Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
myhack58佚名MYHACK58:62200610304
HistoryJul 10, 2006 - 12:00 a.m.

Anonymous Email any of my hair--illustrates the forged messages Raiders-vulnerability warning-the black bar safety net

2006-07-1000:00:00
佚名
www.myhack58.com
8
JSON

writer: demonalex/small gods
email: demonalex_at_hackermail.com

Now traditional send anonymous letter approach is the use of certain so-called mail proxy(named proxy, in fact, mostly for some of the configuration
Defective SMTP server), by their manual or some third-party software and mail agent for the MIME language of negotiation so as to
Send anonymous EMAIL. However the limitations of this approach a lot:need to have a mail proxy server; when necessary, also need to use MIM
E language format; letters it is possible in the transmission process to be certain the filter killing. What better solution? Other
The mail agent of control to the others, might as well make one yourself?:) it. How to customize a Send anonymous EMAIL and
The presence of a mail proxy server? Not difficult, I have on hand is one such software, which is called Advanced Direct R
emailer is. Let’s experiment to see whether it is really that simple.

Experimental principle:
The user client software->Advanced Direct Remailer mail Agent->network-mail address to pass->other email service
Controller->the other side of the receiving client

Experimental environment:
Local client: Pwin2000 Professional
China Telecom ADSL
Outlook Express
Advanced Direct Remailer version 2.18
------------------------------------------------------------------------------------
Appendix:Advanced Direct Remailer version 2.18 download address
http://demonalex.nease.net/adr.rar
------------------------------------------------------------------------------------
The remote destination end: 使用 Webmail 类型 的 企业 邮箱 @dark2s.org(here the author is using their own mailbox demonalex@
dark2s.org)

The purpose of the experiment/results: able to mimic other people’s email address to send EMAIL to any of the specified mailbox(in this example, the author intends to make
With Bill Gates/[email protected] 这个 邮件 地址 向 本人 的 demonalex@da
rk2s. the org sent an EMAIL…PS:hope the old than don’t sue me for infringement just fine…:P)

Specific experimental procedure:

We must first on their machines to install Advanced Direct Remailer this software.
!
(Very traditional installation process…)
When the installation is done launch the software, then you will be in the WINDOWS desktop lower right corner of the task bar section and saw a blue class
Similar to the direction indicating pattern of the icon.
!
Now you just use the mouse left-click this small icon can be conjured Advanced Direct Remailer main interface.

!
In fact, from you launch this app from the moment, the DIY of the SMTP server have been able to put to use, and what you
Do not believe? Let’s look at the Active Ports of the associated SOCKET information.:

!
(See? From your start Advanced Direct Remailer at the moment, your machine is already a SMTP server
A)

Somehow the SMTP proxy server, the next step is to set the client(here refers to Outlook Express), which is the whole
Experimental operation of the focus. Open Outlook Express, click the menu bar“tools”->“account…
.”, the At this time jump out of the“Internet Accounts”dialog box-click it offset to the right from the number of the first button“Add”->
“Mail to…”. Next we will see a“Internet Connection Wizard”dialog box.

!

(Here fill in the“Bill Gates”…PS:is the infringement of the time…^_^)
The next is the mailbox of the address…(PS:you should know how to do it, right?!)
!
The last remaining one must be set of the is mail server address. In the“outgoing mail server(SMTP)”
Fill in the loop-back address is 1 2 7. 0. 0. 1, that is, the use of this machine as the SMTP server. As if there is a no set? Yes, connected
Incoming mail server address has not been set, but as we say Here is anonymous email, also talk about what to receive? However
“Receiving mail(POP3,IMAP or HTTP)server”that does nothing to fill the words are unable to go to the next link, will be a
Also fill in 1 2 7. 0. 0. 1.
!
Next came setting the authentication password or something…don’t bother with it, directly press“Next”on it…
!
The entire set-up process was completed.
!
------------------------------------------------------------------------------------
Tips:just set the“receive mail(POP3,IMAP or HTTP)Server”one, we fill the loop back address is 1 2 7. 0. 0
.1 because the Advanced Direct Remailer itself is not incidental to the collection service, and we own the machine didn’t
Have installed the POP3 like server-side software, so we need to just set the account properties, remove the“pick
Receiving mail or synchronizing when the Include this account”, so the next time you start Outlook Express, it will not be because
Can’t find the receiving mail server and the error message…(set the following figure)

!
------------------------------------------------------------------------------------

Now we can try to send a forged mail.
!
Finished press the“Send”button, then you can find on the desktop The lower right corner of the small blue icon of a small envelope pattern:
!
With the left mouse button click Wake-Up Advanced Direct Remailer’s main interface.!
In the main interface of the display area to see us just to send that e-mail? Select it, and click the toolbar on the Send button:
!
OK, now we can be in the Advanced Direct Remailer main display area of the“Sent”tab to see About just that e EMA
IL send a records(PS:if the transmission is unsuccessful, the record will appear in the“Bad”tab).! is the“harvest”time. Let’s see how the result…

!
Hey Hey, the effect is good. it???

!
Let’s look at this method of reverse tracing of how, most of the security experts is through the EMAIL header information to identify this EMAI
L of authenticity. Let’s look at the information in the sensitive part of it:
Received: from localhost (unknown [218.19.42.198])
by 192.168.1.215 (Coremail) with SMTP id jABfGIQQyEAFACrG. 1
for the < [email protected] the>; Thu, 1 0 Jun 2 0 0 4 1 5:4 0:5 8 +0 8 0 0 (CST)
X-Originating-IP: [218.19.42.198]
Message-ID: < a 004301c44ebb$f7ead630$5c36fea9@demonalevn2kah〉
From: “Bill Gates” < a [email protected] a >
T < [email protected] a >
Look at the first row immediately after the from information and the fourth row of the X-Originating-IP, they are obviously exposed to our
Machine’s IP addressThis will do for us this type of behavior is anti-tracking and sow the seeds of…how to effectively solve this
Defect problem? Now we go back to the Advanced Direct Remailer in the main interface, click the menu bar of the“Delivery”-
>“General Settings…”(as shown).

!

The selected“Proxy”(proxy server settings)page and hit live SOCK5 proxy Agent can be effectively escaped other people.
Trace.
------------------------------------------------------------------------------------
Tip:most users will By in the meat machine to install the software on skserver, in order to establish their own SOCK5 proxy.
Glossary:
Meat machine: after the invasion’ve got full control of the machine.
skserver: the Snake is written in the command line to run the SOCK5 proxy server Program now has a GUI version.
skserver download address: http://wvw.ttian.net/download/show.php?id=447
------------------------------------------------------------------------------------

The article is introduced to here, 如有疑问欢迎EMAIL至[email protected]与我联系 Thank you.

! ! !

JSON