mailspoof is a command-line tool designed to assess email spoofing vulnerabilities by analyzing SPF and DMARC records of target domains. The tool enables security professionals to identify domains with lax email authentication policies that could be exploited for email spoofing attacks. It accepts domain inputs through command-line arguments or file lists and outputs results in JSON format for easy parsing and analysis. mailspoof can process multiple domains simultaneously, making it suitable for bulk assessment of organizational domains or external domains that employees might trust, such as suppliers or business partners identified through OSINT activities. The tool is particularly useful for penetration testers and red team operations to identify potential attack vectors through email spoofing. It helps organizations understand their email security posture by revealing weaknesses in their SPF and DMARC configurations that could allow attackers to send emails appearing to originate from their domains. Installation is straightforward through pip3, and the JSON output format allows for integration with other security tools and automated workflows for further analysis and reporting.