Skip to content

shoeper-forks/spoofcheck

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

22 Commits

libs

libs

 
 

.gitignore

.gitignore

 
 

Dockerfile

Dockerfile

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

requirements.txt

requirements.txt

 
 

spoofcheck.py

spoofcheck.py

 
 

Repository files navigation

spoofcheck

Forked from https://github.com/BishopFox/spoofcheck

Differences from original

  • code refactoring
  • port to python3
  • Dockerfile

About

A program that checks if a domain can be spoofed from. The program checks SPF and DMARC records for weak configurations that allow spoofing.

Additionally it will alert if the domain has DMARC configuration that sends mail or HTTP requests on failed SPF/DKIM emails.

Usage:

./spoofcheck.py [DOMAIN]

Domains are spoofable if any of the following conditions are met:

  • Lack of an SPF or DMARC record
  • SPF record never specifies ~all or -all
  • DMARC policy is set to p=none or is nonexistent

Dependencies

  • dnspython
  • colorama
  • py-emailprotection
  • tldextract

Setup

Run pip install -r requirements.txt from the command line to install the required dependencies.

Docker setup

docker build -t spoofcheck .
docker run -it --rm spoofcheck [domain]

Thanks

https://github.com/BishopFox

About

Simple script that checks a domain for email protections

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages

  • Python 97.7%
  • Dockerfile 2.3%