1
00:00:00,820 --> 00:00:09,570
In the previous lecture we seen how to use an as MPP server in order to send emails that look like they're

2
00:00:09,580 --> 00:00:13,030
sent from any email address we want.

3
00:00:14,290 --> 00:00:20,770
I also mentioned in the previous lecture that there is another way of doing this and that is using a

4
00:00:20,770 --> 00:00:22,540
web hosting.

5
00:00:22,540 --> 00:00:29,290
Now there are a lot of free web hosting services that you can use to achieve this but just like I said

6
00:00:29,290 --> 00:00:35,800
for SMP servers you will get results with the paid services because there are less people using them

7
00:00:36,040 --> 00:00:42,820
and therefore they are less likely to be flagged as spam by email providers such as G.M..

8
00:00:43,090 --> 00:00:50,590
But right here I actually have a free web hosting provider that works well and still delivers the email

9
00:00:50,650 --> 00:00:54,690
in the inbox so it will still not mark you as spam.

10
00:00:54,730 --> 00:01:00,460
Now if you look on Google you'll find a lot of free web hosting providers and a lot of cheap ones.

11
00:01:00,520 --> 00:01:03,970
And like I said you might actually get better results with the paid ones.

12
00:01:03,970 --> 00:01:09,210
But we're going to go with a free one for this lecture and you'll see it's going to work perfectly.

13
00:01:09,430 --> 00:01:14,200
So we're going to click on the get started here and we're going to go for the free plan.

14
00:01:14,200 --> 00:01:16,420
So it's zero point zero per month

15
00:01:19,800 --> 00:01:20,150
now.

16
00:01:20,160 --> 00:01:26,070
You can set up the setup a simple just like setting up for anything else email password and sign up

17
00:01:26,370 --> 00:01:32,610
or if you already logged into your G.M. or Facebook you can just click on log in with Gmail for example.

18
00:01:32,610 --> 00:01:35,130
I'm already logged into my email so that's what I'm doing.

19
00:01:36,540 --> 00:01:39,980
And I'm going to click my email account that I'm already logged in with

20
00:01:42,950 --> 00:01:43,540
I'm perfect.

21
00:01:43,540 --> 00:01:45,250
Now we are ready to go.

22
00:01:46,150 --> 00:01:49,780
So we're going to click on that create some magic.

23
00:01:49,990 --> 00:01:53,200
And this is just a wizard to take us through the process.

24
00:01:53,230 --> 00:02:01,960
I'm just gonna do other and skip this and now it's asking me for the name of the website that I want

25
00:02:01,960 --> 00:02:02,890
to create.

26
00:02:02,950 --> 00:02:04,920
So you can call this anything you want.

27
00:02:04,990 --> 00:02:07,930
Will be the only people that will use this Web site.

28
00:02:07,930 --> 00:02:14,540
So I'm just gonna call my own John Wick and we're going to submit OK.

29
00:02:14,560 --> 00:02:22,210
Now we created our Web site so the next step is to upload the HP file that will actually allow us to

30
00:02:22,210 --> 00:02:24,270
send fake emails.

31
00:02:24,370 --> 00:02:32,550
So we're going to click on upload files to the Web site and we're going to click on publication here.

32
00:02:32,780 --> 00:02:38,290
This is the location that loads by default when you access the website.

33
00:02:38,300 --> 00:02:44,870
Therefore we want to upload the HP file that will allow us to send the emails in here so we can use

34
00:02:44,870 --> 00:02:48,020
it to send the fake emails.

35
00:02:48,020 --> 00:02:54,280
So I'm going to click on the upload button in here I'm going to click on select files and I'm going

36
00:02:54,280 --> 00:02:56,150
to select the file that I want to upload.

37
00:02:56,150 --> 00:03:00,810
It's already in my downloads and it's it's called Send BHP.

38
00:03:00,980 --> 00:03:04,740
I will include this file and the resources of this lecture.

39
00:03:04,760 --> 00:03:14,490
So right now all we have to do is just click on open and upload Now keep in mind if you're using a different

40
00:03:14,490 --> 00:03:20,880
web hosting provider whether it's free or paid the interface might look slightly different than what

41
00:03:20,880 --> 00:03:21,990
you see in here.

42
00:03:22,080 --> 00:03:23,920
But the main idea is the same.

43
00:03:23,940 --> 00:03:29,310
You want to just go to the Web route to the location that gets loaded when you access the Web site and

44
00:03:29,370 --> 00:03:35,160
upload the send that BHP file that I've included in the resources of this lecture.

45
00:03:35,160 --> 00:03:37,410
And once you do you need to browse it.

46
00:03:37,410 --> 00:03:40,740
You need to open this file in your web browser.

47
00:03:40,740 --> 00:03:49,460
So I'm going to right click in here and I'm going to click on View so using this is very simple.

48
00:03:49,500 --> 00:03:55,080
All you have to do is set the e-mail that you want to send this e-mail to.

49
00:03:55,080 --> 00:04:01,470
And just to switch it up I'm going to send this to my other e-mail which is Zaid at Z Security dot org

50
00:04:02,990 --> 00:04:03,510
next.

51
00:04:03,560 --> 00:04:05,540
We're going to set the from email.

52
00:04:05,540 --> 00:04:10,130
This is the e-mail that this e-mail will appear like it's coming from.

53
00:04:10,130 --> 00:04:12,660
So again just to change things around.

54
00:04:12,740 --> 00:04:18,710
We're going to set the from e-mail this time to Adrian at the Security dot org.

55
00:04:18,710 --> 00:04:24,620
Now again when you're setting the from e-mail make sure that you set it to an e-mail that actually exists

56
00:04:24,920 --> 00:04:30,470
and make sure that your target actually receives e-mails from this email and communicates with them.

