A security analyst is investigating a phishing email that bypassed the spam filter. Which tool would be most appropriate for analyzing the email headers and embedded links?

Question

Accepted Answer

A. An email analysis tool combined with a URL sandbox. Email analysis involves inspecting headers for spoofed sender information and examining embedded URLs using sandboxing to detonate links safely. The CySA+ exam objectives list email analysis as a technique under tools and techniques for detecting malicious activity. Wireshark captures network traffic but is not designed for email header analysis.

A security analyst is investigating a phishing email that bypassed the spam filter. Which tool would be most appropriate for analyzing the email headers and embedded links?

Related Questions

Discussion