we have download and deploy the “phishing_lua” parser, “mismatched href
header” rule, and “Phishing Profile” report. Can some one help us with
an app rule to identify phishing emails
Thank you for response We are getting 1000s of events under the
risk.warning "href host doesn't match displayed host", Can you please
suggest how we can grill down to find the exact event eliminating the
genuine's
