Anonymous
Fake Email Software
FakeMailer
Fake Mailer is a powerful
anonymous mailer that allows you to send fake emails
from any email address. You can Send emails
from any email address, either from real email
addresses, non-existant email addresses or even
other email addresses. You can
spoof any email address and send it to anyone you
like.It can send mails with custom headers like,From ID,From Name, X-mailer, priority and Content Type. You can spoof any email address.
Features
| Demo
| FAQ
| Order
Can people send "fake" mail on the Internet?
Yes. People can send mail that looks like it came from someone else. People can
send mail that looks like it was received by more people than actually received
it.
Why is it possible to "fake" mail?
It is possible to fake mail becuase all computer on the internet send mail
around
using something called SMTP - Simple Mail Transfer Protocal - and it is possible
for a human to connect to a computer and pretend that it is another computer by
speaking SMTP. This problem will not go away. Mail programs (both clients and
SendMail servers) will probably learn to better recognize when someone is trying
to send fake mail, but they will most likely never be able to detect EVERYTHING.
How can I "fake" mail?
That is perhaps the question that is hardest to answer and will take the
longest,
so I will start with the basic and most detectable technique and work up to the
most complicated and hard to detect technique. Of course, faking mail
REALLY well
is not such an easy and mechanical process. It requires some amount of creativity
in the techniques you apply. So, lets start with the basics....
The Basics
To send fake mail you need to pretend that you are a computer transferring mail
legitimatly. You start by telnetting to the SMTP socket (25) on the remote
computer. For example, if I wanted to telnet to Cornell's SMTP port I would type
the following from a UNIX prompt:
-> telnet cornell.edu 25
Once you have connected you usually have to issue a "helo" command. You
basically are saying hello to the other computer an telling it who you are. For
now lets just claim to be the computer that we are sending mail "from". For this
example lets pretend to be rf34+@andrew.cmu.edu. Lets send this message to
"jmk17@cornell.edu" (he loves getting junk mail):
< helo andrew.cmu.edu
Sometimes there is an error entering that command. Enter it again and it will
work. After that we have to move on to starting the message and annoucing who it
is from. We do this with the "mail" command. The syntax is "mail from:
<noone@nowhere.com>" where the <>'s are optional on most systems. In out example
we would type:
< mail from: rf34+@andrew.cmu.edu
After specifying who the mail it from we must specify who the mail is to. We do
this by using the "rcpt" command. The syntax of this command is "rcpt to:
<bob@nowhere.com>" where the <>'s are once again optional. This has
nothing to do
with who it APPEARS to get the message. The addresses specified with this
command
will actually receive the message. In our example we would issue the
command like
so:
< rcpt to: jmk17@cornell.edu
Next comes the actual message. You send specify the text of the message is to
follow by using the "data" command to begin and end with a "." on a line by
itself. In our example we would do the following:
< data
> (answerback garbage)
< You suck. I hate you.
< .
Now we're almost done. All we have to do now is quit. We do this by typing
"quit".
< quit
(b) What about the headers?
The above message will be easy to spot as "fake". Instead of saying "To:
jmk17@cornell.edu" it will say "Apparently To: jmk17@cornell.edu". Similar will
happen with from and there will be no subject. To fix these problems we must
manually enter headers for the message. Here I will just talk about the most
important headers - To:, From:, Cc:, and Subject:.
The "To:" header will be who the recipient sees that the message is "To:".
If the
recipient "group replies" he will reply to all people listed after "To:" and
"Cc:" other than himself.
The "From:" header specifies who the message is from. You should always have the
address that you used in the "mail from:" command somewhere here. It looks more
real if you include the persons real name when issuing this command. One way to
do that is to have the email address and then the real name in parenthesis.
The "Subject:" line is what appears to the recipient as the subject. End of
story.
How do I send fakemail?
Telnet to
port 25 of the machine you want the
mail to appear to originate from. Enter your
message as in this example:
HELO bellcore.com
MAIL FROM:somebody@somewhere.com
RCPT TO:whoever@wherever.com
DATA
Please discontinue your silly Clipper
initiative.
.
QUIT
On systems that have RFC 931 implemented,
spoofing your "MAIL FROM:" line
will not work. Test by sending yourself fakemail
first.
For more information read RFC 822 "Standard
for the format of ARPA Internet
text messages."
How do I fake posts to UseNet?
Use inews to post. Give inews the following
lines:
From:
Newsgroups:
Subject:
Message-ID:
Date:
Organization:
For a moderated newsgroup, inews will also
require this line:
Approved:
Then add your post and terminate with .
Example:
From: Name
Newsgroups: Group
Subject: Pathetic bunch of wannabe losers
Message-ID:
Organization: Moral Majority
A pathetic bunch of wannabe losers is what most
of you are, with no
right to steal the honorable title of `hacker'
to puff up your silly
adolescent egos. Get stuffed, get lost, and go
to jail.
^D
Note that many systems will append an
Originator: line to your message
header, effectively revealing the account from
which the message was
posted.
