Spoofed emails

Identifying if an email contains malicious attachments.

Determining if the email's content is safe or a scam.

Verifying if an email genuinely originates from the claimed sender's domain.

Understanding the technical jargon of email authentication methods.

Checking the email's subject line for suspicious phrases.

Examining the "from" address domain for unexpected services like Gmail or Hotmail.

Analyzing the email's content for grammatical errors.

Looking at the date and time the email was sent.

Using their own official company domain.

Registering domains that look very similar to real company domains.

Employing advanced encryption protocols.

Sending emails from well-known government servers.

Domain Name System (DNS) poisoning.

Cross-site scripting (XSS).

Homograph attack.

Distributed Denial of Service (DDoS).

ASCII Validator

Unicode Inspector

Domain Name System (DNS) Lookup

Email Header Analyzer

They use the same official domain as the "From" address.

They leave the "Reply-To" field blank.

They direct replies to a different, often generic, email address.

They encrypt the "Reply-To" address to hide it.

The email contains a generic greeting like "Dear Sir/Madam".

The "Reply-To" address is a free email service (e.g., Gmail, Yahoo).

The email asks you to click a link to update your information.

The email is sent from an international domain.

The email's content is free of malware.

The email was sent and authenticated by the claimed sender's domain.

The email has been forwarded multiple times.

The email is part of a newsletter subscription.