1
00:00:00,330 --> 00:00:02,350
Hello everybody and welcome back.

2
00:00:02,440 --> 00:00:08,610
And in this video I will show you how you can actually send fake e-mails in order to for example send

3
00:00:08,700 --> 00:00:14,820
our phishing links and some of the links you want to send to your target or basically send any of your

4
00:00:14,820 --> 00:00:21,360
back doors files malware or whatever you want to deliver to the target from a fake email.

5
00:00:21,360 --> 00:00:28,110
Now the most problematic thing while using these methods is that sometimes the e-mail can get into these

6
00:00:28,110 --> 00:00:29,310
pen folder.

7
00:00:29,310 --> 00:00:34,170
But using this method it should not finish up in the spam folder it should finish up as a normal important

8
00:00:34,170 --> 00:00:36,990
message on any e-mail account.

9
00:00:36,990 --> 00:00:39,200
Now sometimes this doesn't really work.

10
00:00:39,210 --> 00:00:45,960
So for example in my case I believe like 50 percent 60 percent of e-mails actually get sent and received

11
00:00:45,960 --> 00:00:52,410
from the Target and other 40 percent really don't.

12
00:00:52,410 --> 00:00:55,810
So let us actually see what we will need in order to do this.

13
00:00:55,830 --> 00:01:02,370
You will need a program send e-mail which actually comes pre installed in the clinics so you will not

14
00:01:02,370 --> 00:01:03,860
have to install it.

15
00:01:03,870 --> 00:01:10,340
Basically I think this program comes installed in all of the Linux systems so this should not be a problem

16
00:01:12,000 --> 00:01:12,760
right now.

17
00:01:12,870 --> 00:01:20,820
All we have to do is go to the Web site of this is basically called the Century Web site and right there

18
00:01:20,850 --> 00:01:26,550
we will have to create an account which will allow us to actually send the e-mail over them.

19
00:01:26,610 --> 00:01:34,620
Now this account will probably get deactivated since you will always specify from e-mail addresses since

20
00:01:34,710 --> 00:01:39,700
basically they do not ask for the verification of the e-mail addresses in order to use this.

21
00:01:39,930 --> 00:01:45,480
But the next day or basically in just a few hours you will not be able to use it since they will close

22
00:01:45,480 --> 00:01:53,200
your account because within and verify also make sure to sometimes to specify the correct or not the

23
00:01:53,220 --> 00:01:55,370
correct but or just let me show you.

24
00:01:55,380 --> 00:01:57,870
Let us first go to the site itself.

25
00:01:57,870 --> 00:02:00,910
I will explain it as they go to their SO SEND grid.

26
00:02:01,070 --> 00:02:08,970
Just type in the in your Google search bar on your Firefox or wherever you want to and basically want

27
00:02:08,970 --> 00:02:13,860
to go to their Web site and actually create or register on their account.

28
00:02:14,250 --> 00:02:21,410
So just click on the first link which is some green dot com.

29
00:02:21,500 --> 00:02:23,180
It takes a few seconds to load.

30
00:02:23,400 --> 00:02:26,850
And as soon as it does we will see what our available options are.

31
00:02:27,480 --> 00:02:33,240
So here you have their page right here some of the plans some of the things find the correct perfect

32
00:02:33,240 --> 00:02:39,870
plan your needs and all this stuff we are not interested in what we want to go is we want to go to try

33
00:02:39,870 --> 00:02:41,460
for free.

34
00:02:41,460 --> 00:02:43,270
So click on your drive for free.

35
00:02:43,500 --> 00:02:48,600
Right here and it will ask you probably to create an account.

36
00:02:48,680 --> 00:02:50,940
So let's see what we get prompted with.

37
00:02:51,220 --> 00:02:51,490
OK.

38
00:02:51,500 --> 00:02:53,280
So we get printed with this.

39
00:02:53,290 --> 00:02:54,160
Let's get started.

40
00:02:54,180 --> 00:02:59,340
So user name password confirmed password and email address.

