# Best Practices for Admins Evaluating Suspicious Emails - Tools Used?

What tools are admins using to evaluate suspicious email?  I've used virustotal.com quite a bit but are seeing a lot more obviously malicious links come up clean.

##### Post Metadata
- Posted at: almost 7 years ago
- Author title: Operations &amp; IT Manager at Clinton Polley Insurance Brokers
- Net upvotes: 2


## Comments
### Comment 1

Hi Matt, I am G2&#39;s cybersecurity research analyst. 

Shana is correct her description of PhishER. KnowBe4 also has a phishing-specific solution called KnowBe4 Phishing Security Test which can be seen here: https://www.g2.com/products/knowbe4-phishing-security-test/reviews

In addition, and for non-training purposes, I would suggest an Anti-spam tool. There are many products listed here: https://www.g2.com/categories/email-anti-spam

These tools will provide more granular control over what is and is not tagged as suspicious. Many of those tools are free and if you are considering a new solution, there are a number of professional-grade antispam solutions that have native integration with security and phishing training tools. Webroot, Proofpoint, and Barracuda are a few that come to mind, but there are definitely more options available. 

Hope this helps!


##### Comment Metadata
- Posted at: almost 7 years ago
- Author title: Principal Research Analyst, Cybersecurity at G2
- Net upvotes: 1


### Comment 2

If you can view the emails then you can already do 99% of the evaluation. As long as you understand what the risks look like you can make a pretty good judgement there and then.
To assist with making that judgement, using tools like KnowBe4 to give you and or your staff training can help in identifying risky emails. Plus KnowBe4 can also do testing via emails and phone calls too.

I do at times use a sandbox environment to open suspicious links just in case I feel like double checking, or seeing what the other party is attempting to. The 1903 and up version of Windows 10 now has a SandBox environment built in.

##### Comment Metadata
- Posted at: over 6 years ago
- Author title: Group IT Manager at EMPR Group Holdings Pty Ltd



### Comment 3

KnowBe4 - with their platform you can simulate phishing e-mails which can be randomly sent to your employees. You are able to monitor who click on the threat in the mail and system can then automatically assign to those people an educational video - awareness training. And what is good they have the mails and videos available in a lot of languages. Which is great for international companies.

##### Comment Metadata
- Posted at: almost 7 years ago
- Author title: Deputy CEO at Performia International AB



### Comment 4

KnowBe4 has a product called PhishER that ties in nicely with their awareness training. It uses VirusTotal in its research of emails reported by employees via the PhishAlert button. It&#39;s easy to administer and helps with identifying threats.

##### Comment Metadata
- Posted at: almost 7 years ago
- Author title: Technology Security Officer




## Related Product
[KnowBe4 Security Awareness Training](https://www.g2.com/products/knowbe4-security-awareness-training/reviews)

## Related Category
[Security Awareness Training](https://www.g2.com/categories/security-awareness-training)

## Related discussions
- [How well does Trello scale into a larger team?](https://www.g2.com/discussions/1-how-well-does-trello-scale-into-a-larger-team)
  - Posted at: about 13 years ago
  - Comments: 6
- [Can we please add a new section](https://www.g2.com/discussions/2-can-we-please-add-a-new-section)
  - Posted at: about 13 years ago
  - Comments: 0
- [Quantifiable benefits from implementing your CRM](https://www.g2.com/discussions/quantifiable-benefits-from-implementing-your-crm)
  - Posted at: about 13 years ago
  - Comments: 4