How To Send
"Fake e-mail" by E-HACK
Its Simpler than you think
Disclaimer:
The information contained here is to be used for
educational and
entertainment only, E-HACK is not responsible
for the use of any
information contained here.
There is a list of 50 servers that will work for
this at the bottom
First, you telnet to port 25 (sometimes 19) of a
server, as port 25
is the default mail port. There is a list of 50
servers at the
bottom, that I know work for this
here's an exaple of what comes up:
220 Howdy From mail.airmail.net running Smail
3.1.30.16 (ESMTP) [d/o/u/g] ready
at Thu, 10 Oct 96 00:03:17 -500 (CDT)
then you type:
mail from:whoever@wherever.com (this is who
you're saying it is from)
it says:
250 <whoever@wherever.com> ... Sender Okay
then you type:
rcpt to:somebody@somewhere.com (this is who
you're sending it to)
it says:
250 <somebody@somewhere.com> ... Recipiant
Okay
then you type:
data
it says:
354 Enter mail, end with "." on a line
by itself
you type:
To: somebody@somewhere.com
From: whoever@wherever.com
Subject: The Subject
Say whatever you want here, if you mess up, and
need to change a
line above the one you're working on, don't try
to fix it, it won't
let you, and it'll just spit out crap...
.
(^tells the server that you are done)
it says:
250 Mail accepted
then you type:
quit
Ok, now a recap of just what I(you) type(ed)
MAIL FROM:whoever@wherever.com
RCPT TO:someone@somewhere.com
DATA
From: whoever@wherever.com (Name)
To: someone@somewhere.com
Subject: Whatever
Reply-To: whoever@wherever.com
Your message....
.
QUIT
Thats it, now you know how to send fake e-mail,
its not that hard, try sending yourself one
first just to
make sure you got it...
Mail Servers:
mail.airmail.net:25
mail.geocities.com:25
mnsi.net:25
hacker.com:25
mail.iaw.on.ca:25
pdx.sisna.com:25
jaring.my:25
chollian.dacom.co.kr:25
all-yours.net:25
plix.com:25
ids.net:25
student.uq.edu.au:25
istar.ca:25
total.net:25
mail.tfs.net:25
ecis.com:25
mindspring.com:25
popmail.uc.edu:25
mail.atcon.com:25
future.net:25
aloha.net:25
ovnet.com:25
connect.reach.net:25
valley-internet.net:25
valleynet.com:25
milo.cfw.com:25
scs.august.com:25
hiwaay.net:25
clandjop.com:25
unix.diisd.k12.mi.us:25
erie.net:25
voyager.net:25
awod.com:25
netforward.com:25
netcreations.com:25
mail.wantree.com.au:25
ns.net:25
microserve.net:25
wbs.net:25
hwg.org:25
eff.org:25
europe.std.com:25
misty.com:25
succeed.net:25
mail.discovery.com:25
cnet.com:25
nytimes.com:25
w3.org:25
mail.audionet.com:25
mit.edu:25
Mail Spoofing
Explained
NOTE: this was written with newbies in mind,
thats why it's so simple and
through. If you're more advanced, bear with it
:)
Ok, here is the most through, and explained mail
spoofing article ever
written. First of all, let's define mail
spoofing. Have you ever wanted to
mail somebody anonymously? Have you ever wanted
to send mail from addresses
such as nasa.com, fbi.org, or just about
anything else? Of course you have!
All we need is a telnet client. This method uses
a very simple thing called
smtp, which stands for Simple Mail Transfer
Protocol. Wait, don't run away
yet, it may sound complicated but it really
isn't. Here are the steps you
have to take:
* telnet to port 25 of any web server
* type: mail from: spoofed@adress.com
* type: rcpt to: recipient@of.the.letter.org
* type: data
* type: your message here
* type: .
Does this seam unclear to you? Well, I thought
of that, below are step by
step instructions for windows95:
If you're running win 95:
* click on start, and chose run
* type: telnet in the dialog box
* press enter-a telnet client pops up
* click on "terminal" menu
* chose preferences
* make sure that "Enable local echo"
is checked
* click on the "connect" menu
* click on "remote system"-a dialog
box pops up
* enter any address in the dialog box (example:
www.omnics.co.jp)
* see where it says "port" delete the
stuff inside, and type number 25
* click connect
Ok, now we're connected to the host, see the
little greeting message? good.
Now issue the following command just like you
see them: Replace the
xxx@xxx.xxx.xxx with anything you want, my
personal favorite is
president@whitehouse.org be creative ;)
* mail from: xxx@xxx.xxx.xxx
* rcpt to: place the adress where you wanna send
the mail to here
* data
* type your message here
* .
* (yes, that is a period by itself ;)
Boom, you're done, the mail has been sent :)
Wanna hear a funny thing? This
isn't even illegal :)
Here's a more info on this, which is intended
for a bit more advanced
users, newbies are welcome to read this too, it
explains how this works.
You see, port 25 is the mail port. When you
telnet to the mail port, you
get to talk to the mail daemon. Mail daemons,
speak smpt. Interested in
learning more about smpt? After connecting to
the host, just type "help"
and you'll get some commands to play around
with.
|
