0x00 swaks简介
Swaks是一个功能强大,灵活,可编写脚本,面向事务的SMTP测试工具,由John Jetmore编写和维护。
目前Swaks托管在私有svn存储库中。官方项目页面是http://jetmore.org/john/code/swaks/
下载安装:(kali系统下自带,如果出错,可使用以下地址下载安装)
v20181104.0发行版:http://jetmore.org/john/code/swaks/files/swaks-20181104.0.tar.gz
前提条件:yum install ?perl ?(centos下)
tar zxvf swaks-20181104.0.tar.gz
cd swaks-20181104.0.
http://www.zztongyun.com/article/swaks
0x01 ?Swaks使用
1.基本使用语法:
1).swaks --to [email protected] //测试邮箱的连通性;
root@localhost swaks-20181104.0]# http://www.zztongyun.com/article/swaks --to @qq.com
*** MX Routing not available: requires Net::DNS. Using localhost as mail server===Trying localhost:...===Connected to localhost.
EHLO localhost
This is a test mailing
->
->
-> .
QUIT
.
QUIT
by mail..cn (Postfix) with ESMTP id 4C16720797
-> for ; Sun, Jan :: + (CST)
-> Date: Sun, Jan :: + (CST)
-> From: "[email protected]"
-> To: "backl×@163.com"
-> Message-ID:
-> Subject: 网上购票系统-用户密码找回
-> MIME-Version: 1.0
-> Content-Type: multipart/alternative;
-> boundary="----=_Part_18623781_1540198882.1546749630360"
->
-> ------=_Part_18623781_1540198882.
-> Content-Type: text/html; charset=gbk
-> Content-Transfer-Encoding: quoted-printable
->
->
->
->
->
->
->=CD=A8=D6=AA=D3=CA=BC=FE
->
->
->
->
->
->===09style=3D"border-spacing: 0; color: #333333; border: 1px solid #f1f1f1=-> ; margin-left: auto; margin-right: auto;">
->==->===->====![](http://www.zztongyun.com/article/3D"http://mobile.12306.cn/weixin/resources/weixin/imag=br)
->===->==->==->=======09style=3D"padding-left: 20px; padding-right: 20px; background: u=-> rl(http://mobile.12306.cn/weixin/resources/weixin/images/mail/mail_train.jp=-> g); background-position: bottom right; background-repeat: no-repeat;">
->=========09style=3D"border-spacing: 0; color: #333333;">
->=====->=============09style=3D"font-size: 16px; height: 40px; font-weight: b=-> old;">
->========D7=F0=BE=B4=B5=C4=CE=->=C4=BA=A3=B8=D5=CF=C8=C9=FA=A3=BA
->======->=====->=====->======->========C4=->=FA=BA=C3=A3=A1
->========C4=->=FA=D4=DA2019=C4=EA01=D4=C206=C8=D5=CA=B140=B7=D6=CC=E1=BD=BB=D5=D2=BB=->=D8=C3=DC=C2=EB=C7=EB=C7=F3=A3=AC=C7=EB=B5=E3=BB=F7=CF=C2=C3=E6=B5=C4=C1=B4=->=BD=D3=D0=DE=B8=C4=D3=C3=BB=A7wen129=B5=C4=C3=DC=C2=EB:
->======->=====->=====->======->=======->========->=========ord/changePassWord?uuId=3D5a3c9813-f6f6-4b6c-b7e7-6d634f06f0f1&lostTimeToDb=->=3DF4AC92B54775FF543B1CDA2D8EB76EC9566489C1E9535098B1238FBC>https://kyfw.12=-> .cn/otn//forgetPassword/changePassWord?uuId=3D5a3c9813-f6f6-4b6c-b7e7-6d=-> 634f06f0f1&lostTimeToDb=3DF4AC92B54775FF543B1CDA2D8EB76EC9566489C1E9535098B=-> 1238FBC
->========->========->========->=========(=C8=E7=B9=FB=C4=FA=CE=DE=B7=A8=B5=E3=BB=F7=D5=->=E2=B8=F6=C1=B4=BD=D3=A3=AC=C7=EB=BD=AB=B4=CB=C1=B4=BD=D3=B8=B4=D6=C6=B5=BD=->=E4=AF=C0=C0=C6=F7=B5=D8=D6=B7=C0=B8=BA=F3=B7=C3=CE=CA)
->========->========->========->==========CE=AA=C1=CB=B1=A3=D6=A4=C4=FA=D5=CA=BA=C5=B5=C4=->=B0=B2=C8=AB=D0=D4=A3=AC=B8=C3=C1=B4=BD=D3=D3=D0=D0=A7=C6=DA=CE=AA24=D0=A1=->=CA=B1=A3=AC=B2=A2=C7=D2=B5=E3=BB=F7=D2=BB=B4=CE=BA=F3=BD=AB=CA=A7=D0=A7!
