For IT & domain administrators

See Who Sends Email
As Your Domains

You manage the domains. You should know what's happening on them. Ray gives you continuous visibility into SPF, DKIM, and DMARC across every domain and subdomain in your organization.

Full protocol coverage API and MCP server included Multi-org access control
View Pricing Ray is currently invite-only. Request access
example.com
Passing
SPF, DKIM, DMARC all aligned and enforcing
shop.example.com
DKIM Warning
Shopify DKIM selector using 1024-bit key
legacy-brand.com
No DMARC
Domain has no DMARC policy published

Beyond Passive Monitoring

Most DMARC tools just ingest aggregate reports and show you what already happened. That's useful, but it only covers domains you've already configured to send reports. It tells you nothing about domains with no DMARC policy, subdomains you've forgotten about, or DNS records that drifted since last quarter.

Ray combines active DNS analysis with DMARC report processing. It continuously checks your SPF, DKIM, DMARC, MTA-STS, and TLS-RPT records across all your domains and subdomains. When something changes or breaks, you know immediately, not when a ticket comes in about bounced email.

For IT teams managing dozens or hundreds of domains across business units, acquisitions, and legacy brands, the difference between reactive and proactive monitoring is the difference between firefighting and operations.

Built for IT Operations

Domain and email authentication monitoring designed for the people who manage the infrastructure.

Domain Intelligence

DNS analysis across all your domains, including SPF, DKIM, DMARC, MTA-STS, TLS-RPT, and BIMI. One dashboard for every domain your organization owns, regardless of registrar or DNS provider.

Subdomain Discovery

Automatic detection of subdomains sending email as your domain. Covers subdomains you set up intentionally and ones you've forgotten about. A domain in Ray includes all of its subdomains.

SPF/DKIM/DMARC Monitoring

Continuous validation of your authentication records. Detect configuration drift, SPF lookup overflows, and policy changes before they cause delivery failures.

API & MCP Server

Full REST API and Model Context Protocol server for AI agent integration. Automate checks, pull data into your scripts and runbooks, or let your AI tools query domain status directly.

Alerting

Slack, email, and webhook notifications that fit into your existing ops workflows. Get alerted when records change, authentication starts failing, or a new unauthorized sender appears on your domain.

TLS-RPT & Hosted MTA-STS

TLS-RPT report processing shows when mail servers fail to establish secure connections to your domains. Hosted MTA-STS lets Ray publish and manage your MTA-STS policy, enforcing TLS for inbound email without running your own web server.

Multi-Org Access Control

Organizations with member, admin, and owner roles, backed by DNS-based domain verification. Delegate access to business units or clients without sharing credentials. Available on every plan.

Ready to see what's happening on your domains?

Ray is currently invite-only. Request access to get started.

Request Access