Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/MarkoH17/EmailSecCheck

EmailSecCheck is a lightweight Python utility used to check for common SPF/DMARC misconfigurations that may allow for email spoofing.
https://github.com/MarkoH17/EmailSecCheck

dmarc-record email-security pentesting spf-record

Last synced: about 2 months ago
JSON representation

EmailSecCheck is a lightweight Python utility used to check for common SPF/DMARC misconfigurations that may allow for email spoofing.

Awesome Lists containing this project

README 

        
# What is EmailSecCheck?

EmailSecCheck is a lightweight Python utility that checks whether email security DNS records (DMARC and SPF) are configured properly for a domain. EmailSecCheck is powered by [checkdmarc](https://github.com/domainaware/checkdmarc), and leverages it to identify common misconfigurations in DNS records that may enable for email spoofing.



Email spoofing is identified under the following conditions:



 - SPF Issues

   - SPF configured as something other than `fail` or `softfail`

   - SPF record is missing

   - SPF record contains a syntax error

 - DMARC Issues

   - Multiple SPF records exist

   - DMARC record is missing

   - DMARC record contains a syntax error

   - Multiple DMARC records exist



# Getting Started

Grab the latest release and install the package requirements by running `pip3 install -r requirements.txt`. EmailSecCheck was developed for Python 3.



## Checking DNS Records for a Single Domain

```

python3 emailseccheck.py --domain 

```



## Checking DNS Records for Several Domains

```

python3 emailseccheck.py --domains_file 

```



## Example

![image](https://user-images.githubusercontent.com/8473031/138940399-452c0f6c-3a4d-4b0a-b5dc-f43d7e6245d3.png)