Open In App

BrokenSMTP – Python Script to look common vulnerabilities on SMTP server

Last Updated : 21 Apr, 2022
Improve
Improve
Like Article
Like
Save
Share
Report

SMTP (Simple Mail Transfer Protocol) is a protocol for email clients to move messages between servers, on the way to the end-users. What if the security is been breached in middle? All the messages will be leaked and there will be privacy issues which can lead to financial and personal losses for end-users. So to check if the SMTP server is been breached or not, there is an automated security tool called BrokenSMTP. BrokenSMTP tool is responsible for finding the vulnerabilities in the SMTP server. This tool is created in Python 3 language and has the support of the single port and also multiple ports in the same scan. We can also provide the list consisting of ports on which the tool will find the security flaw. So in this article, we will be installing the BrokenSMTP tool and also we will also try to find the vulnerability in different ports.

Features of BrokenSMTP

  • BrokenSMTP is free and open-source.
  • BrokenSMTP is written in python language.
  • BrokenSMTP is easy to use.
  • BrokenSMTP does not need any external modules.

 

Installation

Step 1: In this step, we will be cloning the BrokenSMTP tool repository from the GitHub platform and navigating to the BrokenSMTP directory in which the python file is been stored.

git clone https://github.com/mrlew1s/BrokenSMTP.git

cd BrokenSMTP

 

Step 2: Now, install the requirements or dependencies by using the following commands. These dependencies are used for the smooth execution of the script.

pip install -r requirements.txt

 

Step 3: All the dependencies have been installed. Now execute the following command to run the tool.

python3 BrokenSMPT.py

 

BrokenSMTP tool is successfully installed on Linux System. Now, we will go through the actual usage of tools in the form of various examples.

Usage of BrokenSMTP tool

Example 1: Use the BrokenSMTP tool to find all the Broken SMPTs on a single port.

python3 BrokenSMPT.py -t SMTPServer -p “port”

In this example, we will be finding all the Broken SMPTs on a single port. Here, we have given port number 25 as an input to the script.

 

The tool is checking for Email Spoofing Vulnerability on port number 25. 

 

Example 2: Use the BrokenSMTP tool to find all the Broken SMPTs on all the ports.

python3 BrokenSMPT.py -t SMTPServer -p “*”

In the above example, we were finding the BrokenSMPT flaw on a single port, but in this example, we will be checking for vulnerability on all the ports. We have specified the “*” option which indicates to find the flaw in all the ports.

 

In the below screenshot, you can see that the tool is checking for vulnerability on every port which is been supported by the tool. This can help the attacker easily get the bug of Email SMPT spoofing on the target SMTP server.

tools 


Like Article
Suggest improvement
Previous
Xcapy - Tool For XSS Detection Suite for CTFs games
Next
Tool-X - Hacking Tool Installer in Kali Linux
Share your thoughts in the comments

Similar Reads

Bash Script - Difference between Bash Script and Shell Script
Optiva Framework - Web Application Vulnerabilities Scanner
How to Scan Vulnerabilities of Websites using Nikto in Linux?
Breacher - Tool To Find Admin Login Pages And EAR Vulnerabilities
PHPvuln – Linux Tool to Find Vulnerabilities in PHP Code
Using Metasploit and Nmap to Scan for Vulnerabilities in Kali Linux
Router Vulnerabilities in Kali Linux
Batch Script - How to check if a process is running via a Batch Script
How to write a shell script that starts tmux session, and then runs a ruby script
Shell Script to Put File in a FTP Server

M
mohdshariq
Article Tags :
We use cookies to ensure you have the best browsing experience on our website. By using our site, you acknowledge that you have read and understood our Cookie Policy & Privacy Policy
Lightbox