Detection search allows you to search through and view all emails that Area 1 has marked with a . All messages include the raw message with its headers, as well as any associated Area 1 dispositions and processing information.
You would commonly use detection search to get visibility into why and when Area 1 marked a message with a specific disposition.
Use detection search
To access Detection search in the dashboard:
- Log in to the .
- Select the Search bar.
- Enter anything related to a specific detection (for more guidance, refer to ).
- Review the results.
- To view the information contained in an email, including a protected preview and the raw SMTP headers, select Details. You can also Download a message.
For normal queries, spaces split search terms into different values. For example,
billing statement would look for all messages that contain both
However, spaces, quotations, and other characters are sometimes part of the
message_id parameter. To ensure these values are included as part of filtering on the message ID, you should prefix the
message_id value with
For example, the following query would find all messages that contain the terms
statement and have a
message_id equal to
<Amazon aws [email protected]>.
billing statement message_id:<Amazon aws [email protected]>
When searching for phrases, some terms — such as words less than three characters and certain escape words like
their — are not tokenized. Our search will automatically ignore these terms, both in your search query and in the proposed results.