41
00:02:59,340 --> 00:03:05,530
Now make sure to specify some of the normal things so others specify just user name admin.

42
00:03:05,580 --> 00:03:14,770
One two three password can be anything you want so just type your password then it doesn't really matter

43
00:03:17,320 --> 00:03:21,680
here make sure to change the user name is taken.

44
00:03:21,800 --> 00:03:23,400
OK so we'll have to specify.

45
00:03:23,920 --> 00:03:25,630
Let's just do it like this.

46
00:03:25,690 --> 00:03:29,580
The good part is that you don't even need to remember your username and password.

47
00:03:29,590 --> 00:03:31,210
You will not be needing it.

48
00:03:31,390 --> 00:03:36,200
And also all you need to do is copy the key from that.

49
00:03:36,220 --> 00:03:42,220
I will show you once we create our account that you will need in order to send email for e-mail address.

50
00:03:42,220 --> 00:03:44,620
You can specify any e-mail address you want.

51
00:03:44,620 --> 00:03:46,450
So basically it doesn't have to be yours.

52
00:03:46,450 --> 00:03:47,920
It can be any e-mail address.

53
00:03:47,930 --> 00:03:51,310
So I will just type here for example Yahoo.

54
00:03:51,460 --> 00:03:53,350
At g mail dot com.

55
00:03:53,470 --> 00:03:56,830
Now I only I'm not even sure if this e-mail exists.

56
00:03:58,830 --> 00:04:05,370
So it says right here you'll need access to this e-mail address to verify your account which is correct.

57
00:04:05,370 --> 00:04:10,980
That's why it will close your account in just a few hours but until they close it you will be able to

58
00:04:10,980 --> 00:04:12,030
send fake e-mails.

59
00:04:12,570 --> 00:04:14,150
So click here.

60
00:04:14,160 --> 00:04:15,660
I'm not a robot.

61
00:04:15,690 --> 00:04:16,650
Also click here.

62
00:04:16,650 --> 00:04:18,240
I accept.

63
00:04:18,240 --> 00:04:19,350
Basically I might get this.

64
00:04:19,350 --> 00:04:23,490
So let's select some of these stairs OK.

65
00:04:23,490 --> 00:04:27,070
Verify we verified.

66
00:04:27,170 --> 00:04:33,410
I accept the terms and I just click here create the count.

67
00:04:33,510 --> 00:04:40,020
It will lead us to the next page where it will ask us for our more detailed information.

68
00:04:40,020 --> 00:04:46,260
So first name you can specify anything you want but I will just advise you to specify our real names

69
00:04:46,260 --> 00:04:49,530
and real surnames real company names and everything else.

70
00:04:49,530 --> 00:04:55,650
Because if you do not if you just have some random letters right here I believe they will not even activate

71
00:04:55,650 --> 00:04:58,010
your account and you will not be able to use it.

72
00:04:58,170 --> 00:04:59,270
So just play it safe here.

73
00:04:59,270 --> 00:05:01,020
John last name

74
00:05:04,750 --> 00:05:06,870
kind of anything else John.

75
00:05:06,890 --> 00:05:14,550
John Cena it doesn't really matter so John Cena is our first and last name on a name Facebook phone

76
00:05:14,550 --> 00:05:15,960
number is not required.

77
00:05:15,960 --> 00:05:18,600
We can skip that company website Facebook dot com

78
00:05:21,420 --> 00:05:22,550
developer.

79
00:05:22,620 --> 00:05:25,720
How do you plan to send e-mail using our API.

80
00:05:25,720 --> 00:05:27,390
It doesn't even matter.

81
00:05:27,390 --> 00:05:29,580
Zero to One Hundred thousand.

82
00:05:29,640 --> 00:05:31,900
How many employees work at your company.

83
00:05:31,920 --> 00:05:33,420
One to 500.

84
00:05:33,480 --> 00:05:34,230
Get started.

85
00:05:34,550 --> 00:05:40,620
Now sometimes if you didn't specify the correct options right here it for said US it will ask for further

86
00:05:40,620 --> 00:05:42,880
informations such as right here.

