[BT5] E-mail Harvesting 01-29-2013, 04:33 PM
#1
Hello, HackCommunity!
I decided to share a simple, but yet functional method with you guys.
All you need is metasploit(the operating system is not of importance.)
This is a way to harvest e-mails from certain domains, that subsequently can be used for spamming, social engineering and whatnot.
1. Make sure your terminal is open.
![[Image: O8gWM49.jpg]](http://i.imgur.com/O8gWM49.jpg)
2. Your version of BackTrack is necessary here. If you are using the newest version(R3), type the following:
![[Image: B9eMi9l.png]](http://i.imgur.com/B9eMi9l.png)
3. Now type "msfconsole", and allow it to load metasploit(can take a couple seconds):
![[Image: mQ2Sjlx.png]](http://i.imgur.com/mQ2Sjlx.png)
4. Enter "use auxiliary/gather/search_email_collector", and this should appear on your screen:
![[Image: ku6QZJU.png]](http://i.imgur.com/ku6QZJU.png)
5. Now specify your target, by typing this: "set domain (target)" - like this:
![[Image: La9meA4.png]](http://i.imgur.com/La9meA4.png)
6. Simply type "run", and it should start listing all the e-mails of the domain.
![[Image: NRSCvZU.png]](http://i.imgur.com/NRSCvZU.png)
These can be used however you like. In this example, we found "billing@ng-gaming.net", which is actually their paypal e-mail, therefore this is a possible threat to any website Administrator, because there's myriad of ways to hi-jack an e-mail.
Have fun.
I decided to share a simple, but yet functional method with you guys.
All you need is metasploit(the operating system is not of importance.)
This is a way to harvest e-mails from certain domains, that subsequently can be used for spamming, social engineering and whatnot.
1. Make sure your terminal is open.
2. Your version of BackTrack is necessary here. If you are using the newest version(R3), type the following:
3. Now type "msfconsole", and allow it to load metasploit(can take a couple seconds):
4. Enter "use auxiliary/gather/search_email_collector", and this should appear on your screen:
5. Now specify your target, by typing this: "set domain (target)" - like this:
6. Simply type "run", and it should start listing all the e-mails of the domain.
These can be used however you like. In this example, we found "billing@ng-gaming.net", which is actually their paypal e-mail, therefore this is a possible threat to any website Administrator, because there's myriad of ways to hi-jack an e-mail.
Have fun.
![[+]](https://sinister.ly/images/modern/collapse_collapsed.png)