authex
Sign up

The autonomous agent for identity and trust infrastructure.

Stop impersonation. Maximize deliverability. Your Agent handles both.

Start free trial

We do not watch. We act.

Most tools stop at observability. Authex takes your infrastructure to enforcement and keeps it there. Built for organisations that can't afford to be impersonated.

Monitoring tools

You watch.

  • Dashboards and weekly digests.
  • Alerts you have to read and act on.
  • DNS changes by hand.
  • Years stuck at p=none.

Authex

We act.

  • Records configured automatically.
  • Drift reverted before it reaches you.
  • DNS managed by the Agent.
  • Domains at p=reject in days.

26 rules · 12 action types · 6 phases · deterministic

One autonomous Agent.

The Agent configures and maintains every protocol your domain uses to prove who it is. Pick one to see how.

Record

_dmarc TXT

Policy + reporting URIs

Agent

Authex

Walks p=none → quarantine → reject.

Verifier

Receiving MTA

Enforces alignment

How DMARC works in Authex

Authex publishes the DMARC record at p=none, parses your aggregate reports nightly, identifies every legitimate sender, then walks policy through p=quarantine to p=reject without breaking mail. Six-month median to enforcement.

Example record published by Authex

v=DMARC1; p=reject; rua=mailto:rua@yourcompany.com; pct=100; aspf=s; adkim=s

Visibility at Internet scale.

Atlas tracks every public-facing trust protocol across 189 countries. Refreshed nightly. Most of what we see is still unprotected.

The other 84.4% publish no policy, or publish one and never enforce it. That is the gap the Agent closes.

15.6%

Domains at full enforcement

4M+

Domains tracked

189

Countries

14/100

Avg score

Explore Atlas

Enforcement is no longer optional.

Three rules now require email authentication at enforcement. Your domain meets all of them or it does not.

Consumer mailbox rules

Bulk senders without DMARC don't deliver.

Send more than 5,000 emails a day to Gmail or Yahoo? Without SPF, DKIM, and DMARC, your mail is rejected at the gateway. The grace period ended in November 2025. Marketing, transactional, and password-reset traffic all hit the same wall. It is not a deliverability issue. It is a policy block.

Scope: 85% of consumer inboxes

Payment standard

Missing DMARC is a failed PCI DSS 4.0 control.

If you are a Level 1 or 2 merchant, Requirement 5.4.1 has been in full force since 31 March 2025. DMARC below enforcement is a deficiency on the Report on Compliance. That is not a warning. It is a finding.

Scope: all Level 1 and 2 merchants

EU financial regulation

DORA puts p=none under regulator scrutiny.

If you are an EU financial entity or you serve one, DORA has applied to you since 17 January 2025. Article 9 covers email authentication as an ICT risk control. p=none meets the technical floor. Supervisors expect more.

Scope: 22,000 EU financial firms

Put a trained agent on every domain you own.

From monitoring to enforcement, automatically. Deterministic. No model in the loop.

Start free trial

Free · No signup