Can DMARCly help with SPF flattening?

Yes, DMARCly offers a feature called Safe SPF, which helps manage and overcome the 10-lookup limit imposed by SPF records. This is included in their Growth and higher plans.

Is the Splunk TA-DMARC add-on officially supported?

No, the Splunk TA-DMARC add-on is explicitly listed as "Not Supported" and "archived." This means there is no official support from the developer, and users are responsible for maintenance and troubleshooting.

Which product is better for an organization new to DMARC?

DMARCly is generally better for organizations new to DMARC. Its user-friendly interface, guided setup, and dedicated support make the DMARC journey much more accessible. The Splunk add-on requires significant Splunk expertise.

Can DMARCly monitor multiple domains?

Yes, DMARCly supports monitoring multiple domains. The number of domains you can monitor depends on your chosen plan, with the Enterprise plan allowing for up to 200 domains.

What are the costs associated with the Splunk TA-DMARC add-on?

The add-on itself is free under the MIT License. However, you will incur costs for a Splunk instance, which is required for the add-on to function. These costs vary based on your Splunk licensing model.

DMARCly vs Splunk TA-DMARC add-on

Choose DMARCly for comprehensive features, choose Splunk for integration into an existing Splunk environment.

0 / 5(0)

Compare to Suped

0 / 5(0)

Compare to Suped

Compare product functionality

Feature set

DMARCly provides a robust and all-encompassing suite of DMARC reporting and management features. We found its dashboard to be quite comprehensive, presenting aggregate and forensic reports with clear visualizations. It excels in automatic subdomain detection, email vendor identification, and IP reputation monitoring, which are crucial for maintaining sender integrity.

Beyond core DMARC, DMARCly includes advanced features like BIMI, MTA-STS/TLS-RPT implementation assistance, and a DMARC/SPF/DKIM checker. We appreciate the integration of domain blocklist monitoring and adaptive blocklist monitoring, which are vital for proactive deliverability management. The platform also offers Safe SPF for managing SPF limits.

The Splunk TA-DMARC add-on is designed to integrate DMARC reporting data directly into an existing Splunk environment. Its primary function is to ingest DMARC aggregate XML reports and transform them into Splunk-searchable data. This means that its feature set is largely dependent on Splunk's capabilities for data analysis, visualization, and alerting.

While the add-on itself is quite lean, focusing purely on data ingestion and normalization, it allows Splunk users to leverage their existing security information and event management (SIEM) infrastructure for DMARC monitoring. We see its value primarily in organizations already heavily invested in Splunk, as it doesn't offer standalone DMARC-specific features like hosted DMARC or BIMI without custom Splunk development.

How easy is each product to use

User experience

DMARCly offers a clean, intuitive web interface that simplifies DMARC report analysis. From our experience, navigating through its various reports, GeoMaps, and historical data is straightforward. The setup process for DMARC records is guided, making it accessible even for those new to DMARC.

The dashboard provides actionable insights at a glance, highlighting potential issues and offering recommendations. We found the alert configuration easy to manage, ensuring we were promptly notified of any DMARC non-compliance or unusual activity. Overall, the user experience is designed for efficiency and clarity.

The Splunk TA-DMARC add-on, by nature, requires familiarity with the Splunk platform. Its user experience is inherently tied to Splunk's own interface and query language (SPL). Installing the add-on is a standard Splunk procedure, but configuring data inputs and building dashboards requires Splunk expertise.

For users already proficient in Splunk, integrating DMARC data feels like an extension of their existing workflow. However, for those without a strong Splunk background, the learning curve can be steep. We would classify its user experience as 'Splunk-native,' meaning it's excellent for Splunk users but challenging for others.

Which product has the best support

Support

DMARCly provides structured support channels that scale with its plans. We've experienced their email support and live chat options, finding responses to be timely and informative. The documentation is thorough, covering common setup questions and troubleshooting steps.

For higher-tier plans, live chat is available, offering quicker resolution to urgent issues. This tiered approach ensures that users get appropriate levels of assistance, which is a significant advantage for businesses relying on consistent email deliverability.

A critical point for the Splunk TA-DMARC add-on is its support status. It's explicitly listed as "Not Supported" and "archived." This means there is no official developer support available, which can be a considerable drawback for production environments.

