Day 9
What is the command that enumerate email addresses present on a SMTP server?
- HASH
- VRFY
- READ
- EXPN
- RCPT TO
Solved
Question of the day 10/09, Cybersecurity Edition
+13Best answer by marcofabbri
This one was tricky. Correct answer was EXPN, VRFY and RCPT TO π
All three commands are good to enumeration email addresses on a SMTP server.
Hereβs an example:
Backups are like pizza, I love them. | Linkedin: @marco-fabbri-it
+7VERIFY or should that be VRFY π
Dipen N. K. | IT Security Specialist | Veeam Legend 2022 - 2025 | Cyber Security Space VUG Leader
+13dips wrote:
VERIFY or should that be VRFY π
Thanks, corrected. Monday morning...
Backups are like pizza, I love them. | Linkedin: @marco-fabbri-it
+7I know the feeling. Just need that coffee
Dipen N. K. | IT Security Specialist | Veeam Legend 2022 - 2025 | Cyber Security Space VUG Leader
+21RCPT TO
Chris Childerhose - VMCA2024 | VMCE2023 | VMCE-SP2024 | Veeam Vanguard 8* | Veeam Legend 5* | vExpert 6* | VCAP-DCV/VCP-DCV | Object First Ace | Cisco Champion | Twitter: @cchilderhose | Blog Site β https://just-virtualization.tech
+17VRFY
But this command can be a security problem, because you can extract valid email addresses and use them for further attacks against server and try them as login namesβ¦. You cannot disable it completely because the RFC requests it. You can configure it that it gives no real information insteadβ¦.
Jochen (Joe) Meixner | Veeam Vanguard 2024 | Veeam Legend 2021 - 2024 | Veeam Certified Architect (VMCA) | Twitter: @JoMeix | BlueSky: @jmeixner.bsky.social
+21Chris.Childerhose wrote:
RCPT TO
Correction - should be VRFY π
Chris Childerhose - VMCA2024 | VMCE2023 | VMCE-SP2024 | Veeam Vanguard 8* | Veeam Legend 5* | vExpert 6* | VCAP-DCV/VCP-DCV | Object First Ace | Cisco Champion | Twitter: @cchilderhose | Blog Site β https://just-virtualization.tech
+13This one was tricky. Correct answer was EXPN, VRFY and RCPT TO π
All three commands are good to enumeration email addresses on a SMTP server.
Hereβs an example:
Backups are like pizza, I love them. | Linkedin: @marco-fabbri-it
1 person likes this
Comment
Rich Text Editor, editor1
Editor toolbars
Press ALT 0 for help
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.