Best practice to test the O365 Anti-spam

Marc 631 Reputation points
2021-07-04T14:26:21.187+00:00

Once setup O365 Anti-spam [new Microsoft 365 Defender] what is the best way to test it?
Best practice, avoiding to expose the users too much, using specific tools, creating false email spam , trace, etc ...

Thanks

Exchange | Exchange Server | Management
Exchange | Hybrid management
{count} votes

2 answers

Sort by: Most helpful
  1. Andy David - MVP 158K Reputation points MVP Volunteer Moderator
    2021-07-04T14:57:03.283+00:00
    1 person found this answer helpful.

  2. Joyce Shen - MSFT 16,701 Reputation points
    2021-07-05T05:39:47.7+00:00

    Hi @Marc

    Agree with the suggestions above from Andy.

    Use the Generic Test for Unsolicited Bulk Email (GTUBE). It's a standardized spam signature used precisely for testing spam filters.

    Put this in the body of the test email:

    XJS*C4JDBQADN1.NSBN3*2IDNENGTUBE-STANDARD-ANTI-UBE-TEST-EMAILC.34X
    and it will force the mailb to be recognized as spam.

    In addition to the spam, the official document also provided a way to Simulate a phishing attack. You could refer to this if you need.


    If an Answer is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.