Skip to main content
Email Validator

Is this valid?

Paste any email address and we'll tell you if it's real, sketchy, or straight-up fake. No signup required.

How it works

  1. Syntax check — RFC 5322 regex validates structure.
  2. TLD check — ensures the domain has a real top-level extension.
  3. Disposable-domain check — flags 57,000+ known throwaway providers.
  4. MX record check — looks up the domain's DNS mail records to confirm it can actually receive email.
  5. Mailbox verification (optional) — ZeroBounce or Emailable confirms whether the specific mailbox exists and accepts mail.

Frequently Asked Questions

Why not just use a regex?

Because '[email protected]' passes any regex and still bounces harder than a cheque written in crayon. We layer syntax, TLD verification, disposable-domain detection, and optional live mailbox checking on top — so you get an actual signal, not false confidence.

Is the email address stored or shared?

The address itself is never stored or shared. If we verify it against a third-party SMTP provider (like ZeroBounce), the result is cached for 7 days using a one-way SHA-256 hash of your address as the key — so we can avoid redundant API calls. The hash can't be reversed to recover your email. We don't sell data, add you to any list, or share anything with third parties beyond the SMTP check itself.

What's a disposable email address?

A throwaway inbox you spin up in seconds — think Mailinator, Guerrilla Mail, or YOPmail. They're great for avoiding spam yourself, but terrible when someone uses one to sign up for your product and then ghosts you. We flag 57,000+ of these providers.

What does the score (0–100) mean?

It's our confidence that the address is genuinely deliverable. 100 = everything checks out, including live mailbox verification. 0 = please try again with a real one. Anything in between means we saw something worth a second look.

A valid-looking email still failed — why?

A few reasons: the domain might have a real TLD but no mail server, the mailbox might be full, or the mail server uses catch-all responses that make SMTP verification ambiguous. When in doubt, the result card will tell you exactly which check tripped.

What's the difference between 'Valid' and 'Risky'?

'Valid' means we're confident and everything passed. 'Risky' means the syntax is fine and the domain looks real, but something smells off — like a role address (admin@, noreply@) that might not have a human on the other end.

Is this free? What's the catch?

Completely free — no account, no trial, no 'premium' tier mysteriously lacking the useful bits. We keep the lights on with the occasional affiliate link and the generosity of people who hit the ☕ at the bottom of the results. The validation logic itself will never be paywalled — that'd defeat the whole point.

Can I use this via an API?

Not yet. Bulk checking and an API key system are on the roadmap. For now, go wild responsibly.

Can this tool get it wrong?

Yes — and we'd rather tell you than pretend otherwise. Catch-all mail servers accept any address regardless of whether a real inbox exists, making SMTP verification ambiguous. Newly created domains may lack MX records for a few hours. And some legitimate addresses look suspicious by our heuristics. The score and result card tell you exactly which checks tripped, so you can make an informed call rather than blindly trusting a pass or fail.