekly AI summary. See the pricing page for details.

How quickly does Guardian AI respond to questions?

Most queries are answered in under 30 seconds. Complex analyses that require correlating multiple reports may take slightly longer.

Can Guardian AI help me get to p=reject safely?

Yes. Ask Guardian AI "what do I need to fix before moving to p=reject?" and it will show you every sender that would be affected, with prioritised remediation steps.

Does Guardian AI work with forensic (RUF) reports too?

Yes. Guardian AI processes both aggregate (RUA) and forensic (RUF) reports, giving you both high-level trends and detailed failure analysis.

Part of the DMARClytics Platform

Guardian AI is built into every DMARClytics dashboard. It has full context of your domains, senders, and report history — making every answer accurate and specific to your configuration.

DMARC Management

Full aggregate report analytics, sender mapping, and guided enforcement workflows.

Domain Lookalike Detection

Find domains impersonating your brand before they reach your customers.

Spam & Inbox Testing

Test deliverability and spam score before you send, not after.

Stop Guessing. Start Knowing.

Connect your domain in 2 minutes and let Guardian AI tell you exactly what's happening with your email authentication — right now.

Get Started FreeExplore the Platform

No credit card required · Free plan available · Setup in under 5 minutes