playbookfavoritenew
Email Threat Analysis: Rapid .eml Triage Commands for Analysts
Shell commands to run when triaging a downloaded .eml file, with explanations of what each command and flag does.
email
open
the shortlist
three picks: one tool, one detection, one lab
start here, then explore what catches your eye.
- now:
- security analyst @ mls
- focus:
- building detections, hunting threats, analyzing incidents
- overview:
- hands-on workflows, real examples, why they matter
detectionfavorite
Email Authentication: SPF, DKIM, and DMARC
In-depth notes on email authentication, spoofing prevention, and policy configuration.
3 min reademail security
read
labnew
Songtrust Impersonation via SMS, Fake Work Portal, Telegram Pivot
Unsolicited SMS promised easy remote pay, linked to a Songtrust-branded login page that simply funnels victims to Telegram.
1/13/26osint
open
featuredPRVIEW • project
Browser-based phishing email analysis: import .eml or raw source, parse headers/body, extract URLs, and export a clean summary.
prefer the long way around? explore dispatch, playbooks, and labs.
say hi:me@heyosj.com•linkedin