This utility is a django based project that checks implimentation and configuration of protocols like SPF, DKIM, DMARC and DNS to find out if the mailing server is spoofable or not !!
Run it by installing django and requirements.txt and then python3 manage.py runserver --noreload --nothreading
According to our tool,experiment was conducted on the top 10 mailing service providers:
Amongst these,
had liberal DMARC policies, which allows us to send spoofed emails to their users without raising any red flags.
had no DMARC implimentation, thus any email could be easily spoofed and sent to any addresses.
Some other experiments were conducted against some of the
and any spoofed email from their facult members email could be sent to these liberal policy and no DMARC implimentation services.(Huge Concern )
-
Easy interface and easy to visualize graphs
-
Detailed report of information regarding protocols and DNS server
-
Easily customizable( add your own domain/IP blacklists)
-
Has email parsing features, which parse and segregate email parts for further analysis(have left a dead for integration of virustotal to the scrapped )
Enter:
Suspected Domain , its selector and a normal email file(which we would like to parse{.eml})
Easy to visualize results
Detailed record information parsed
DMARC and DNS information of the domain
Other security related information
Email parsing modules result
EAsy to visualize results