This rule is designed to detect unsolicited messages that promote ghostwriting or book publishing services, identifying them based on common manipulative language patterns often associated with scams. The rule checks if the message type is inbound and has a body length of less than 1500 characters. It looks for specific keywords in both the subject line and message body, including terms related to ghostwriting, book projects, and publishing services. Additionally, it recognizes phrases that are typically seen in scam communications, such as offering complimentary samples or expressing undue fascination with the recipient's achievements. Moreover, the rule implements a filtering mechanism to avoid classifying legitimate messages from high-trust sender domains by checking their DMARC authentication status. The combination of content analysis and sender analysis makes this a robust detection mechanism against spam tactics categorized under social engineering.