DIGITAL FORENSICS:Email header example

What is Email header?

An email header is a section of an email message that contains detailed information about the message's origin, transmission, and delivery. It is not typically visible to the recipient when reading the email in their inbox, but it can be viewed by accessing the email's properties or by examining the message's source code.

The email header typically includes the following types of information:

1. From: The sender's email address.
2. To: The recipient's email address(es).
3. Subject: The subject line of the email.
4. Date and Time: The date and time when the email was sent.
5. Message ID: A unique identifier assigned to the email message by the email server.
6. Return Path: The email address to which bounce-backs or non-delivery notifications are sent.
7. Received: A series of entries indicating the email servers through which the message passed during transmission, including timestamps and server names.
8. MIME-Version: The version of the MIME (Multipurpose Internet Mail Extensions) protocol used to format the email.
9. Content-Type: Information about the type and format of the message content (e.g., text/plain for plain text, text/html for HTML content).
10. X-Headers: Additional custom headers added by email servers or email clients for various purposes.

Email headers are essential for diagnosing delivery issues, tracing the path of an email message through the internet, and verifying the authenticity of an email. They provide valuable information for email administrators, forensic investigators, and individuals seeking to understand the journey of an email from sender to recipient.

Download  (SHA-1: c7ddb3d355c770b0910ab35e7963751a90c7be01, Email header example.zip)

Download (SHA1:b14f91b3150234db2122d05da231815d1cd4342a, email-header1.zip)

 

Download , Mirror

(SHA-256: 42B6FD78DAF38C03E1A744ECA1A0CB44F6859AB892E0F32B01763EFD835B5648)

Download ,Mirror (SHA1:c233ce69a8412b680db883ff7e2813459c142eea, Email header example spoofed.zip)

Download Mirror (SHA1:338905820b6c75aba258f0c3f78d9289b31ed4e2, sample.zip)

• แนวทางการตรวจสอบ E-MAIL HEADER
• METASPIKE CTF
• EMAIL INVESTIGATION PART I.
• EMAIL INVESTIGATION PART II.
• Email Forensics Tools

Creadit:

• ctf.metaspike
• wikipedia
• proton.me 

• mailMeta 

 

หมายเหตุ:เนื้อหาในเว็บไซต์นี้มีขึ้นเพื่อวัตถุประสงค์ในการให้ข้อมูลและเพื่อการศึกษาเท่านั้น

* หากมีข้อมูลข้อผิดพลาดประการใด ขออภัยมา ณ ที่นี้ด้วย  รบกวนแจ้ง Admin เพื่อแก้ไขต่อไป
ขอบคุณครับ

#WindowsForensic #ComputerForensics #dfir #forensics #digitalforensics #computerforensic #investigation #cybercrime #fraud