Valimail excels in offering a highly automated approach to DMARC enforcement. Their platform is designed to identify all email sending services by name, providing granular visibility and control over authorized and unauthorized email traffic. We found its primary strength lies in its ability to streamline the path to DMARC enforcement, often claiming to achieve it in 60 days or less.
Key features include automated SPF and DKIM alignment, a comprehensive dashboard for monitoring DMARC compliance, and advanced threat detection capabilities for phishing and impersonation. Valimail also supports BIMI, offering tools to help organizations secure Google's blue checkmark and enhance brand trust in the inbox.
DMARC360, as part of the broader CTM360 platform, provides robust DMARC reporting and management capabilities, integrated within a larger digital risk protection suite. While explicit details for DMARC360's unique features are less granular than Valimail's, its strength comes from its comprehensive threat intelligence framework.
We observed that DMARC360 is geared towards providing external attack surface management and brand protection beyond just DMARC. This includes features like dark web monitoring, anti-phishing, and takedown services, which implicitly enhance DMARC's effectiveness by addressing related cyber threats. The platform’s detection mechanisms are strong, offering detailed insights into various cyber risks.
User experience
How easy is each product to use
User experience
Valimail generally offers a user-friendly interface that simplifies complex DMARC data into actionable insights. We found the setup process to be straightforward, and the dashboards are designed to provide clear visibility into email sending activity and compliance status. The automation aspects significantly reduce manual effort, making DMARC management less daunting.
However, some users have noted that certain advanced features or detailed drill-downs can be less intuitive or require a learning curve. While the core DMARC monitoring and enforcement are very accessible, navigating deeper into specific failure reports or less common configurations might take a bit more time to master.
DMARC360, as part of CTM360, is noted for its user-friendly platform, especially concerning its broad digital risk protection features. The dashboards offer comprehensive visibility into external digital assets and threats, making it easier for teams to prioritize and resolve security risks. The overall interface is organized, providing clear insights into various security aspects.
From our experience, while the platform is generally easy to use, its extensive feature set can lead to a steeper learning curve for new users, particularly those primarily focused on DMARC and not the broader security suite. Some reports might also benefit from more contextual detail or customizable filtering to enhance efficiency in triaging specific DMARC-related issues.
Support
Which product has the best support
Support
Valimail consistently receives high marks for its customer support. Users frequently highlight the team's responsiveness, professionalism, and helpfulness during onboarding and ongoing inquiries. We've seen feedback praising their ability to simplify complex DMARC concepts and provide effective guidance.
While overall support is strong, a few mentions suggest that accessing support for certain niche issues or during specific regional hours might pose minor challenges. For example, some non-US users noted operational hours differences. Nonetheless, the dedicated account management and onboarding assistance offered in paid tiers are significant advantages.
DMARC360, through the CTM360 team, is praised for its highly responsive and professional support. Users commend the team for their proactiveness, deep understanding of business needs, and swift resolution of issues, including takedowns and custom requests. Their support model appears to be a significant strength of the platform.
We found the support team to be knowledgeable and consistently available, often described as a true cybersecurity partner. This level of engagement is crucial, especially when dealing with advanced threat detection and remediation that goes beyond standard DMARC monitoring. Their willingness to adapt solutions to unique environments is also a notable plus.
Suitability
Who should use each product
Suitability
Valimail is an excellent choice for organizations of all sizes, from SMBs to large enterprises, particularly those looking for automated DMARC enforcement without extensive manual configuration. Its free 'Monitor' plan makes it accessible for small businesses just starting their DMARC journey, while its 'Enforce' and 'Align' products cater to more complex needs.
It's also suitable for MSPs who need a streamlined solution for managing DMARC across multiple client domains, though the cost structure might be a consideration for high volumes. Its focus on DMARC, SPF, and DKIM automation makes it ideal for companies prioritizing email authentication and brand protection against phishing and spoofing attacks.
DMARC360 (part of CTM360) is particularly well-suited for mid-market and enterprise organizations that require a holistic digital risk protection strategy alongside DMARC. Its comprehensive suite of services, including external attack surface management, brand protection, and dark web monitoring, makes it valuable for entities with a broad digital footprint and a higher risk profile, such as those in finance or government.
For MSPs, the integrated platform could offer a centralized solution for managing various security aspects for their clients. SMBs might find the 'Community Edition' useful for basic DMARC monitoring, but the full breadth of CTM360's offerings is more beneficial for larger organizations with the resources to leverage its advanced threat intelligence and response capabilities.
How does Valimail compare with DMARC360?
DMARC report analysis
Aggregating and interpreting DMARC aggregate (RUA) reports.
Source detection
Identifying all legitimate and unauthorized email sending sources.
Forward detection
Detecting legitimate email forwarding that may affect DMARC alignment.
Spoof detection
Identifying and reporting on emails that attempt to spoof your domain.
Notifications and alerts
Automated alerts for DMARC policy changes, new senders, or anomalies.
