Email Validation

The complete analysis takes between 3 and 5 business days. In urgent cases, we can expedite the process with an additional fee.

It is essential to send us the complete email with all its headers (technical headers). We will explain how to correctly export the email from Gmail, Outlook, Apple Mail, or other email clients.

Headers are the technical headers of the email containing information about origin, route, servers, IP addresses, and other technical data invisible in the normal message view.

Yes, through header analysis, IP addresses, servers, and authentication, we can determine the actual email origin, even if the sender is forged.

Yes, it is technically possible to forge an email sender (email spoofing). However, forensic header analysis can detect these forgeries and determine the actual origin.

Yes, our reports have full legal validity. Experts can ratify the technical analysis in court and explain the conclusions in an understandable manner.

Phishing is a fraud technique where attackers send emails that appear to come from legitimate sources to steal personal information, passwords, or money. We can identify these fraudulent emails.

The price depends on the number of emails to analyze and case complexity. Contact us for a personalized quote with no obligation.

These are email authentication protocols: SPF (Sender Policy Framework) verifies that the server sending the email is authorized by the domain; DKIM (DomainKeys Identified Mail) adds a cryptographic signature certifying that the email comes from the declared domain; DMARC (Domain-based Message Authentication) establishes policies for what to do if SPF or DKIM fail. These protocols are essential for verifying authenticity.

Yes, our forensic experts are prepared to appear in court, ratify the expert report, technically explain the header and authentication analysis, and answer questions from the court and parties. Their experience in email protocols and computer security guarantees technical credibility.

Yes, as long as you keep the original file (.eml, .msg) or can export it from your email client. Headers and metadata remain intact in the file. The more time that has passed, the more important it is to preserve the original email without forwarding or modifying it.

Forwarding modifies the original headers and adds new ones, losing crucial forensic information. Exporting the email (.eml or .msg) preserves all original headers intact, which is essential for forensic analysis. You should always export, never forward.

It depends on where they were stored and how much time has passed. If they were on a server (Gmail, Outlook.com), it depends on the provider's retention policies. If they were on a local client (Outlook, Thunderbird), in some cases we can perform forensic recovery from the hard drive if the space has not been overwritten.

Yes, we analyze emails from any provider: Gmail, Outlook/Hotmail, Yahoo, ProtonMail, corporate Exchange servers, hosting accounts, etc. The basic header structure is standard (SMTP protocol), although each provider adds their own specific fields that we also analyze.

The report includes: complete export of technical headers (raw and interpreted), email route diagram through MTA servers, analysis of each Received field with timestamps, SPF/DKIM/DMARC verification with detailed results, IP address analysis with geolocation, intermediate server identification, SHA-256 hashes of the original .eml/.msg file, attachment analysis if any, detection of temporal or route inconsistencies, conclusions on authenticity and origin, and explanatory annexes. All documented according to ISO/IEC 27037.