Skip to content
ZOROS

Email Threat Detection

Feature

Real-time Analysis: Scan emails for phishing, malware, and spam in real-time.

Usecase

Protect Your Users: Safeguard your users and infrastructure from email-based attacks.

What is Email Threat Detection?

Section titled “What is Email Threat Detection?”

Email Threat Detection is the process of identifying and neutralizing threats that are delivered via email, such as phishing, malware, and spam. With email being a primary communication channel, it is also a major vector for cyber attacks. Therefore, having a robust email threat detection system is essential for protecting your users and your organization.

Our Email Threat Detection API provides a powerful solution for integrating email security into your applications. It allows you to:

  • Detect Phishing Attacks: Identify and block phishing emails that try to steal sensitive information.
  • Scan for Malware: Scan email attachments and links for malware.
  • Filter Spam: Keep your users’ inboxes clean from unsolicited and malicious emails.
  • Protect Your Brand: Prevent fraudsters from impersonating your brand in phishing attacks.

API Endpoint

Section titled “API Endpoint”

The Email Threat Detection API endpoint is:

POST https://zoros.io/api/v1/email/threat/detect

Request Parameters

Section titled “Request Parameters”
ParameterTypeDescription
email_idstringA unique identifier for the email.
api_keystringYour unique API key for authentication.
dataobjectAn object containing the email data to be analyzed.

Example Request

Section titled “Example Request”
Terminal window
curl -X POST "https://zoros.io/api/v1/email/threat/detect" \
     -H "Content-Type: application/json" \
     -d '{
           "email_id": "msg_1A2b3C4d5E",
           "api_key": "YOUR_API_KEY",
           "data": {
             "raw_email": "..."
           }
         }'

API Response

Section titled “API Response”

The API returns a JSON object with the email threat analysis.

Example Response

Section titled “Example Response”
{
  "email_id": "msg_1A2b3C4d5E",
  "threat_level": "high",
  "threat_types": [
    "phishing",
    "malware_link"
  ],
  "details": {
    "subject": "Urgent: Your account has been suspended",
    "sender": "[email protected]",
    "links": [
      {
        "url": "http://malicious-link.com/login",
        "risk": "high",
        "type": "phishing"
      }
    ]
  },
  "recommendation": "block",
  "timestamp": "2025-08-26T11:00:00Z"
}

Response Field Descriptions

Section titled “Response Field Descriptions”
FieldTypeDescription
email_idstringThe unique identifier for the email.
threat_levelstringThe categorical threat level: low, medium, high, or critical.
threat_typesarrayA list of identified threat types (e.g., phishing, malware, spam).
detailsobjectAn object containing detailed information about the detected threats.
recommendationstringThe suggested action: allow, quarantine, or block.
timestampstringThe timestamp of when the analysis was made.

Use Cases

Section titled “Use Cases”

Email Security

Protect your organization from phishing, malware, and other email-based attacks.

Spam Filtering

Integrate advanced spam detection into your email service or application.

Brand Protection

Monitor for and block phishing attempts that impersonate your brand.

Compliance

Enforce email security policies and meet regulatory requirements.