How hackers spoof your email address

It called Kali Linux and here is how it can be installed
ua-cam.com/video/BzH9B97Qupg/v-deo.htmlsi=w0sgRnmWzVWT-5Vc

Here is a github repo to get sendemail github.com/mogaal/sendemail
Remember sendemail is written in perl. You can also grab exe version of send email with just a simple google search.

Be'cos you snd to the email you use nd registered sendinblue that's why it went to inbox

​​@@hawaiihawaii1112 It has been tested on other email same result. One good thing about sendinblue it is hardly detected as spam.

In Gmail, you can view the HTML code of an email by opening the email, clicking the three dots in the upper-right corner of the email window, and selecting "Show original" from the menu. This will open a new tab or window with the raw content of the email, including the HTML code.

@@ctf-sec i got it now , bless your heart for still replying to people after 8 months ,have a good day !

@@ctf-sec when i came to test it out on code pen ,it showed me bugged emails .the initial time i saw cloning emails was done by uploading the headers and typing out the contents of the email inside gmail . thats what i was searching for all along , a simple ("educational purposes" ) but i thought it would be a popular topic on the internet but i was wrong .

Kindly subscribe to be notified when other videos are uploaded.

What email server did you use?

@@ctf-sec I used Brevo's SMTP Relay server

I used to be able to do this technique, now I can't.

​@@unoproject20same here, did u find any alternative smtp server that works?

Not sure I understand the first part but for the second you need basic HTML/CSS for that.

little scammer. get a job. but i guess not as frontend-dev xD

Try using a different email server.

Thank you it will be added to the video description mean while here is the github link github.com/a6avind/spoofcheck

It has premium versions but at the time of recording it is free for using Email Server.

@@ctf-sec is it free now ? For SMTP server

Where exactly are you getting the error you can drop the full screenshot of the error on the Telegram Channel in the description box

I also have the same error message. How do I fix it?

@@momohcharles7811 Sendinblue is currently experiencing TLS issues after transitioning to brevo will drop an update if I have a possible fix to the problem.

Email spoofing

Sendinblue is now called brevo and regarding if it still works I haven't tried it lately you can try it and give a feedback.

Is it free ?

@@ctf-sec no its not working see the error from sendinblue.Sending has been rejected because the sender you used is not valid. Validate your sender or authenticate your domainValidate your sender or authenticate your domain

​@@gaminggeek4637yeah, did u find any alternative?

The attacker manipulates headers to direct replies to their own email address, allowing them to receive responses in their personal inbox directly.

@@ctf-sec can you please explain how to do that? My idea is that: you place Reply-To tag with a receiving email on the header. Then any reply of receipt can be received on attacker's email (which is there under Reply-To tag). Is that correct?

@@Ashish_painuly You are absolutely correct, Attackers manipulate spoof emails by forging the "From" address and setting a custom "Reply-To" header to receive replies.

Yes the receiving mail server checks if the mail came from the domain it claims and then assign pass or failed status to it and might choose to quarantine based on the policies in the server.

github.com/BishopFox/spoofcheck

There is currently a bug in the sendemail tool which hasn't been fixed yet, here is more information www.reddit.com/r/Kalilinux/comments/15h4bz6/sendemail_tool_doesnt_work/

Thank you for your constructive feedback

Sendmail will work, what you would need is a good email server and a vulnerable domain as explained in the video