Analyze suspicious emails with Tines & urlscan

Forward a suspicious email (or an .eml attachment) to, Tines will automatically analyze the URLs with urlscan and send you a report.

Thank you! A sample report will be sent to your email.
Oops! Something went wrong while submitting the form.

A note on security and privacy

  • All email data is purged after analysis.
  • Scans submitted to urlscan are private.
  • When you send us an email to analyze, we add your email address to our mailing list, which is low volume and you can unsubscribe at any time.
By using this service you’re ok with the above.
  • How reliable is the phishing email analyzer?

    The world’s leading security teams use Tines and urlscan to analyze suspicious emails. However, don’t treat this as a silver bullet. Reports should be validated.

  • Can you analyze attachments?

    Right now we prioritize URLs. We’ll hash the attachments and include corresponding links to VirusTotal. If you want to do something more advanced like execute attachments in a sandbox, just download the story and expand on it. We can help you here.

  • Is there a limit to the number of emails I can analyze?

    At this time, there is no limit to the number of emails you can analyze. However, we reserve the right to throttle if the service is being abused.

  • I sent a sensitive email and want it scrubbed, what can I do?

    Tines purges all email data after analysis. URLs submitted to urlcan are private, however, you can request removal through the report option.

  • Can I see how this works?

    Powering this entire service is a simple Tines story. You can download it and import it into your own Tines tenant and play around.

Join the world's leading security teams, try Tines for free today.

Start a free trial