Skip to content
,
Skip to search
learn.equalit.ie
From learn.equalit.ie
Menu
Main page
Trainer's Curricula
Secure Hosting
Digital Security Lessons
(N+1)sec
Digital Security QA
Page
|
Discussion
|
View form
|
View source
|
History
|
Edit a Scenario Task: How can I see who the email is really from?
You do not have permission to edit this page, for the following reasons:
The action you have requested is limited to users in the group:
Users
.
You must confirm your email address before editing pages. Please set and validate your email address through your
user preferences
.
Format:
Tool
Service
Resource
Solution
Scenario
Parents:
Comma-separated
Threat Category:
Comma-separated
Tools and Services
Comma-separated
Description:
The short answer is: you can't. You can only be certain of the sender's identity and for that you need to read [[I want to learn about digital signatures]]. There are however some tips to help you better understand where the email ''may'' have come from. Every email you receive is made up of several components. There is the content itself, address details, as well as technical data about the message - also known as the message header. It contains detailed information generated by your email server about where the message came from and how it was processed before arriving in your inbox. This may be your only forensic clue to investigate the message's origin. If you want to learn to examine email headers, read this guide on [https://learn.equalit.ie/wiki/Email_spoofing email spoofing] and [https://support.google.com/mail/answer/29436?hl=en Gmail's guide] on understanding their message headers. You can also copy and paste the message header into the [http://mxtoolbox.com/EmailHeaders.aspx MXToolbox] to get a humanly readable context of where this email has been.
Summary:
Cancel