87
00:05:43,170 --> 00:05:46,850
So please provide us with further information.

88
00:05:47,220 --> 00:05:48,540
Your account has been created.

89
00:05:48,540 --> 00:05:51,640
Welcome to the seventh grade.

90
00:05:51,630 --> 00:05:53,260
We're happy to have you.

91
00:05:53,580 --> 00:05:59,310
So it will ask you to provide more information which means you didn't create account successfully.

92
00:06:00,030 --> 00:06:04,860
So I want to do right now is change some of the things so let's just type here.

93
00:06:05,450 --> 00:06:08,500
Jake the e-mails.

94
00:06:08,820 --> 00:06:10,860
DAWSON It doesn't really matter.

95
00:06:10,860 --> 00:06:12,570
Facebook let's not use Facebook.

96
00:06:12,570 --> 00:06:21,880
Let's use some Web site company websites.

97
00:06:22,000 --> 00:06:30,370
It doesn't really matter where the the best thing you can get right here is not the message that they

98
00:06:30,390 --> 00:06:32,440
wanted for their information.

99
00:06:32,440 --> 00:06:33,440
See as a previous.

100
00:06:33,490 --> 00:06:37,230
And right now we also got please provide further information.

101
00:06:37,360 --> 00:06:44,500
But let's actually try to get once the account to be made without actually asking us to provide further

102
00:06:44,500 --> 00:06:45,930
information.

103
00:06:46,000 --> 00:06:47,380
So let's go to descend.

104
00:06:47,380 --> 00:06:47,920
Great.

105
00:06:48,010 --> 00:06:50,410
We'll try once again.

106
00:06:50,410 --> 00:06:56,010
Basically if this doesn't work I will just show you the syntax for what the command you need to send

107
00:06:56,020 --> 00:06:57,850
in order for this to actually work.

108
00:06:57,850 --> 00:07:06,800
So let the score right here try for free user name the world 1 2 3

109
00:07:10,220 --> 00:07:10,950
password.

110
00:07:10,960 --> 00:07:15,350
Anything else.

111
00:07:15,350 --> 00:07:16,600
Confirmed password.

112
00:07:16,600 --> 00:07:25,530
So just type your anything for email use something like I don't know we'll add gmail dot com for example

113
00:07:25,540 --> 00:07:26,980
doesn't even matter.

114
00:07:26,980 --> 00:07:39,930
I'm not a robot crosswalks So K so we select that we verify we accept terms and let's see right now

115
00:07:39,990 --> 00:07:46,870
if this will actually work so we'll specify no.

116
00:07:47,100 --> 00:07:50,280
PHILIP.

117
00:07:50,570 --> 00:07:51,420
PHILIP.

118
00:07:52,510 --> 00:07:53,000
Heidi.

119
00:07:53,010 --> 00:07:56,310
Doesn't even matter.

120
00:07:56,490 --> 00:07:57,810
Company name.

121
00:07:57,810 --> 00:07:59,920
YouTube.

122
00:08:01,020 --> 00:08:02,750
Company website YouTube.

123
00:08:02,910 --> 00:08:04,220
Dot com.

124
00:08:04,260 --> 00:08:10,380
What did my marketer using our API let's select some of the different options and 500 to 1000.

125
00:08:11,010 --> 00:08:19,120
Let's click here on get started and hopefully right now they don't ask for further information so we

126
00:08:19,120 --> 00:08:28,040
will see right here what we get prompted with and as you can see right here right now we didn't get

127
00:08:28,040 --> 00:08:30,040
prompted to enter further information.

128
00:08:30,050 --> 00:08:32,740
So this is something that you want to actually achieve.

129
00:08:33,050 --> 00:08:39,320
If they ask you to for permit further information you need to try to make a count once again until you

130
00:08:39,320 --> 00:08:41,630
actually log in and see something like this.

131
00:08:41,660 --> 00:08:44,890
So it says welcome fillip even though our name is not Philip.

