decode-spam-headers

Whether you are trying to understand why a specific e-mail ended up in SPAM/Junk for your daily Administrative duties or for your Red-Team Phishing simulation purposes, this script is there for you to help!

This tool accepts on input an *.EML or *.txt file with all the SMTP headers. It will then extract a subset of interesting headers and using 105+ tests will attempt to decode them as much as possible.

This script also extracts all IPv4 addresses and domain names and performs full DNS resolution of them.

Resulting output will contain useful information on why this e-mail might have been blocked.

Name

decode-spam-headers

Main Program

decode-spam-headers

Programs

• decode-spam-headers

Homepage

• https://github.com/mgeeky/decode-spam-headers/

Version

2022-09-22-unreleased

License

• MIT License

Platforms

• aarch64-linux
• armv5tel-linux
• armv6l-linux
• armv7a-linux
• armv7l-linux
• i686-linux
• loongarch64-linux
• m68k-linux
• microblaze-linux
• microblazeel-linux
• mips-linux
• mips64-linux
• mips64el-linux
• mipsel-linux
• powerpc-linux
• powerpc64-linux
• powerpc64le-linux
• riscv32-linux
• riscv64-linux
• s390-linux
• s390x-linux
• x86_64-linux
• x86_64-darwin
• aarch64-darwin
• aarch64-windows
• x86_64-windows
• i686-windows
• i686-freebsd
• x86_64-freebsd
• aarch64-freebsd

Defined

Source