No DMARC record at cordacon.com

I am happy to receive your invitation, and i will try my best to keep R3 secured. As this is my first report and can be considered as low severity and some companies even considered it as N/A, but as I see in your policy its not mention as out of scope. one of your domain has no DMARC record, which can give attacker access to your domain to send phishing emails to every one with the sender eg `[email protected]` ## Steps To Reproduce: 1. Visit https://mxtoolbox.com 2. Type the domain cordacon.com 3. click on Ok your will see no DMARC record ## Supporting Material/References: [list any additional material (e.g. screenshots, logs, etc.)] * [attachment / reference] ## Impact Attacker access to your domain to send phishing emails to every one with the sender eg `[email protected]` Or black mail your domain because sometimes the email will be in spam folder, any one receive such email will think that its from you and you're scammers.