132
00:08:45,020 --> 00:08:48,370
What you want to go with is integrate using our Web API.

133
00:08:48,470 --> 00:08:53,720
So just click here on start on the first thing and you can choose between these two where we want to

134
00:08:53,720 --> 00:08:59,380
actually choose the S&amp;P really even though it says recommended right here we don't care about that.

135
00:08:59,410 --> 00:09:03,290
So choose this right here as A.P. relay

136
00:09:08,850 --> 00:09:15,990
and right now it will ask you to create an API key so just open up this page right here or this path

137
00:09:15,990 --> 00:09:18,240
right here you can type your anything you want.

138
00:09:18,240 --> 00:09:25,980
So just type your basically anything create key and it will create the key for you which will be just

139
00:09:25,980 --> 00:09:28,740
a mixture of bunch of letters and numbers.

140
00:09:28,800 --> 00:09:33,330
As we can see right here this is the code that you want to actually remember.

141
00:09:33,330 --> 00:09:38,130
This is your password and this is your user name but the user name is same for everyone.

142
00:09:38,670 --> 00:09:45,960
So right now in order for you to actually send the email you need to specify the user name and password.

143
00:09:45,960 --> 00:09:52,400
Then you will be able to send the email from any email you want so let us see what syntax we need to

144
00:09:52,400 --> 00:09:54,530
use in order to do this.

145
00:09:54,590 --> 00:10:03,200
So just close that window or not close it just lower it so we can use our terminal and the actual command

146
00:10:03,200 --> 00:10:04,410
that you need to run it.

147
00:10:04,430 --> 00:10:05,300
Send email

148
00:10:08,060 --> 00:10:11,290
then minus ask for the S.A.T. send grade.

149
00:10:11,300 --> 00:10:17,020
So we want to use their sending so we can specify it right here with two dots.

150
00:10:17,090 --> 00:10:21,880
This right here will be the port from which it is going to specify port 25.

151
00:10:22,010 --> 00:10:26,110
But sometimes I don't get this port to work so it is specified 25 25.

152
00:10:26,660 --> 00:10:29,580
I almost always get this port to actually work.

153
00:10:29,630 --> 00:10:36,280
So this is the part of the command and minus X you for the user name which we saw E for everyone.

154
00:10:36,280 --> 00:10:41,140
It is API key and then minus X key for the password.

155
00:10:41,170 --> 00:10:43,090
Now your password is this thing.

156
00:10:43,100 --> 00:10:45,350
So just copy this part right here.

157
00:10:47,790 --> 00:10:53,990
So copying this right here let's lower this.

158
00:10:54,030 --> 00:10:56,550
A lot of this space right here.

159
00:10:56,550 --> 00:11:04,300
So paste it and then you specify minus F which is from who the email will be sent to.

160
00:11:04,300 --> 00:11:10,900
So this is the e-mail that you actually spoof so you can specify any e-mail between double quotes so

161
00:11:10,900 --> 00:11:19,210
make sure to open double quotes and let's use Google at gmail dot com which is not my email of course

162
00:11:19,540 --> 00:11:24,300
and then minus t is the option to who are you sending the e-mail.

163
00:11:24,310 --> 00:11:27,250
So this is your target's e-mail that you want to send for you.

164
00:11:27,390 --> 00:11:36,250
So for example you can send that to I don't know you can send to anyone you want so anyone you want

165
00:11:36,670 --> 00:11:45,880
at email dot com dot com and then there are also some of the optional things you want to add such as

166
00:11:45,880 --> 00:11:52,330
the minus you for the I believe it is our header or something like that if you just type your kilo the

167
00:11:52,360 --> 00:11:56,890
minus Sam is the message of the actual e-mail.

168
00:11:56,880 --> 00:12:05,750
So here here you type the message and you can also use minus all options specify some of the additional

169
00:12:05,750 --> 00:12:15,530
headers such for example message header message header equals and then you add double quotes from and

170
00:12:15,530 --> 00:12:23,720
then the name for example John sign up and then basically specify the email from which you're sending

171
00:12:23,720 --> 00:12:28,670
which is but Google at G.M. dot com.

