TrueMail flame logo
TrueMailEmail trust platform

How to Detect Disposable Email Addresses

Spend 10 minutes on these checks and you’ll block most burner inboxes before they pollute your data.

1. Domain intelligence

  • Public blocklists: Keep yopmail.com, mailinator.com, sharklasers.com, etc., up to date. TrueMail maintains 70K+ domains with hourly refreshes.
  • Domain age: Domains registered < 24 hours with no MX records are strong burner indicators.
  • Cheap TLDs: Extensions such as .xyz or .top often correlate with throwaway providers—lower the trust score accordingly.

2. Syntax and patterns

[email protected]
[email protected]
[email protected]
  • Aliases (+), repeated dots, or long numeric tails appear frequently in abuse traffic.
  • Very short local parts (e.g., [email protected]) are typically script-generated.

3. Real-time behavior

  • Request velocity: Dozens of signups from one IP in under a minute? Likely scripted.
  • Fresh fingerprints: Brand-new session + rapid-fire submissions → increase friction with Turnstile or OTP.
  • API signals: TrueMail’s response includes a signals array—act on them immediately.

4. Quick deployment

  1. Embed the TrueMail Checker Widget on your signup form to provide inline hints.
  2. Call /v1/verify server-side and stash verdict + score on the user profile for downstream risk decisions.
  3. Stream high-risk events via webhook to Slack or PagerDuty for human review.

Need end-to-end code? Visit the TrueMail docs for SDK examples in every major language.***