i'm going to give you the appended version, and facts that you will need to know
1.use your telnet program to connect to the victims server
How do you know the server? Most mail servers run on port 25. The name of the mail server is after the @ with mail appended to the front (except for big "on-line conglomerates"). So, your victim is asdf@thevictimserver.com . We then execute the command:
telnet mail.thevictimserver.com 25

for yahoo.com, telnet mx1.mail.yahoo.com 25 . Same with most other big companys.

When you connect, you will get something like:

220 YSmtp mta102.mail.scd.yahoo.com ESMTP service ready
ehlo
250-mta102.mail.scd.yahoo.com
250-8BITMIME
250-SIZE 10485760
250 PIPELINING
mail from: <what@yahoo.com>
250 sender <what@yahoo.com> ok
rcpt to: <what@yahoo.com>
250 recipient <what@yahoo.com> ok
data
354 Please start mail input.
subject: fake mail
from: no one bitch
to: a stupid, stupid man
date: none

hello friend.
.
quit

this is the total syntax. Let's review, now shall we? these are the commands issued in order.

ehlo
mail from: <whateveryouwant@alegitimatedomain.com>
rcpt to: <thevictim@victim.com>
data
subject: data starts the mail input
from: this displays the from
to: this displays the to
date: date

make sure to hit enter twice after date to give it an "authentic" look. to end this message, leave a period "." on a line by itself and hit enter.
.
quit

and so the mail gets sent after you quit. Tons of fun

thanx for that very useful

im using it for along time
very useful in the area of
social engineering if you think
about it for a while you may
come with greate idea's to use
"Fake mails" as a tool to get
what you want.

One problem with this which i'm sure some of you are aware of is that they can simply look in the header of the email to lookup IP's and the such, although this tends to vary between the host/ sendmail or whatever used.

well i'm on win xp home edition and gave this a shot. Well if i try using telnet.exe it sits there then finally says Could not open connection to host on port 25 : Connection failed.I typed exactly what u did.I've also tried connecting to other telnet things but nothing ever comes up once i'm connected and I cannot type anything the cursor just sits there on the black background.Perhaps i just need to read up on it more.. if it's as easy as u posted... is there something wrong with my computer itself or what am I doing wrong... thanks

I think that your problem is that you don't have a shell.

I wanted to use telnet also , but in a lot of articles they explain that you first need a shell.

In relation with that , I know someone who serves his pc ass a shell on the net.

You can find him on http://www.hackpalace.com/en/ and click shells.

But I just saw that it was a pay shell.Sorry for giving you hope.I didn't knew it ether.

The simpel way is to ask your provider to activate a shelll for you.

doesnt like... evrey half decent hacker on the planet know how 2 do that? lol its gud tho and for the ppl that dont know, it works on like nearly every mail server on the planet lol even the biggies sending fake mail rulz!

Mehmehmeh , I done this a few times and it worked ok.

Sometimes the telnet client doesn't display what you're typing in so you have to be real careful to make sure you type everything correctly.

Serach around in here i'm sure i've seen an article which says how to make the typing visible.

As for not being able to connect,Are you behind a firewall?Some isps also block port 25,but i've never worked out why they might do this.

Ta.

I just like to say thanks for the feedback, chances are most people do know how to do this, it's just that I haven't seen any articles explaining this before, and therefore I thought it might be nice to write one. I'll be posting a list of mail servers that this works on later, and I think that we should start a section showing Anonymous SMTP servers so tracking true IP addresses will no longer be an issue when you pull apart the header of a e-mail. The funny thing is, I have seen organizations that have multiple SMTP mail servers, which gives you the ability to mask your IP from server to server. Just something I've noticed. Anyways, thanks for the feedback, this forum was looking a little scare, and I believe this has helped a little.

i don't understand why everyone uses Telnet for everything. any SMTP client can produce fake emails if the SMTP server allows open relay. Honestly, besides some fancy trick for your fiends- this technique isn't very useful. if the header:source:address doesn't match the @.com then the email is dropped (in our mail:filter)

nice tut. though

relaycheck.pl v0.3 - relaycheck scans a network for vulnerable SMTP hosts that permit "relaying" of email. By David Weekly.

http://packetstorm.linuxsecurity.com/UNIX/...s/relaycheck.pl

mx1.mail.yahoo.com
mx2.mail.yahoo.com
mx4.hotmail.com
mx3.hotmail.com
mx2.hotmail.com
mx1.hotmail.com
thor.atlradio.com (send to radio stations)
mail.futon.k12.ga.us (send mail to my school)
mail.fultonschools.org (send mail to my school)

this is not for "true" fake mails, you can still pull apart the header and find the ip, but chances are teachers are not going to question an e-mail this much, and they'll just do what it says if it come from the correct source.

lol ...y this fake mail no one want to fix it?
i really don understand this...

anyway..stay fake@

It is very simple to send anomynous fake emails (this is illegal, and I am not endorsing it). You need to have a "vic" with a port forwarding service enabled.

