Git Product home page Git Product logo

khanejo / domainspoof-detector Goto Github PK

View Code? Open in Web Editor NEW
9.0 2.0 0.0 5.07 MB

This utility is a Django based project that checks the implementation and configuration of protocols like SPF, DKIM, DMARC, and DNS configuration to find out if the mailing server is spoofable or not !!

License: Apache License 2.0

Python 37.93% CSS 42.91% HTML 19.16%
domain-forgery-attacks email-spoofing email-validation email-verification django spoofing-attack hacktoberfest2020 hacktoberfest

domainspoof-detector's Introduction

domainspoof-detector

This utility is a django based project that checks implimentation and configuration of protocols like SPF, DKIM, DMARC and DNS to find out if the mailing server is spoofable or not !!

Run it by installing django and requirements.txt and then python3 manage.py runserver --noreload --nothreading

image1

According to our tool,experiment was conducted on the top 10 mailing service providers:

Amongst these,

gmail.com, outlook.com and mailbox.com

had liberal DMARC policies, which allows us to send spoofed emails to their users without raising any red flags.

msgsafe.io and gmx.com

had no DMARC implimentation, thus any email could be easily spoofed and sent to any addresses.

Some other experiments were conducted against some of the

prestigious educational institutions of India and many of those were found to be spoofable

and any spoofed email from their facult members email could be sent to these liberal policy and no DMARC implimentation services.(Huge Concern )

Salient features of my utility:

  1. Easy interface and easy to visualize graphs

  2. Detailed report of information regarding protocols and DNS server

  3. Easily customizable( add your own domain/IP blacklists)

  4. Has email parsing features, which parse and segregate email parts for further analysis(have left a dead for integration of virustotal to the scrapped )

image2

Enter:

Suspected Domain , its selector and a normal email file(which we would like to parse{.eml})

image3

Easy to visualize results

image4

Detailed record information parsed

image5

DMARC and DNS information of the domain

image1

Other security related information

image1

Email parsing modules result

image8

EAsy to visualize results

domainspoof-detector's People

Contributors

khanejo avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.