Sponsored by: █ Sparkhost - Hosting Without Compromises! █ Hybrid Performance Web Hosting █ Spark Host Stream Hosting █ Hybrid IRC & IRCd Server Shell Accounts
Fake E-mail "how To" Demonstration
Posted 01 September 2003 - 05:39 PM
1.use your telnet program to connect to the victims server
How do you know the server? Most mail servers run on port 25. The name of the mail server is after the @ with mail appended to the front (except for big "on-line conglomerates"). So, your victim is firstname.lastname@example.org . We then execute the command:
telnet mail.thevictimserver.com 25
for yahoo.com, telnet mx1.mail.yahoo.com 25 . Same with most other big companys.
When you connect, you will get something like:
220 YSmtp mta102.mail.scd.yahoo.com ESMTP service ready
mail from: <email@example.com>
250 sender <firstname.lastname@example.org> ok
rcpt to: <email@example.com>
250 recipient <firstname.lastname@example.org> ok
354 Please start mail input.
subject: fake mail
from: no one bitch
to: a stupid, stupid man
this is the total syntax. Let's review, now shall we? these are the commands issued in order.
mail from: <email@example.com>
rcpt to: <firstname.lastname@example.org>
subject: data starts the mail input
from: this displays the from
to: this displays the to
make sure to hit enter twice after date to give it an "authentic" look. to end this message, leave a period "." on a line by itself and hit enter.
and so the mail gets sent after you quit. Tons of fun
Posted 02 September 2003 - 01:03 AM
Posted 02 September 2003 - 02:24 PM
very useful in the area of
social engineering if you think
about it for a while you may
come with greate idea's to use
"Fake mails" as a tool to get
what you want.
Posted 10 September 2003 - 11:13 PM
Posted 26 September 2003 - 09:06 AM
Posted 27 September 2003 - 10:25 AM
I wanted to use telnet also , but in a lot of articles they explain that you first need a shell.
In relation with that , I know someone who serves his pc ass a shell on the net.
You can find him on http://www.hackpalace.com/en/ and click shells.
But I just saw that it was a pay shell.Sorry for giving you hope.I didn't knew it ether.
The simpel way is to ask your provider to activate a shelll for you.
Posted 29 September 2003 - 07:34 AM
Posted 29 September 2003 - 07:58 AM
Sometimes the telnet client doesn't display what you're typing in so you have to be real careful to make sure you type everything correctly.
Serach around in here i'm sure i've seen an article which says how to make the typing visible.
As for not being able to connect,Are you behind a firewall?Some isps also block port 25,but i've never worked out why they might do this.
Posted 30 September 2003 - 07:51 PM
Posted 01 October 2003 - 06:23 AM
nice tut. though
Posted 05 November 2003 - 10:07 PM
thor.atlradio.com (send to radio stations)
mail.futon.k12.ga.us (send mail to my school)
mail.fultonschools.org (send mail to my school)
this is not for "true" fake mails, you can still pull apart the header and find the ip, but chances are teachers are not going to question an e-mail this much, and they'll just do what it says if it come from the correct source.
Posted 06 November 2003 - 06:44 PM
i really don understand this...
Posted 07 November 2003 - 05:28 AM
You can then telnet to the vic, which will hide your true IP from the mail server.
If you are very paranoid, then you can chain several vics together.
Posted 19 December 2003 - 07:33 PM
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users