Emails

Find email adresses

https://hunter.io/discoverhunter.io

Mail is used on different sites like twitter, etc.

GitHub - megadose/holehe: holehe allows you to check if the mail is used on different sites like twitter, instagram and will retrieve information on sites with the forgotten password function.GitHub

Social Media

Email Spoofing

Check SPF, DKIM, DMARC

# dig TXT _dmarc.domain.com

; <<>> DiG 9.18.24-1-Debian <<>> TXT _dmarc.domain.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7149
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;_dmarc.domain.com.		IN	TXT

;; AUTHORITY SECTION:
domain.com.		60	IN	SOA	dns112.blah.net. tech.blah.net. 2024102800 86400 3600 3600000 60

;; Query time: 63 msec
;; SERVER: 127.0.0.53#53(127.0.0.53) (UDP)
;; WHEN: Mon Nov 18 23:41:06 EST 2024
;; MSG SIZE  rcvd: 104

ANSWER: 0 -> DMARC not configured 

Strict DMARC policy (such as “p=reject”) is not defined.

GitHub - CanIPhish/CanIBeSpoofed: CanIBeSpoofed is a console project utilising functionality built for the https://caniphish.com/free-phishing-tools/email-spoofing-test website. This project facilitates scanning of domains to gain visibility over email supply chain and SPF/DMARC vulnerabilities.GitHub

GitHub - MattKeeley/Spoofy: Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.GitHub

./spoofy.py -d domain.com

How To Spoof An Email Address In 5 StepsCanIPhish

Phishing: how to prevent email spoofing? [SPF, DKIM, DMARC]VAADATA - Ethical Hacking Services

https://www.youtube.com/watch?v=lR_Ck3-_AGQ

https://app.brevo.com/

Google Account - GHunt

GitHub - mxrch/GHunt: 🕵️‍♂️ Investigate Google emails and documents.GitHub

Extract email from commit history in GitHub repos

GitHub - Imp0sters/Gitmail-Harvester: Gitmail Harvester is a powerful OSINT/Red Team and Pentest tool designed to extract email addresses from commit history in GitHub repositoriesGitHub