57
00:04:30,470 --> 00:04:36,470
This will ensure that the e-mail will land in the inbox and it will also increase the chances of your

58
00:04:36,470 --> 00:04:39,760
target of opening the e-mail and interacting with it.

59
00:04:40,190 --> 00:04:44,890
Adrian works with me in the same company we frequently exchange e-mails.

60
00:04:44,930 --> 00:04:50,950
Therefore this is a really good from e-mail to spoof the next field is the name field.

61
00:04:50,980 --> 00:04:55,840
This is similar to the from header that we set manually in the previous lecture.

62
00:04:55,840 --> 00:05:00,720
So let me go to my inbox to show you where this name shows up right here.

63
00:05:00,730 --> 00:05:03,500
I have an actual e-mail that I got from Adrian.

64
00:05:03,700 --> 00:05:06,880
And this part right here is the name.

65
00:05:06,880 --> 00:05:13,060
So whatever you said in here will be displayed in that part if you don't set that up.

66
00:05:13,150 --> 00:05:19,660
It will automatically be set to the e-mail and it will appear like this one which is not identical to

67
00:05:19,660 --> 00:05:21,540
the real one that I can get from him.

68
00:05:22,900 --> 00:05:26,930
So we're going to set this to Adrian's name.

69
00:05:27,220 --> 00:05:33,140
We're going to set the subject and let's just set the subject of this to test and we're just going to

70
00:05:33,140 --> 00:05:39,790
set the body to this is another e-mail spoofing test.

71
00:05:39,860 --> 00:05:42,530
Now I don't really need to send a backdoor in this.

72
00:05:42,530 --> 00:05:48,770
The whole point of this lecture is to show you another method of spoofing e-mails.

73
00:05:49,070 --> 00:05:53,500
So now that we're done with everything and going to click on submit to send the e-mail.

74
00:05:54,170 --> 00:05:57,020
And as you can see it's seen e-mails sent.

75
00:05:57,020 --> 00:05:59,900
So that means the e-mail got sent and delivered.

76
00:05:59,900 --> 00:06:01,280
So let's go to the inbox.

77
00:06:01,310 --> 00:06:04,350
Let's see if it looks identical to the real one.

78
00:06:04,460 --> 00:06:08,870
And let's see if it actually get delivered into our inbox.

79
00:06:08,870 --> 00:06:11,650
So right here I have my inbox.

80
00:06:11,810 --> 00:06:17,080
And as you can see here the bottom line is an actual e-mail that I got from Adrian.

81
00:06:17,090 --> 00:06:19,250
This is a real e-mail from Adrian.

82
00:06:19,250 --> 00:06:21,140
You can see the name here correct.

83
00:06:21,140 --> 00:06:22,700
Similar to the name here.

84
00:06:22,760 --> 00:06:29,690
If I stay hovering on the real e-mail as you can see I'll get a card that shows his name his email and

85
00:06:29,690 --> 00:06:31,100
his phone number.

86
00:06:31,100 --> 00:06:36,500
And if I hover over the spoofed one again I get the exact same card because it's pulling this from my

87
00:06:36,500 --> 00:06:42,140
contacts so it's automatically populating this if I go on the real e-mail right here.

88
00:06:42,140 --> 00:06:44,780
Again you can see this is a real e-mail by him.

89
00:06:44,780 --> 00:06:50,610
You see the name you see the profile and you see the from is from Adrian Boyd.

90
00:06:50,990 --> 00:06:54,440
Now let's go to the spoofed one again.

91
00:06:54,460 --> 00:06:55,560
You have the picture.

92
00:06:55,560 --> 00:06:56,370
You have the name.

93
00:06:56,790 --> 00:06:59,390
And if you look in here you have the correct e-mail.

94
00:06:59,430 --> 00:07:02,230
Adrian put at that security dot org.

95
00:07:02,310 --> 00:07:07,190
The only part that might look a little bit suspicious is the fact that it's saying we.

96
00:07:07,230 --> 00:07:11,630
This but a lot of people are not going to pay attention to this.

97
00:07:11,750 --> 00:07:17,440
And this is only displayed in Gmail so we tested with life.

98
00:07:17,450 --> 00:07:19,290
This doesn't even show up on it.

99
00:07:19,430 --> 00:07:22,670
And even with G.M. we have the correct profile picture.

100
00:07:22,730 --> 00:07:24,320
We have the correct name.

101
00:07:24,320 --> 00:07:30,560
We have the correct email if you look in here and we even have the correct phone number.

102
00:07:30,590 --> 00:07:36,050
So this is just another method to show you how to spoof e-mails in case the previous method didn't work

103
00:07:36,110 --> 00:07:37,390
or if you just didn't like it.

104
00:07:37,400 --> 00:07:42,950
You can try this one again like I said you can use any web hosting provider.

105
00:07:42,980 --> 00:07:45,540
You do not have to use this one that I used.

106
00:07:45,560 --> 00:07:48,050
You can try the free ones you can try the paid ones.

107
00:07:48,050 --> 00:07:51,100
And like I said you will get better results with the paid ones.

108
00:07:51,170 --> 00:07:53,330
The steps are pretty much the same.

109
00:07:53,390 --> 00:07:59,380
The only difference might be the sign up process and the process of uploading the file to the Web site.

110
00:07:59,390 --> 00:08:00,660
But the idea is the same.

111
00:08:00,680 --> 00:08:02,720
You sign up with a web hosting provider.

112
00:08:02,750 --> 00:08:09,410
You upload the sender BHP file you browse the DOT BHP file from your web browser and you use it to send

113
00:08:09,410 --> 00:08:09,950
the email.