Help Center / Setup & Configuration
Identifying Tartan App Simulation Emails in Message Headers
IT teams can confirm whether a suspicious-looking message is a Tartan App training simulation by checking the message's technical headers.
What to Look For
Tartan App adds technical headers to simulated phishing emails. These headers are not visible in the normal email body, but they can be viewed from the message source or original headers.
| Header | Value | Purpose |
|---|---|---|
X-Tartan-Simulation | true | Identifies the message as a Tartan App phishing simulation. |
X-Tartan-Email-Id | <number> | Provides a unique ID that can help trace a specific simulated email. |
How to Verify a Simulated Email
- Send or locate a test phishing simulation email.
- Open the message source, original message, or full email headers in your email system.
- Search the headers for
X-Tartan-SimulationandX-Tartan-Email-Id. - Confirm that
X-Tartan-Simulationis set totrue.
Important Notes
- Header names are case-insensitive. In Microsoft or Outlook, they may appear in lowercase as
x-tartan-simulationandx-tartan-email-id. - Use the
X-Tartan-*headers as the reliable way to identify Tartan App simulations. Do not rely on the email'sMessage-IDheader for this purpose. - If you contact Tartan App support about a specific simulation email, include the
X-Tartan-Email-Idvalue when available.