You can then telnet to the vic, which will hide your true IP from the mail server.

If you are very paranoid, then you can chain several vics together.

good post

Also try phasma as a fake emailer.scour the net(google.com) for that prog it's worth it!and ofcourse it has a proxy database in it for fake mail.supports attachments too!

nice...

It's much more simpler to use a gui mail forger (like E-mail Forger 1.0 or others)... You can also use attachments and other options.
Bye,
Tnty

excellant tool but i recommand some from www.8th-wonder.net

Ya it much better to use a fake mail program

you can even use shadow mailer.I found it at astalavista.com.now since astalavista.com has changed itself ,you have to search for it at other places.

how do you send mail in this way to a mail server that does not allow relaying?

i was wondering when can e-mail network can be secure

to the people naming programs: that's defeating the purpose of this topic and bringing in kiddie tools, this shows you how to actually do it without a special program (many of them around because it's so simple...)

thanks for this tut, but might want to remind you to spoof your IP before sending? lol

nice my friend, Worked great.. THanks.
Manu

Just open smtp mail server from your computer...
I used to have irc script for smtp server that was really simple and usefull-> find it @ mircscript.org ...

If you worried about you IP being tracked you could always root another box and do it from there.

Prefix

This is for dinox, sagitarioxp and others wondering why sending fake emails is possible;

The reason you are able to send fake emails is due to the natures
of the SMTP-protocol. (Simple Mail Transferring Protocol).

An email-adress consists of two parts, the username and the domain, eg.
stadium@hotmail.com, where stadium is the username, and hotmail.com is the
domain.

When you send a mail, the smtp-server you use looks
up the MX-record for the receiving domain, in this case hotmail.com. MX-records are
a part of the DNS-system just like A-records. The MX-record tells your
SMTP-server what adress the receiving mailserver has, eg. mail1.hotmail.com

The mail is then sent from your smtp-server to mail1.hotmail.com and is further processed
by a storageserver for mails like an IMAP- or POP3-server on the local host. There is also a possibility that mail1.hotmail.com
resends the mail to another mailserver. When the owner connects to his receiving mailserver he gets the email.

As you can see, sending emails does not include a step for validation. If you think about this for a minute, you realise
that there is no way that global validation can be implemented in an easy way. Since everyone, can make their own mailserver,
they can also forge the sending adress of the sender, although there is still a possibility to track fake emails if you looks at the
email headers. This is not a big problem though, since most people don´t even know what email headers are.

This is why you can send fake emails.

If you want to make sure that emails you get aren´t fake, you and your friends need to use digital signatures like PGP.

Hey, i have some kind of problem when using this. Always when i try to enter the source email i get an error.

Problem with phasma is that it sometimes shows your IP in the headers if you're not using ultranet proxies

Theres a tool called INVADER that spammers are using out there..
It comes with it's own proxy database and you don't need to find SMTP servers for relaying...You will use theirs... best of all your IP is not revealed in the headers..

Invader

What's the real point of sending fake E-mails.
I mean, it cannot be used as social engineering (the personn cannot send back a mail to you).
So I think besides laughing at your friends, it's useless...

Anyway, this trick is very old, and I wonder why nobody changes this (if it could be done).

Nice tut anyway

yeah, it is kind of amazing that it's still possible...

yes, it can be used in social engineering, say you have a problem with recieving mail or something with that account and to send it to your temp email account... it can be done multiple ways

Well, i thought i mostly went over most of this, but. . . . .

The mail can be sent to the victim, and say it is a private company with a random person reading your mail. Say you put something in there like; please reply to my e-mail and send me a copy of my account username and password. So they reply, and send you the password for randomperson@thevictimcompany.com. Well, the reply will actually go to youremailaddress@whereeveryouremailaccountis.com. This could be useful, and if you don't get or see it, post again.

do you mean that most of the STMP servers support anonymous mail sending so you don't need to have an account?

Nice trick, thanks. Here's where it went before, see how you like this It worked for me..

http://www.elitec0ders.net/afteranonimousmail.htm

The email is directed first to the server by which the domain resides. This is the stopping point. If you don't own the domain and have the account, then you can't receive the message. It is like XSS, just because you type '<'[Script]'>'alert(document.cookie)'<'/[Script]'>' this doesn't mean that someone on another computer accessing this page will see the same message box you do. This is because these actions all occur at the user level. Email spoofing is a fun little thing to do, but it really has no value as far as digital security goes.

Don't get me wrong, it is hillarious seeing the look on your friend's face when he gets
a message from agent@fbi.gov with the subject line "We need to talk.".

hehe thats realy cool shit

test it 3 years ago... it works
test it 3min ago.. it works

i think its a big security reason...

by the way... is it legal to do that?

Instead of using telnet to make a fake email which can be easily traced you can make a php script that sends HTTP emails. I got one on my host if you want link just ask!!