| |
| | Joined: Jun 2002 Posts: 2 Junior Member | | Junior Member Joined: Jun 2002 Posts: 2 | how do i send an anonymous untraceable email to somebody (as in they wont know who i am so they cant fire me)? i know, im a newbie at this kind of thing. | | | |
▼ Sponsored Links ▼
▲ Sponsored Links ▲
| | | | Joined: Mar 2002 Posts: 185 Member | | Member Joined: Mar 2002 Posts: 185 | http://www.happyhacker.org/gtmhh/vol1no2.shtml this is where I learned how, it's still a bit traceable though cause your IP will be in the headings of the email if the person receiving the email knows where to look. | | | | | Joined: Mar 2002 Posts: 1,273 DollarDNS Owner | | DollarDNS Owner Joined: Mar 2002 Posts: 1,273 | ya, just send the email from a school computer or something. | | | | | Joined: Feb 2002 Posts: 7,203 Likes: 11 Community Owner | | Community Owner Joined: Feb 2002 Posts: 7,203 Likes: 11 | | | | | | Joined: Jun 2002 Posts: 12 Junior Member | | Junior Member Joined: Jun 2002 Posts: 12 | Originally posted by Mornse: http://www.happyhacker.org/gtmhh/vol1no2.shtml
this is where I learned how, it's still a bit traceable though cause your IP will be in the headings of the email if the person receiving the email knows where to look.Ya this is where I learned too...can be a good intro to some extremely basic telnetting too. | | | | | Joined: Mar 2002 Posts: 1,273 DollarDNS Owner | | DollarDNS Owner Joined: Mar 2002 Posts: 1,273 | I decided to chatter about something in specific about email headers...
How to find the sender user's IP and a unique way to spoof your own:
1) First thing you need to know how how an email gets from your yahoo account to your friends hotmail account (an example).
You open your yahoo account and you start typing in your email. When you press "Submit" yahoo takes your email and slaps a "Recieved: " entry in there. It says when the email was recieved by yahoo and from what IP it originated and so on. So that recieved is the first recieved entry stuck onto the top of your email and headers and all.
Then yahoo resolves hotmail.com and says "alrighty, I need to send this to mx01.hotmail.com". Then it connects to that server and passes the email on.
Now mx01.hotmail.com recieved the email and slaps another Recieved: entry onto the TOP of the email. Again, it includes the IP address of yahoo's mail server and the time it recieved it. It will also include what yahoo's server announced themself to be via the HELO or EHLO commands.
And that's the gist of it. there may be many recieved entries cause the mail servers may bounce it around a few times before it actually gets to ya. But ALWAYS there is at LEAST 1 recieved entry in the headers. The original being the last recieved entry (since all following recieved entries are prepended to the top.
The way that you can find out where an email comes from is via the "Recieved: " header entries.
2) Now you know how email is sent, and how it is recieved. more importantly, you know where the original IP address can be found. Now it is time to consider this unique spoofing technique that I've figured out.
Spoof recieved entries! As the reciever, you look at the last recieved entry for the origin IP right? Well, when composing the RAW email - add a few convincing looking recieved entries as if the email has bounced around a few times. Then send it directly (or not - it doesn't matter) to the reciever's mail server. Make sure that you use the HELO (or EHLO) command with a satisfactorily spoofed hostname.
Now unless the reciever attempts to resolve every IP in the headers and look for incorrect IP/host matches - they'll never know which recieved is the REAL original IP. And typically, they'll think it's the last (spoofed) entry. | | |
| Forums41 Topics33,840 Posts68,858 Members2,176 | | Most Online3,253
Jan 13th, 2020 | | |
|
| |
