A cli script to analyze an E-Mail in the eml format for viewing the header, extracting attachments etc.

These details have not been verified by PyPI

Project links

Homepage

Project description

emlAnalyzer

A cli script to analyze an E-Mail in the eml format for viewing the header, extracting attachments etc.

Installation

Install the package with pip

pip install eml-analyzer

Usage

Type emlAnalyzer --help to view the help.

usage: emlAnalyzer [OPTION]... [FILE]

A cli script to analyze an E-Mail in the eml format for viewing the header, extracting attachments etc.

optional arguments:
  -h, --help            show this help message and exit
  -i INPUT, --input INPUT
                        path to the eml-file (is required)
  --header              Shows the headers
  -x, --tracking        Shows content which is reloaded from external ressources in the HTML part
  -a, --attachments     Lists attachments
  --text                Shows plaintext
  --html                Shows HTML
  -s, --structure       Shows structure of the E-Mail
  -u, --url             Shows embedded links and urls in the html part
  -ea EXTRACT, --extract EXTRACT
                        Extracts the x-th attachment
  --extract-all         Extracts all attachments
  -o OUTPUT, --output OUTPUT
                        Path for the extracted attachment (default is filename in working directory)

Examples

Example 1

$ emlAnalyzer -i email_1.eml
 =================
 ||  Structure  ||
 =================
|- text/html

 =========================
 ||  URLs in HTML part  ||
 =========================
 - https://suspicious.site.com/Zajnad

 ===============================================
 ||  Reloaded Content (aka. Tracking Pixels)  ||
 ===============================================
[+] No content found which will be reloaded from external resources

 ===================
 ||  Attachments  ||
 ===================
[+] E-Mail contains no attachments

Example 2

$ emlAnalyzer -i email_2.eml
 =================
 ||  Structure  ||
 =================
|- multipart/mixed
|  |- multipart/related
|  |  |- text/html
|  |  |- image/jpeg                        [image002.jpg]
|  |  |- image/jpeg                        [image003.jpg]
|  |  |- image/png                         [image004.png]
|  |- message/rfc822
|  |  |- multipart/alternative
|  |  |  |- text/plain
|  |  |  |- text/html

 =========================
 ||  URLs in HTML part  ||
 =========================
 - https://example.company.com/random/link
 - mailto:john.doe@company.com

 ===============================================
 ||  Reloaded Content (aka. Tracking Pixels)  ||
 ===============================================
[+] No content found which will be reloaded from external resources

 ===================
 ||  Attachments  ||
 ===================
[1] image002.jpg        image/jpeg        inline
[2] image003.jpg        image/jpeg        inline
[3] image004.png        image/png         inline

Example 3

$ emlAnalyzer -i email_1.eml --header

 ==============
 ||  Header  ||
 ==============
From..........................................John Doe <asjkasd@asdasd123.com>
To............................................"bob@company.at" <bob@company.at>
Subject.......................................RANDOM SUBJECT
Thread-Topic..................................RANDOM SUBJECT
X-MS-Exchange-MessageSentRepresentingType.....1
Date..........................................Tue, 19 May 2020 07:02:37 +0000
Accept-Language...............................de-DE, en-US
Content-Language..............................de-DE
X-MS-Exchange-Organization-AuthAs.............Anonymous
X-MS-Has-Attach...............................
X-MS-TNEF-Correlator..........................
x-fireeye.....................................Clean
x-rmx-source..................................123.123.123.123
Content-Type..................................text/html; charset="iso-8859-1"
Content-Transfer-Encoding.....................quoted-printable
MIME-Version..................................1.0

Project details

These details have not been verified by PyPI

Project links

Homepage

Release history Release notifications | RSS feed

3.0.1

Aug 4, 2023

2.0.3

Apr 6, 2023

2.0.2

Feb 27, 2023

2.0.1

Jan 21, 2023

2.0.0

Dec 31, 2022

1.1.0

Dec 29, 2022

This version

1.0.3

Apr 30, 2021

1.0.2

Apr 10, 2021

1.0.1

Aug 25, 2020

1.0.0

May 21, 2020

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

eml-analyzer-1.0.3.tar.gz (7.4 kB view details)

Uploaded Apr 30, 2021 Source

Built Distribution

eml_analyzer-1.0.3-py3-none-any.whl (7.2 kB view details)

Uploaded Apr 30, 2021 Python 3

File details

Details for the file eml-analyzer-1.0.3.tar.gz.

File metadata

Download URL: eml-analyzer-1.0.3.tar.gz
Upload date: Apr 30, 2021
Size: 7.4 kB
Tags: Source
Uploaded using Trusted Publishing? No
Uploaded via: twine/3.4.1 importlib_metadata/3.10.0 pkginfo/1.7.0 requests/2.25.1 requests-toolbelt/0.9.1 tqdm/4.60.0 CPython/3.9.0

File hashes

Hashes for eml-analyzer-1.0.3.tar.gz
Algorithm	Hash digest
SHA256	`70eb4d04d5ebe448a61ab82514242afef8253179442205a1ec5ec20f975b40b3`
MD5	`a04d8e00aa35fd7260fc5c52392a01bc`
BLAKE2b-256	`eae5e24582f1e3c0229a95164daee5a42788c70f90004fbe6becd88bb5a1d4fd`

See more details on using hashes here.

File details

Details for the file eml_analyzer-1.0.3-py3-none-any.whl.

File metadata

Download URL: eml_analyzer-1.0.3-py3-none-any.whl
Upload date: Apr 30, 2021
Size: 7.2 kB
Tags: Python 3
Uploaded using Trusted Publishing? No
Uploaded via: twine/3.4.1 importlib_metadata/3.10.0 pkginfo/1.7.0 requests/2.25.1 requests-toolbelt/0.9.1 tqdm/4.60.0 CPython/3.9.0

File hashes

Hashes for eml_analyzer-1.0.3-py3-none-any.whl
Algorithm	Hash digest
SHA256	`75ce5ca1bf959f172211e6013feb2f670752f51df315c4f4aaa3d4f2f2e83f23`
MD5	`6100d2eaf49cb4a235f5ed28e09c2f73`
BLAKE2b-256	`a62143958b3c3eaeec58ce32dc8b42ca2ee93aab6623e3e5e01b853ee079de20`