Users are responsible for any troubleshooting, maintenance, or customization. While the open-source nature (MIT License) allows for community contributions, relying on unofficial channels for critical email security infrastructure is a risk we would highlight. We strongly advise considering this lack of support before deployment.

Who should use each product

Suitability

DMARCly is highly suitable for a wide range of organizations. For SMBs, its affordable professional and growth plans offer essential DMARC monitoring without overwhelming complexity. For MSPs, the ability to manage multiple domains and users, along with customizable reporting, makes it an attractive option.

Enterprise clients will appreciate its comprehensive features, API access, SSO integration, and scalability to monitor hundreds of domains and millions of messages. Its dedicated focus on DMARC makes it a strong contender for any organization prioritizing email security and deliverability with a managed service.

The Splunk TA-DMARC add-on is best suited for organizations that already have a significant investment in Splunk infrastructure and the internal expertise to manage it. It's ideal for enterprises looking to centralize all their security logs, including DMARC data, within Splunk for correlation with other security events.

It is less suitable for SMBs or MSPs looking for a standalone DMARC solution, as it lacks a user-friendly interface or dedicated support. While technically feasible for MSPs with Splunk expertise, the 'archived' status and lack of support make it a risky choice. We wouldn't recommend it for those who aren't already Splunk power users.

How does DMARCly compare with Splunk TA-DMARC add-on?

DMARC report analysis

Analyzes DMARC aggregate and forensic reports.

Comprehensive dashboard and visualizations

Ingests data for Splunk analysis

Source detection

Identifies legitimate and illegitimate email sending sources.

Automated vendor identification

Requires Splunk queries and dashboards

Forward detection

Ability to detect email forwarding that impacts DMARC compliance.

Assists with forwarding insights

Data available for custom Splunk analysis

Spoof detection

Identifies attempts to spoof your domain.

Clear visualization of threats

Requires Splunk expertise for detection logic

Notifications and alerts

Provides alerts for DMARC failures or policy changes.

Customizable alerts

Leverages Splunk alerting framework

Reporting

Generates various DMARC compliance and deliverability reports.

Pre-built, detailed reports

Customizable within Splunk

API

Offers an API for programmatic access to data and features.

Available on Enterprise plan

Relies on Splunk API

Multi-tenancy

Supports managing multiple domains or clients from a single account.

Domain groups and user access control

Requires complex Splunk setup

SPF flattening

Helps manage SPF lookup limits (Safe SPF).

Included in Growth+ plans

Not a core feature

Hosted DMARC

Provides hosted DMARC services or record management.

Direct DMARC management

Add-on only for reporting

BIMI

Supports Brand Indicators for Message Identification (BIMI).

BIMI record setup assistance

No native BIMI support

MTA-STS/TLS-RPT

Assistance with MTA-STS and TLS-RPT implementation.

Tools for setup

No native support

Blocklists and reputation

Monitors domain reputation and blocklist (blacklist) status.

Domain and adaptive blocklist monitoring

Not a native feature

AI copilot

Uses AI to assist with DMARC management.

Not available

DNS monitoring

Monitors DNS records for changes affecting email security.

DNS timeline feature

Not a native feature

Self hostable

Ability to host the solution on your own infrastructure.

Cloud-based SaaS

Runs on your Splunk instance

Free trial/free tier

Offers a free trial or a free usage tier.

14-day free trial

Free to download

Drawbacks and what to watch out for

When considering drawbacks, DMARCly's tiered pricing model can lead to unexpected charges if email volume or domain count exceeds plan limits, potentially forcing users into higher-cost plans. For Splunk TA-DMARC, the major drawbacks are its 'archived' and 'not supported' status, meaning no official updates or assistance, which is a significant concern for critical infrastructure.

We have pulled the average ratings from G2 for each product, and also included the most recent negative reviews for each product in full. Positive reviews tend to have less detail and have a higher chance of being fraudulent, so negative reviews are a better signal for your decision.

0 / 5(0)

Pricing

DMARCly offers clear, tiered subscription plans based on domain and email volume, whereas Splunk TA-DMARC is free, but its total cost hinges on your existing Splunk licensing and operational expenses.

Small

Up to 10k emails / month

$17.99/month (100k messages)

Free (requires Splunk)

Medium

Up to 100k emails / month

$17.99/month

Free (requires Splunk)

Large

Up to 1 million emails / month

$69/month

Free (requires Splunk)