Skip to content

Latest commit

 

History

History
33 lines (23 loc) · 973 Bytes

README.md

File metadata and controls

33 lines (23 loc) · 973 Bytes

spoofcheck

A program that checks if a domain can be spoofed from. The program checks SPF and DMARC records for weak configurations that allow spoofing.

Additionally it will alert if the domain has DMARC configuration that sends mail or HTTP requests on failed SPF/DKIM emails.

Forked from the original BishopFox/spoofcheck

Usage:

./spoofcheck.py [DOMAIN]

Domains are spoofable if any of the following conditions are met:

  • Lack of an SPF or DMARC record
  • SPF record never specifies ~all or -all
  • DMARC policy is set to p=none or is nonexistent

Dependencies

  • dnspython
  • colorama
  • emailprotectionslib
  • tldextract

Setup

  1. Ensure you have pipenv installed: pip install pipenv.
  2. Run pipenv install from the command line to install the required dependencies.
  3. Run the program using pipenv run ./spoofcheck.py

Coming Soon

  • Standalone Windows executable
  • Basic GUI option
  • Tests