Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up

mxcheck is an info and security scanner for e-mail servers.

License

NotificationsYou must be signed in to change notification settings

steffenfritz/mxcheck

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

mxcheck logo

mxcheck is an info scanner for e-mail servers.

It checks

  • DNS records: A, MX, PTR, SPF, MTA-STS, DKIM, DMARC
  • AS Number and AS Country
  • the support of StartTLS and the certificate
  • open ports: 25, 465, 587
  • if the service is listed by blacklists
  • if it leaks information by server string and VRFY command
  • and if the server is an open relay

You can set mailFrom, mailTo, the DNS server, DKIM selector and output a report in tsv format.

-b, --blacklist          Check if the service is on blacklists-d, --dnsserver string   The dns server to be requested (default "8.8.8.8")-f, --mailfrom string    Set the mailFrom address (default "info@foo.wtf")-t, --mailto string      Set the mailTo address (default "info@baz.wtf")-n, --no-prompt          Answer yes to all questions-s, --service string     The service host to check (mandatory flag)-S, --dkim-selector      The DKIM selector. If set a dkim check is performed on the provided service domain-v, --version            Version and license-u, --updatecheck        Check if a new version of mxcheck is available-w, --write-tsv          Write tsv formated report to file

Version

v1.6.2

Go Report CardGo ReferenceLicense: GPL v3Build statusReviewed by HoundOpenSSF Best Practices

Installation

go install github.com/steffenfritz/mxcheck@latest

or

download a pre-compiled binary.

Usage Example

./mxcheck -s 2600.com./mxcheck -s 2600.com -v./mxcheck -s 2600.com -d 8.8.8.8./mxcheck -s 2600.com -n -f info@baz.com -t boss@foo.org -w -S default./mxcheck -s 2600.com -n -f info@baz.com -t boss@foo.org -w -S default -b

asciicast

Check for authentication

There is no check whether the server needs authentication. However, you can do two runs:

The first one uses a from and to address outside the mail server's scope, e.g.:

./mxcheck -s example.com -f info@baz.com -t boss@foo.org

The second one uses a from and a to address from the mail server's scope, e.g.:

./mxcheck -s example.com -f info@example.com -t boss@example.com

If the first one returnsServer is not an open relay and the second one returnsServer is probably an open relay the server is not an open relay, but you can send mails from local to local addresses without authentication.

Documentation and contact

mxcheck has a man page :)

Furthermore, you can find a documentation and contact information here:https://mxcheck.fritz.wtf

The logo was created by Alex/Lignum5. Thanks, mate :)

[8]ページ先頭
©2009-2025 Movatter.jp