12 Days of Defense - Day 4: How to Analyze Email Headers and How Spoofed Email Works

Рет қаралды 24,751

3 жыл бұрын

Deep dive on the complexities of email in this one:
- Overview of how SMTP works
- The simplicity of SMTP protocol
- How email spoofing works
- Reading Received headers
- Sending Policy Framework (SPF) for spoofing prevention
===
My SANS Courses:
- SEC450 - Blue Team Fundamentals: sans.org/sec450
- MGT551 - Building and Leading Security Operations Centers: sans.org/mgt551
PDF Guide to Security Operations: www.sans.org/security-resourc...
Blueprint Podcast: sans.org/blueprint-podcast
Twitter: / sechubb

Пікірлер: 31

@nnii-rn7co Ай бұрын

Wow this was very educative! Thanks for taking your time and explaining the email headers for the public.

@Vleegz 2 жыл бұрын

I demand more quality content like this! As someone getting into cyber security I appreciate the detailed well-thought-out content that you provide. Thanks!

@SecHubb 2 жыл бұрын

I definitely plan to keep rolling out more and more, the only thing holding me back is time to get them done. Check out my Blueprint podcast available on all major platforms for a bunch of extra stuff that will help you on your journey in cyber security, and best of luck out there! :)

@kiranzunjar2668 2 жыл бұрын

Oil

@Child0ne 2 жыл бұрын

Wth… I have been searching cyber security resources to learn from on KZfaq for 1yr and 1 month now and just now I finally find you channel… so mad.. you post really good content I’m pissed I’ve been missing out..

@diegocastillo4836 Жыл бұрын

John, thank you so much for creating this content. I know it must be hard to keep pushing forward this content, but please know this has been INVALUABLE to people like myself.

@shuttlecrab 10 ай бұрын

Hey, thank you so much for creating this video and video series. I'm a new start in the cyber security industry, and this has been so freaking helpful for my email analysis workflow. I feel much more confident in my decision making when it comes to confirming/denying release requests emails to users. Thank you, John.

@headshotcaptain8389 2 жыл бұрын

Clear, concise and to the point. I'm really looking forward to viewing your lecture courses over at SANS!

@boode5957 10 ай бұрын

WOW just wow Quality content Really appreciate your effort please keep it up.

@user-cj4ey2td3b 3 жыл бұрын

Very good explanation! Well done John!

@kumailkhas2993 3 жыл бұрын

Awesome explanation. Thanks John!

@Wanderersays 3 жыл бұрын

You deserve more views and subscriptions. Awesome videos!

@famspower 3 жыл бұрын

Excellent ! I really enjoyed this one

@stressless8405 Жыл бұрын

Amazing shit my friend

@rezamehrad8512 3 жыл бұрын

Thank you John, great explanation!

@mojtabasadatynia4000 Жыл бұрын

Great Video. Thanks

@syscabmcommunity3368 Жыл бұрын

Amazing video

@zaidrehman2082 3 жыл бұрын

Thank you john

@probaldeepsaikia Жыл бұрын

Nice video

@gigadmin7147 3 жыл бұрын

Impressed :)

@waterbottle522 3 жыл бұрын

Great tutorial John, is there away I can dig a little deeper on this subject or do you have more videos on this. I have taken a number of SANS courses, but need more of this topic, as I encounter phishing daily. Thanks

@warlitros 2 жыл бұрын

Great video! Useful concepts and tools, it helped me to understand better some concepts about mail headers. One question John, how dangerous is clicking on a potential phish link? I feel like most of the times the best way to determine if a mail is malicious is analyzing the content of the links (in a VM), and I always thought that just clicking on a url would need a browser vulnerability or something rare to cause harm, but I'm never sure.