Home page logo

basics logo Security Basics mailing list archives

RE: Basically Lazy - Email Header Analysis
From: "Mike Heitz" <mikeheitz () upshotmail com>
Date: Tue, 27 May 2003 11:37:07 -0500

I can vouch for the Visual Route utility. I use it daily when tracking
down all the silly "GET /sumthin" lines in our web logs. It's fairly
inexpensive as well; I believe I paid under $70US for the license with
the upgrade insurance.

mike heitz ** sr it manager ** UPSHOT
312-943-0900 x5190

-----Original Message-----
From: Ian [mailto:e2chameleon () btopenworld com] 
Sent: Monday, May 26, 2003 12:42 PM
To: security-basics () securityfocus com; talisker () networkintrusion co uk
Subject: Re: Basically Lazy - Email Header Analysis

Hi Andy,

Have you looked at eMailTrackerPro from Visualware
(http://www.visualware.com/emailtrackerpro/index.html)?. It's an email
analysis tool that is designed to help you track an email to the IP
of the machine the email was written on. It also plugs into VisualRoute
(also by Visualware) which is a set of network analysis tools wrapped up
a grpahic interface. Apparently your email came to me from
list.securityfocus.com in Canada (Ottowa) via the USA (Chicago) before
coming to me in Scotland. Free evaluation software is available. I'm not
expert in this field but it looks OK to my untrained eyes.

It is not currently raining in Glasgow but I think that it's a temporary
abomination that will be rectified shortly :)



e2chameleon Information Security Resource

-------Original Message-------

From: Andy Cuff [talisker]
Date: 26 May 2003 17:41:00
To: security-basics () securityfocus com
Subject: Basically Lazy - Email Header Analysis

Whilst drowning my sorrows in the UK rain following our resounding
defeat in
the Eurovision song contest (Politics in Europe surely not !!) I have
turned my attention to email headers.

Whilst I'm quietly confident about manually analysing email headers, I'm
looking for tools or web resources that will automate some of the
There are plenty of anti-spam resources such as http://combat.uxn.com/
http://www.spamhaus.org/ to identify spammers and there is the infamous
Spade for testing Open Mail Relay Agents. There are a plethora of
and FAQ's about analysing headers manually. But I haven't found many
resources that analyse the headers in sufficient accurate detail.

Personally I would rather run a tool on my own system than put my
through a 3rd party website but there are a few sites that seem to do it
fairly well such as http://www.3dmail.com/spam/ which whilst spam
seems fairly comprehensive, though sadly a beta which hasn't been
updated in
a year.

Any recommendations websites or tools would be greatly appreciated, if
is a sufficient response I will collate the information onto a new page
the website below and post a summary to this list

cheers, and for the Brits have a good Bank Holiday Weekend I hope the
weather is better where you are!

take care
Taliskers Network Security Tools

Thinking About Security Training? You Can't Afford Not To!

Vigilar's industry leading curriculum includes: Security +, Check Point,
Hacking & Assessment, Cisco Security, Wireless Security & more! Register
--UP TO 30% off classes in select cities-- 


  IncrediMail - Email has finally evolved - Click Here



  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]