->========->========->==========C9=E8=D6=C3=B2=A2=C0=CE=BC=C7=C3=DC=C2=EB=B1=A3=->=BB=A4=CE=CA=CC=E2=BD=AB=B8=FC=BA=C3=B5=D8=B1=A3=D5=CF=C4=FA=B5=C4=D5=CA=BA=->=C5=B0=B2=C8=AB=A1=A3
->========->========->==========C8=E7=B9=FB=C4=FA=CE=F3=CA=D5=B5=BD=B4=CB=B5=E7=->=D7=D3=D3=CA=BC=FE=A3=AC=D4=F2=BF=C9=C4=DC=CA=C7=C6=E4=CB=FB=D3=C3=BB=A7=D4=->=DA=B3=A2=CA=D4=D5=CA=BA=C5=C9=E8=D6=C3=CA=B1=B5=C4=CE=F3=B2=D9=D7=F7=A3=AC=->=C8=E7=B9=FB=C4=FA=B2=A2=CE=B4=B7=A2=C6=F0=B8=C3=C7=EB=C7=F3=A3=AC=D4=F2=CE=->=DE=D0=E8=D4=D9=BD=F8=D0=D0=C8=CE=BA=CE=B2=D9=D7=F7=A3=AC=B2=A2=BF=C9=D2=D4=->=B7=C5=D0=C4=B5=D8=BA=F6=C2=D4=B4=CB=B5=E7=D7=D3=D3=CA=BC=FE=A1=A3
->========->========->==========C8=F4=C4=FA=B5=A3=D0=C4=D5=CA=BA=C5=B0=B2=C8=AB=->=A3=AC=BD=A8=D2=E9=C4=FA=C1=A2=BC=B4=B5=C7=C2=BC=A3=AC=BD=F8=C8=EB=A1=B0=CE=->=D2=B5=C412306=A1=B1=A3=AC=C3=DC=C2=EB=D0=DE=B8=C4=D6=D0=D0=DE=B8=C4=C3=DC=->=C2=EB=A1=A3
->========->=======->======->=====->=====->======->===============09style=3D"border-spacing: 0; color: #333333;">
->========->=========->===================09style=3D"text-align: center; height: 24px; fo=-> nt-size: 12px;">
->==========![](http://www.zztongyun.com/article/3D"http://mobile.12306.cn/weixin/res=br) ==========09alt=3D"logo" width=3D"" height=3D""
->==========09style=3D"vertical-align: bottom; margin-right=-> : 10px;">=D6=D0=B9=FA=CC=FA=C2=B7=BF=CD=BB=A7=B7=FE=CE=F1=D6=D0=D0=C4
->=========->========->========->=========->===================09style=3D"text-align: center; height: 24px; fo=-> nt-size: 12px;">2019=C4=EA01=D4=C206=C8=D5
->========->=======->======->=====->=====->======->=======![3D""](http://www.zztongyun.com/article/3D"http://mobile.12306.cn/weixin/resources/we=br)
->======->=====->====->===->==->=->
->
->
-> ------=_Part_18623781_1540198882.--
->
->
-> .
QUIT
Swaks绕过SPF验证进行邮件伪造的更多相关文章
SPF难以解决邮件伪造的现状以及方案
邮件伪造的现状 仿冒域名 私搭邮服仿冒域名: 例如某公司企业的域名是example.com,那么攻击者可以搭建一个邮服,也把自己的域名配置为example.com,然后发邮件给真实的企业员工xxx@e ...
邮件伪造测试-Swaks
1. 前言 在kali中自带一个邮件伪造工具Swaks,工具项目主页为 http://jetmore.org/john/code/swaks 2.基本用法: swaks --to --from --e ...
利用SPF记录缺失发送伪造邮件
SPF,也就是 Sender Policy Framework 的缩写,是一种以IP地址认证电子邮件发件人身份的技术,是非常高效的垃圾邮件解决方案. 如何查询所属域名邮箱的SPF记录? 查询的结果,从 ...
SPF邮件伪造漏洞测试脚本
测试脚本: # -*- coding: utf-8 -*- import socket,select,base64,os,re,time,datetime class mail: def __init ...
[Java] 绕过证书验证调 HTTPS 接口时报 “SSLHandshakeException: DHPublicKey does not comply to algorithm constraints”的解决办法
作者: zyl910 一.缘由 最近有在对接一个无证书的HTTPS接口时,总是收到"SSLHandshakeException: DHPublicKey does not comply to ...
OD之绕过序列号验证(二)
上次是修改程序的标题,大家应该感觉这只是一个起点而已,接下来我们可以尝试绕过序列号验证,这种技术应用在很多软件中,比如淘宝上要买什么的软件,商家都会发给`你一个用户名和密码,而且还有试用期什么的,这确 ...
轻松把玩HttpClient之配置ssl,采用绕过证书验证实现https
上篇文章说道httpclient不能直接访问https的资源,这次就来模拟一下环境,然后配置https测试一下.在前面的文章中,分享了一篇自己生成并在tomcat中配置ssl的文章 | 
