Home page logo

basics logo Security Basics mailing list archives

Re: Basically Lazy - Email Header Analysis
From: "Ian" <e2chameleon () btopenworld com>
Date: Mon, 26 May 2003 18:41:32 +0100

Hi Andy,

Have you looked at eMailTrackerPro from Visualware
(http://www.visualware.com/emailtrackerpro/index.html)?. It's an email
analysis tool that is designed to help you track an email to the IP address
of the machine the email was written on. It also plugs into VisualRoute
(also by Visualware) which is a set of network analysis tools wrapped up in
a grpahic interface. Apparently your email came to me from
list.securityfocus.com in Canada (Ottowa) via the USA (Chicago) before
coming to me in Scotland. Free evaluation software is available. I'm not an
expert in this field but it looks OK to my untrained eyes.

It is not currently raining in Glasgow but I think that it's a temporary
abomination that will be rectified shortly :)



e2chameleon Information Security Resource

-------Original Message-------

From: Andy Cuff [talisker]
Date: 26 May 2003 17:41:00
To: security-basics () securityfocus com
Subject: Basically Lazy - Email Header Analysis

Whilst drowning my sorrows in the UK rain following our resounding defeat in
the Eurovision song contest (Politics in Europe surely not !!) I have
turned my attention to email headers.

Whilst I'm quietly confident about manually analysing email headers, I'm
looking for tools or web resources that will automate some of the process.
There are plenty of anti-spam resources such as http://combat.uxn.com/ and
http://www.spamhaus.org/ to identify spammers and there is the infamous Sam
Spade for testing Open Mail Relay Agents. There are a plethora of how-to's
and FAQ's about analysing headers manually. But I haven't found many
resources that analyse the headers in sufficient accurate detail.

Personally I would rather run a tool on my own system than put my headers
through a 3rd party website but there are a few sites that seem to do it
fairly well such as http://www.3dmail.com/spam/ which whilst spam focussed
seems fairly comprehensive, though sadly a beta which hasn't been updated in
a year.

Any recommendations websites or tools would be greatly appreciated, if there
is a sufficient response I will collate the information onto a new page for
the website below and post a summary to this list

cheers, and for the Brits have a good Bank Holiday Weekend I hope the
weather is better where you are!

take care
Taliskers Network Security Tools

Thinking About Security Training? You Can't Afford Not To!

Vigilar's industry leading curriculum includes: Security +, Check Point,
Hacking & Assessment, Cisco Security, Wireless Security & more! Register
--UP TO 30% off classes in select cities-- 


  IncrediMail - Email has finally evolved - Click Here


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]