Scribd
Upload
5 views

DF Assignment 6 (324041)

Uploaded by

temp
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
5 views

DF Assignment 6 (324041)

Uploaded by

temp
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 3

Name : Sumit Mule

Roll no. : 324041


Batch : 3
PRN no. : 22111155

DF Assignment - 6
Title : To perform Email header Analysis.

Description : An Email Header or an Internet Header is metadata that accompanies every email
and contains detailed information, such as the sender, receiver, route, timestamp, and more.
Mailbox and email service providers use email headers to authenticate the email senders and
properly allocate an email in the inbox.

Information in the Email Metadata is automatically generated. Even though there is a standard
to what Email Metadata should include, there is no limit to what a mail server can add to it.

Gmail:
Locate a three-dot icon on the top-right corner of the email
Select Show Original in the drop-down menu. You’ll be able to view raw data in a new window.

Analysis:
● From indicates the sender’s information, such as the address.
● To displays the primary and secondary (CC, BCC) recipients’ email addresses and
optional names.
● Delivered-To displays the recipient’s name and address, as well as other addresses
present in the Cc and Bcc.
● Subject refers to the title the sender has indicated in the subject line of the email.
● Message-ID is a unique identifier, generated automatically to prevent multiple
deliveries. It includes various (around 50) letters and numbers.
● DKIM-Signature or Domain Keys Identified Mail (DKIM) is another authentication
method used to confirm that the email was authorized by the owner of the domain.
The email is signed with a digital signature, which can be verified by checking the
sender’s public key in the DNS records of the sender’s domain.
In our case,
dkim=pass [email protected] header.s=MAESTRO-S1 header.b=Z4jU3qrZ;

● SPF or Sender Policy Framework is an authentication method used by senders to


specify hosts that are allowed to send an email on behalf of the domain. MTA (mail
transfer agent) checks the sender’s DNS records to confirm that the email received
from a domain is sent by a host listed in the sender’s DNS records.
In our case,
spf=pass (google.com: domain of
owner-nolist-acmlpx2-240424b-lk2srook*tanmay*-22111091**viit*-ac*[email protected]
designates 20.75.2.183 as permitted sender)
smtp.mailfrom=owner-nolist-ACMLPX2-240424B-lk2srook*tanmay*-22111091**VIIT*-AC*-IN@listse
rv.acm.org;
Using MessageHeader Toolbox by google:

Conclusion : By performing email header analysis for cybersecurity , it involved analyzing email
headers, checking for authentication protocols, inspecting suspicious elements, and reporting
any identified threats or anomalies to mitigate risks effectively.

You might also like