Advanced in premium tiers.
Part of CTM360's broader alerting.
Reporting
Generating detailed and executive-level DMARC compliance reports.
Downloadable and subdomain reports in paid plans.
Comprehensive reports from CTM360 platform.
API
Programmatic access to DMARC data and management features.
Add-on or included in Enterprise plans.
Implied by integration capabilities in CTM360.
Multi-tenancy
Ability to manage multiple domains or client accounts from a single interface.
Portfolios feature for Enterprise.
Likely given CTM360's enterprise focus.
SPF flattening
Managing SPF records to avoid DNS lookup limits and ensure compliance.
Unlimited SPF in paid tiers.
Crucial for DMARC, likely integrated.
Hosted DMARC
The DMARC service is hosted in the cloud, requiring minimal infrastructure.
BIMI
Support for Brand Indicators for Message Identification (BIMI).
Available in all plans with Amplify add-on.
Likely part of broader brand protection.
MTA-STS/TLS-RPT
Support for Mail Transfer Agent Strict Transport Security and TLS Reporting.
Not a primary focus, some user feedback notes absence.
Not explicitly highlighted as a core feature.
Blocklists and reputation
Monitoring email blocklists (or blacklist) and sender reputation.
Aids in improving sender reputation.
Stronger due to CTM360's broader threat intelligence.
AI copilot
Artificial intelligence assistance for DMARC management or threat detection.
New AI-driven detection features.
Not explicitly mentioned in the provided information.
DNS monitoring
Monitoring DNS records for misconfigurations or unauthorized changes.
Integral to DMARC setup and health.
Part of CTM360's external attack surface management.
Self hostable
Option to host the DMARC solution on your own infrastructure.
Cloud-based SaaS solution.
Cloud-based SaaS solution.
Free trial/free tier
Availability of a free version or trial period to test the product.
Valimail Monitor is a free service.
DMARC360 Community Edition is free.
Drawbacks and what to watch out for
Both Valimail and DMARC360 are robust DMARC solutions, but they each have specific drawbacks. Valimail can be expensive, particularly for smaller organizations seeking advanced features, and some users note a potential for vendor lock-in due to its deep integration. The interface, while generally easy, sometimes lacks detail in reports or has counter-intuitive feature organization. DMARC360, while part of a comprehensive security suite (CTM360), can have a steep learning curve for those not familiar with its broader capabilities. Its interface may require more clicks to get to specific information, and some reports could benefit from greater contextual detail.
We have pulled the average ratings from G2 for each product, and also included the most recent negative reviews for each product in full. Positive reviews tend to have less detail and have a higher chance of being fraudulent, so negative reviews are a better signal for your decision.
4.6 / 5(421)
4.7 / 5(360)
Easy DMARC Monitoring But Not Great
3.5 / 5
What do you like best about Valimail?
Valimail is pretty simple to setup and use. We were wanting to monitor some changes to DMARC, and Valimail was the platform we ultimately decided to use.
What do you dislike about Valimail?
A few things I don't like:
1. The free vs premium features are frustrating. I can't see enough value from free to validate a move to premium.
2. The Sender Requirement Failure feature is in beta and never really works. I can't only get it to work if I expand it before a week, and even then it's hit-or-miss.
3. It doesn't really do enough. Other platforms I've tried did a better job at helping to explain the WHY and HOW rather than just the what. Valimail primarily focuses on the WHAT.
4. Some of the feature organization is weird within the app, even after having used it for a few months. I can get more value in the account overview than the sender requirements failure, which is counter-intuitive IMO.
What problems is Valimail solving and how is that benefiting you?
We had a baselevel view of email security when I was initially hired and wanted to monitor the DMARC changes effectively.
Verified User in Construction
Small-Business (50 or fewer emp.)
delivers a seamless, proactive brand protection experience
3.5 / 5
What do you like best about CTM360?
CTM360 consolidates external attack surface management, brand protection, anti‑phishing, and takedowns into a single, unified platform. It cuts through the noise with pre‑populated threat data specific to our brand—no extra setup required—and consistently delivers highly actionable alerts
What do you dislike about CTM360?
While takedowns are fast and effective, expanding reach across more platforms and registrars would enhance the impact
What problems is CTM360 solving and how is that benefiting you?
Data leakage, Breaches, Brand imposters or VIP
Verified User in Airlines/Aviation
Mid-Market (51-1000 emp.)
I like Valimail - mostly.
3.5 / 5
What do you like best about Valimail?
Good interface for viewing DMARC reporting information.
What do you dislike about Valimail?
Price, it'd be nice if they could institute a model based on volume rather than the number of email domains.
What problems is Valimail solving and how is that benefiting you?
Valimail provides DMARC provides good aggregate reporting for our email domains, allowing us to implement to the eventual reject policy goal.
Verified User in Real Estate
Mid-Market (51-1000 emp.)
It's Good
4.0 / 5
What do you like best about CTM360?
