Python program for analysis of email messages
sravanh
Instructions.docxTSCF - Email Assignment
In this assignment, you will be looking into the email messages in a deeper level. An email message has two main parts for analysis; the body and the header. For a forensics expert the header has a lot of useful information that is worthy of studying.
Objectives
1- Learn the importance of email messages for forensics work
2- Learn the different parts of an email message
3- Learn how to extract tracing information from a message
4- Learn to extract time stamps of the message journey
5- Learn to use geo-location to locate an IP address that an email message passed by
|
Question: |
SAU email file |
Email file |
Pts |
|
Source email address? |
|
|
2 |
|
Destination email address? |
|
|
2 |
|
Subject of the message? |
|
|
2 |
|
Send date and time? |
|
|
2 |
|
Receive date and time? |
|
|
2 |
|
Source IP address? |
|
|
2 |
|
Destination IP address? |
|
|
2 |
|
Geo-location of sender? |
|
|
2 |
|
Sender City, State? |
|
|
2 |
|
Geo-location of receiver? |
|
|
2 |
|
Receiver City, State? |
|
|
2 |
|
Number of intermediate servers? |
|
|
2 |
|
Encryption/Hashing used, yes or no? |
|
|
2 |
|
Type of encryption/hashing? |
|
|
2 |
|
If applicable: Some of the Message content? Find Some titles. |
|
|
7 |
|
Total |
|
|
35 |
Guidelines:
For the assignment above, you need to consider the following:
1- To be done individually.
2- Use the data files attached.
3- Your answers should be used to Fill the table above.
4- Submitting after the deadline will result in %10 points off for each additional day up to %30
a. After that the assignment may not be accepted and ZERO grade is given.
5- You can use the tools mentioned in the material or any tools you deem suitable to answer the questions of the table.
a. If using external resources not found in the material, please cite the tool/website you used, i.e. mention the tool or page.
