DMARC Monitor is a Prometheus-exporting service that automatically fetches DMARC (Domain-based Message Authentication, Reporting & Conformance) reports from an email inbox, extracts key metrics, and exposes them for monitoring via Prometheus. These metrics can then be visualized using Grafana or another dashboard tool.
✅ Automatically fetches DMARC reports from email attachments (.zip or .gz).
✅ Parses XML reports and extracts relevant metrics.
✅ Exposes DMARC data via a Prometheus metrics endpoint (:8000/metrics).
✅ Removes unnecessary namespaces (xmlns) for compatibility.
✅ Deployable via Docker and Docker Compose for ease of use.
✅ Uses environment variables for secure configuration instead of .env.
✅ Supports Grafana for visualization of DMARC trends over time.
Once the service is running, you can query Prometheus metrics at:
http://localhost:8000/metrics
| Metric Name | Description | Labels (domain, provider, report_id, report_date) |
|---|---|---|
dmarc_passed_count |
Number of emails that passed DMARC | ✅ |
dmarc_failed_count |
Number of emails that failed DMARC | ✅ |
last_processed_timestamp |
Timestamp of last processed DMARC report | ✅ |
Example Output:
dmarc_passed_count{domain="example.com", provider="Google", report_id="123456789", report_date="2025-02-18"} 500
dmarc_failed_count{domain="example.com", provider="Google", report_id="123456789", report_date="2025-02-18"} 20
last_processed_timestamp{domain="example.com", provider="Google", report_id="123456789", report_date="2025-02-18"} 1708334567.123
git clone https://github.com/yourusername/dmarc-monitor.git
cd dmarc-monitorEdit the environment section in docker-compose.yml:
environment:
EMAIL_USER: "your-email@example.com"
EMAIL_PASS: "your-email-password"
IMAP_SERVER: "imap.example.com"docker-compose up -d --buildThis will:
- Build the Docker image.
- Start the DMARC monitoring service.
- Expose Prometheus metrics on port
8000.
Check logs to see if it's processing DMARC reports:
docker-compose logs -fGo to:
http://localhost:8000/metrics
To stop the service, run:
docker-compose downTo visualize DMARC reports, add Prometheus as a data source in Grafana, and create a dashboard using the exported metrics.
Example Prometheus Query for Passed Emails:
sum(dmarc_passed_count) by (domain)
Example Prometheus Query for Failed Emails:
sum(dmarc_failed_count) by (domain)
You can modify the environment variables to customize the setup:
| Variable | Description | Example Value |
|---|---|---|
EMAIL_USER |
Email address to fetch DMARC reports from | your-email@example.com |
EMAIL_PASS |
Email password (or App Password) | your-email-password |
IMAP_SERVER |
IMAP server for your email provider | imap.gmail.com |
💡 Tip: If using Gmail, generate an App Password instead of using your real password.
Check logs:
docker-compose logs -f- Ensure emails are being received at your inbox.
- Check that emails contain DMARC reports in
.zipor.gzformat. - Run the script manually to debug:
docker-compose up
- Make sure the email/password are correct.
- Use an App Password instead of your real password (for Gmail, Outlook, etc.).
Feel free to open an issue or submit a pull request if you have improvements!
This project is open-source and licensed under the MIT License.