1
00:00:00,140 --> 00:00:05,150
And next I would like to show you how you can find anyone's business email address.

2
00:00:05,630 --> 00:00:11,930
Now, finding business email addresses is very easy compared to finding someone's personal email address,

3
00:00:11,930 --> 00:00:14,450
because you always have a pattern.

4
00:00:14,480 --> 00:00:20,960
For example, let's say that we want to find the business email address of Rishi Kabra.

5
00:00:21,410 --> 00:00:24,530
And Rishi Kabra works at Contact Out.

6
00:00:24,560 --> 00:00:31,970
Normally, contact out or any other company uses a pattern when creating email addresses.

7
00:00:32,000 --> 00:00:38,210
For example, it might be the first letter of the first name and then a dot and then the last name at

8
00:00:38,210 --> 00:00:39,710
the company domain name.

9
00:00:40,100 --> 00:00:45,140
For example, s for sa'id dot Siraj at example.com.

10
00:00:45,140 --> 00:00:52,340
Or it might be only the last name at example.com, or only the first name at example.com, or the first

11
00:00:52,340 --> 00:00:55,580
and last name at example.com, etc..

12
00:00:55,580 --> 00:01:02,540
So our job is to identify the email pattern that the company uses, and then we can find any business

13
00:01:02,570 --> 00:01:03,590
email address.

14
00:01:03,920 --> 00:01:08,780
The best website that will allow us to do this is called Hunter.

15
00:01:08,780 --> 00:01:13,970
And the cool thing about Hunter is that they don't only have the service, but they also have multiple

16
00:01:13,970 --> 00:01:14,870
services.

17
00:01:14,900 --> 00:01:21,260
For example, we can go to pricing first and show you that they have a free plan that will allow you

18
00:01:21,260 --> 00:01:27,320
to perform 25 searches a month and verify 50 emails, etc..

19
00:01:27,500 --> 00:01:32,720
So I'm going to create an account and sign in with my Gmail.

20
00:01:35,270 --> 00:01:37,010
And then I want to answer the questions.

21
00:01:37,010 --> 00:01:38,480
I can say anything.

22
00:01:39,080 --> 00:01:42,890
And after you log in to your account, you want to go to search.

23
00:01:42,890 --> 00:01:45,590
And then search for the company where the person is working.

24
00:01:45,590 --> 00:01:49,790
For example, in our case it's contact out like this.

25
00:01:49,790 --> 00:01:57,620
And if we looked here, we can see that the email pattern is only first name and contact outcome, which

26
00:01:57,620 --> 00:02:05,270
means that Rishi Kabra business email address has to be reach out contact outcome, which you have already

27
00:02:05,270 --> 00:02:07,400
discovered in the previous lecture.

28
00:02:08,570 --> 00:02:10,970
Now let me show you a real life example.

29
00:02:10,970 --> 00:02:15,980
I'm going to go to LinkedIn and then search for contact out the company.

30
00:02:17,930 --> 00:02:24,380
And then I'm going to go to people, which are the people who works at that company, and then scroll

31
00:02:24,380 --> 00:02:27,890
down and we can see that there are many people who work at this company.

32
00:02:27,920 --> 00:02:34,670
So if you want to get, for example, Tanya email address, we are going to assume that her email address

33
00:02:34,670 --> 00:02:43,010
has to be Tanya at contact outcome because the email pattern is always first name at domain name.com.

34
00:02:43,010 --> 00:02:44,840
So here is her profile.

35
00:02:44,840 --> 00:02:50,390
I can use signal higher to find her email address or get prospect if I want to.

36
00:02:50,540 --> 00:02:59,600
So let me say save and show email address and it has to be Tanya at contact outcome as you can see now

37
00:02:59,600 --> 00:03:01,280
to verify that this is her email.

38
00:03:01,280 --> 00:03:06,890
I'm going to copy it and then go to Hunter and then go to verifier.

39
00:03:07,040 --> 00:03:12,650
And we'll add the email address in here, which will verify whether this email can receive emails or

40
00:03:12,650 --> 00:03:13,250
not.

41
00:03:13,700 --> 00:03:18,800
And you can see that it has 71% chance that it can receive email addresses.

42
00:03:18,950 --> 00:03:22,190
So let me go to another employee for example.

43
00:03:22,250 --> 00:03:30,020
Let me go to Rahul and then I'm going to use get prospect and say save and show email.

44
00:03:30,500 --> 00:03:33,740
And it should show me Rahul at contact outcome.

45
00:03:34,040 --> 00:03:38,000
So let me copy it and put it in here.

46
00:03:38,000 --> 00:03:42,020
And I think that I'm going to get similar result as you can see here.

47
00:03:42,440 --> 00:03:47,720
Now if you were an ethical hacker or a penetration tester and you were tasked to perform a phishing

48
00:03:47,720 --> 00:03:51,860
campaign, the first step you want to do is to gather the employee email addresses.

49
00:03:51,860 --> 00:03:54,290
And we have already discussed how you can do this.

50
00:03:54,320 --> 00:03:56,420
And then you can send your phishing account.

51
00:03:56,450 --> 00:04:02,240
Obviously you have to have a permission to do this now, if you would like to gather many business email

52
00:04:02,240 --> 00:04:09,140
addresses for people who work at a certain company, then you can go to this website that's called Phonebooks,

53
00:04:09,170 --> 00:04:12,140
which is a website that belongs to intelligence X.

54
00:04:12,140 --> 00:04:18,200
You need to log in with your account and then click on email addresses and then type the domain name.

55
00:04:18,200 --> 00:04:23,780
And in this case I'm going to type contact out.com and then say submit.

56
00:04:23,780 --> 00:04:29,270
And this should show me many email addresses of people who work at that company.

57
00:04:29,570 --> 00:04:34,340
So as you can see we were able to get a list of email addresses.

58
00:04:34,340 --> 00:04:40,850
Now obviously these are not all email addresses for the people who work at contact out, but I think

59
00:04:40,850 --> 00:04:46,580
this is a good option if you are trying to gather as many email addresses of people who work at a certain

60
00:04:46,580 --> 00:04:47,360
company.

61
00:04:47,930 --> 00:04:53,810
So in this lecture, you have learned how you can identify the pattern of an email address and how you

62
00:04:53,810 --> 00:04:58,970
can find anyone's business email address that work at a certain company.