It checks the real warning signs
Elenor looks for spoofed senders, reply-to tricks, suspicious links, risky attachments, authentication failures, and familiar brands being impersonated by domains that are clearly trying something on.
Spam and phishing protection
Email security with better instincts and less melodrama
Elenor includes built-in spam and phishing protection that checks what actually matters: spoofed senders, suspicious links, risky attachments, authentication failures like SPF, DKIM and DMARC, lookalike domains, and the usual "urgent, click this immediately" performance from emails that really need a better hobby.
It also learns from what you mark as spam, what you rescue from Junk, and who you genuinely trust. So it gets better at matching your real inbox instead of randomly deciding your accountant has become a cybercriminal.
It does not panic at every big-name logo
Microsoft, Google, Apple, Amazon, Australia Post and similar domains can get a reputation boost, but they do not get a free pass. If the links are dodgy or the message fails the serious checks, Elenor still treats it as suspicious, because brand recognition is not a personality test.
It learns your inbox
Mark something as spam, rescue it from Junk, always trust a sender, or keep deleting the same sales fluff without opening it, and Elenor starts taking the hint like a decent desktop app should.
Warnings are clear, not mysterious
Suspicious emails can show a warning banner in the message header so you are not left guessing why something feels off. Less mystery. Less muttering. Better odds of not clicking the wrong thing.
Good email gets less hassle
Legitimate senders you actually keep hearing from should not have to keep auditioning for your trust every Tuesday. Elenor balances security with common sense so the inbox stays safer without becoming emotionally high-maintenance.
Phishing gets treated like phishing
Messages that look like account takeovers, fake billing alerts, or urgent credential grabs are handled more harshly than ordinary marketing fluff, which is exactly as it should be. Some emails deserve a raised eyebrow. Some deserve exile.
What Elenor is checking behind the scenes
Authentication
SPF, DKIM and DMARC failures are all factored in, because "this message failed the standard security checks" is the kind of detail worth knowing before it starts asking for your password.
Links
If a link says one thing and goes somewhere else, or a message leans suspiciously hard on login and payment links, Elenor notices. Quietly. Judgementally. Correctly.
Sender tricks
Reply-To mismatches, sender impersonation, own-address spoofing, and lookalike domains are all signs Elenor takes seriously, because scammers do love a costume.
Attachments
Executable files, suspicious attachment types, and password-protected surprises from unknown senders are not treated as delightful little mysteries, because they never are.
Language and pressure
Urgent threats, credential bait, invoice scares, and generic "Dear Customer" nonsense all add to the score when a message is trying a bit too hard to rush you into a bad decision.
Your own history
Elenor remembers what you junk, rescue, trust, reply to, archive, and quietly bin without opening, so it behaves more like your email app and less like a confused border guard having an off day.
Safer email, fewer ridiculous surprises
Elenor tries to stop suspicious email from wasting your time, your patience, or your afternoon.