The detection works. Really good information given on breached credentials and fake apps that a takedown was so easy.
What do you dislike about CTM360?
The interface is not user friendly. Sometimes it takes more than a couple of clicks to get the information needed.
What problems is CTM360 solving and how is that benefiting you?
It allows us to view breached credentials and also fake website & apps.
Zulfa J.
CTO Small-Business (50 or fewer emp.)
Straightforward onboarding
4.0 / 5
What do you like best about Valimail?
Ease of set-up and great customer support.
What do you dislike about Valimail?
Some features aren't as developed as some competitors, however ultimately it's up to each organization to decide the value of those features.
What problems is Valimail solving and how is that benefiting you?
Being able to report on DMARC successes and failures, to help us fine-tune the configuration to ensure each domain is correctly configured.
Verified User in Oil & Energy
Enterprise (> 1000 emp.)
CTM360 give whole experience as a user. The detection for cases is okay overall
4.0 / 5
What do you like best about CTM360?
The support of the CTM360 team is totally responsive and helpful. The platform also user friendly and easy to use
What do you dislike about CTM360?
Sometimes we got confuse with the filtering features. However, the support team has guide us accordingly
What problems is CTM360 solving and how is that benefiting you?
Detection for EASM cases - features of deep scanning
brand monitoring. By connecting with the CIRT team globally. CTM360 Sometimes able to take down cases faster than other platform
Verified User in Financial Services
Enterprise (> 1000 emp.)
Valimail Simplifies DMARC Management, But Watch for Vendor Lock-In
4.0 / 5
What do you like best about Valimail?
My favorite thing about Valimail is having a single portal that puts all DMARC reports into an easy to understand view. Having this information allowed us to identify hundreds of 3rd party email sources sending on behalf of our domain. Doing this without such a portal would be incredibly difficult especially in a franchise setting like ours where we have more services sending on behalf of our domain than most other companies.
What do you dislike about Valimail?
Valimail isn't cheap but you definitely get what you pay for. I also grow concerned about vendor lock-in now that I have setup Valimail to handle DMARC, SPF and DKIM with no exist strategy.
What problems is Valimail solving and how is that benefiting you?
Valimail solves the problem of visibility into who is sending on our behalf and makes identifying them easy.
Verified User in Non-Profit Organization Management
Mid-Market (51-1000 emp.)
Recommmended
4.0 / 5
What do you like best about CTM360?
quick Threat intelligence and insights about the related issues and leaks
What do you dislike about CTM360?
Sometime shows repeated or resolved issues and vulnerabilities
What problems is CTM360 solving and how is that benefiting you?
TI feeds, Data leaks etc
Hafiz T.
Unit Head Cyber Security Operations Enterprise (> 1000 emp.)
A Must-Have for Email Security
4.0 / 5
What do you like best about Valimail?
The best thing about Valimail is its fully automation feature as we can get the reports automated with whole monthly data .
As I prepare reports every month in which I have to include the malicious email data so I do not need to manually check each single thing , the Valimail does it for itself.
What do you dislike about Valimail?
The thing which I dislike about Valimai is that its little expensive especially for the businesses which are small nd not much expanded .
What problems is Valimail solving and how is that benefiting you?
The problem which Valimail is solving for me is the manual effort for exporting the data related to spam emails and its security checks are the best .It filters out the emails properly and which are suspicious , they get rejected easily .
Verified User in Transportation/Trucking/Railroad
Enterprise (> 1000 emp.)
Review CTM360 after using for 1 Year period.
4.0 / 5
What do you like best about CTM360?
Most helpful from CTM360 is take down phishing domain very fast for my customer and could finding and detect Brand Impersonation focus on Social media app with fake content.
What do you dislike about CTM360?
Least helpful is data exposure on repository with another platform such as Gitlab , Bitbucket in case some customer using above tool will could not detect.
What problems is CTM360 solving and how is that benefiting you?
In the past take down period is big issue for my customer because take around 5-7days and customer have complain on this issue , However when changing to use "Brand Protection" of CTM360 service , CTM360 team could help my team action quickly on take down phishing URL or fake content URL related with my customer domain name. average complete action take down around 2-3 days.
Watthanachai K.
Consulting IT Specialist Small-Business (50 or fewer emp.)
Pricing
Valimail offers tiered pricing with a generous free monitoring plan and paid options focusing on automated enforcement and alignment, while DMARC360 provides a free community edition with other offerings requiring direct contact for pricing.
Small
Up to 10k emails / month
Monitor: Free. Align: $19/month (up to 500k emails).
Community Edition: Free.
Medium
Up to 100k emails / month
Enforce Starter: $5,000/year. Align: $19/month (up to 500k emails).
Contact for pricing.
Large
Up to 1 million emails / month
Enforce Starter: $5,000/year. Align: $19/month (up to 500k emails). Contact for Enforce Premium/Enterprise.
4.6 / 5(421)
