How to Spoof 97% of Email Accounts

Great video - noted that DMARC fail usually goes to spam folders now (at least on Gmail). Still doesn't prevent spoofing unless the DMARC record is set though. Love it!

nikorod

This is a holy grail if my African friend found this video!! this is kinda out of the topic of the awareness its more to from small spammer become guru of the email spoofer BUT!! this is must people know about it so they know how degerous is the Phishing don't always belive what you seeing and don't ever click on what you see on your email its 95% security patch 5% human error this kinda of human error that never can be patched! SALUTE FOR THE VIDEO!

adriankatong

Hey, which is better.
Sending email using self written normal python script or using gophish.

girl

Lol I had a look at the Collage I am currently studying at and found they don't even have a DMARC record.

lifediggerdev

hi quick one, when trying to access gophish this doesn't load at all, no errors in the console

nyth

How does mimecast & proofpoint handle spoof emails. Will the emails get through to the inbox?

unoallin

Does this still work? I think I have rebuild on digital ocean about 10 times now... Still no sent email

neilmcrae

This is nice, but can you reply to the emails after sending it? it seems it will only be sent once, but cant actually have a conversation in email

thomaslium

Digital ocean blocks port 25. Any solution for this

jeffdelancey

My mails not inboxing non of them how is that possible?

dannyocean

is there need to buy the domain. i have contabo vps server so how i can do it using contabo

judithAvery-oc

I’m trying to send a test email but after a while getting an error that says “Max connection attempts exceeded - EOF” anyone know why?

marqueemoon

Hello Powell, just a question, I made authentication with a password not with a ssh key, what is the command to install mail-spoofing on digital ocean becuase "scp -r .\Deskptop\mail-spoofer\ spoof:/tmp" doesn't work to me, I hope you can answer me :) (min 46:36 of the video)

axelnuno

Also using Mac OS how do I get mail spoofer to my server the scp code doesn’t seem to work

harryhodgson

I got this to work pretty quickly! Thank you so much! One issue that I ran into was that I need to also spoof the IP address that I'm sending from because the SPF record is set to a certain IP range. Gmail allows the mail to go through, but my organization catches the mail and it does not get delivered. I was thinking about using scapy to try and write a python program, but it isn't working. Do you have any solution for this?

jedbooth

Thank you for the informational video, this was incredibly valuable!

jak

how did you end up getting a domain from go daddy? and is there any free alternatives if possible?

axoz

Hey I'm getting an error after running docker-compose up, container stays stuck at caddy with acme challenge tls error, can I get some assistance please.

Alexis-rjs

Do you know how could I possibly resolve postfix timing out? It shows email sent, but the ubuntu says postfix keeps timing out and no email is received.

nyshone

Hey man thank you so much! This was super informative both in the explanation at the beginning and in the demo at the end. I learned a lot and can't thank you enough!! As I was following along with the demo when it finally came to sending the test email, all the connections timed out and nothing was sent. Everything up to then was setup perfectly, my cloudflare was automatically completed with the DNS entries, and I could access the gophish portal perfectly. Just wondering if you know of any fix to this problem or if you have any ideas? Once again thank you for the great work and great lecture!!

xwtnzxg