172
00:12:28,830 --> 00:12:35,080
So Google email dot com you close this and that will be about it.

173
00:12:35,090 --> 00:12:36,610
So this is the entire command.

174
00:12:36,620 --> 00:12:37,670
You have to specify.

175
00:12:38,030 --> 00:12:40,040
So let's recap.

176
00:12:40,190 --> 00:12:48,130
You send over this port minus X you is the your user name which is API key minus XP your password minus

177
00:12:48,150 --> 00:12:49,760
f from who are you sending.

178
00:12:49,760 --> 00:12:55,610
So this is the e-mail that you want to spoof and two minus t is to who are you sending.

179
00:12:55,610 --> 00:13:04,240
So this is the target the e-mail of your target minus you is the I believe header of the email itself

180
00:13:04,240 --> 00:13:08,450
or something like that minus M is the message of the e-mail.

181
00:13:08,760 --> 00:13:16,390
And here we actually forgot to specify these double quotes at the end so message double quote and minus

182
00:13:16,390 --> 00:13:21,490
always some of the additional headers so you can see you can just type your send email and then that

183
00:13:21,490 --> 00:13:27,310
does help for the options that you can actually use to see if you send this right here.

184
00:13:27,310 --> 00:13:36,670
Just press your enter wait for this to finish.

185
00:13:36,760 --> 00:13:41,260
It says connection attack to S&amp;P send sender Nat failed.

186
00:13:41,320 --> 00:13:41,800
OK.

187
00:13:41,830 --> 00:13:46,430
So of course it has failed since sender net can just click.

188
00:13:46,420 --> 00:13:49,870
So it looks better since center up now doesn't really exist.

189
00:13:49,870 --> 00:13:55,720
Not really sure why I type that when it specify the correct name so it is sent green dot net.

190
00:13:55,720 --> 00:13:58,780
So here sent you great dot net.

191
00:13:58,780 --> 00:14:03,950
So make sure to have as A.P. dot send great dot net then two dots and then specify the port.

192
00:14:03,970 --> 00:14:06,280
So let's send once again.

193
00:14:06,280 --> 00:14:07,600
And it says right here.

194
00:14:07,600 --> 00:14:14,290
Email sent was sent successfully and you were able to send e-mail to your target from any e-mail you

195
00:14:14,290 --> 00:14:19,900
wanted to spoof whether it's the e-mail or there some of some of their cousin or a friend or something

196
00:14:19,900 --> 00:14:23,870
like that that you know that they're will for sure open and read.

197
00:14:24,070 --> 00:14:28,960
And there you can send somebody files such as your back door your link to your back door or basically

198
00:14:28,960 --> 00:14:30,480
anything else.

199
00:14:30,560 --> 00:14:32,740
So that would be about it for this video.

200
00:14:32,920 --> 00:14:39,910
This was the last video of our ethical hacking course that actually had the tutorial it is next to you

201
00:14:39,910 --> 00:14:40,630
in the next video.

202
00:14:40,630 --> 00:14:43,420
Basically I will talk about what you can do next.

203
00:14:43,420 --> 00:14:45,220
What we learned and so on.

204
00:14:45,520 --> 00:14:47,440
So I hope you enjoyed this course.

205
00:14:47,440 --> 00:14:49,360
I hope you learn something new.

206
00:14:49,750 --> 00:14:54,540
And don't forget that you need to practice all of this in order to get good at it.

207
00:14:54,580 --> 00:15:00,190
You might be having problems with certain parts such as for example the coding section the website penetration

208
00:15:00,190 --> 00:15:04,480
testing section divider second section or any other section.

209
00:15:04,480 --> 00:15:10,720
Make sure to practice it a lot and it will all become pretty easy for you later on.

210
00:15:10,720 --> 00:15:13,100
Hope you enjoyed this course and take care.

211
00:15:13,130 --> 00:15:13,390
By.