https://github.com/ariary/smtrackerp

🎣 Simple Mail Tracker Protocol 📬 bring back into fashion the acknowledgement of receipt
https://github.com/ariary/smtrackerp

phishing receipt smtp tracking

Last synced: 4 months ago
JSON representation

🎣 Simple Mail Tracker Protocol 📬 bring back into fashion the acknowledgement of receipt

• Host: GitHub
• URL: https://github.com/ariary/smtrackerp
• Owner: ariary
• License: unlicense
• Created: 2022-03-23T08:47:11.000Z (over 3 years ago)
• Default Branch: main
• Last Pushed: 2022-04-22T21:24:04.000Z (over 3 years ago)
• Last Synced: 2025-04-26T19:39:26.615Z (6 months ago)
• Topics: phishing, receipt, smtp, tracking
• Language: Go
• Homepage:
• Size: 284 KB
• Stars: 8
• Watchers: 4
• Forks: 2
• Open Issues: 1
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# Simple Mail T(racker) Protocol 






Ensure your email has been read

👁️ • 🎣 • 📬

 


***Why?***

* In phishing campaign (with the prior agreements of course!), to perform information gathering. (retrieve information about who read, with which browser, at what time etc..)

* Because many SMTP clients don't provide "acknowledgement of receipt" anymore

* For commercial mail, to see who has been attracted by your email, but it is definitely not cool!

*Current state is a very naive implementation, maybe enhancements will be made especially for the phishing use case (deal with multiple targets, directly send the email providing a mail list, etc..)*

## 🚀 Launch instructions

**1️ Launch `smtrackerp`**

```shell

smtrackerp --url [YOUR_EXTERNAL_URL] -t [TARGET_MAIL]

```

**2️ Insert payload in your mail**

`smtrackerp` will generate a html file containing an invisible image. Insert it in your mail.

Then send it!

**3️ Wait..**

![demo](https://github.com/ariary/SMTrackerP/blob/main/img/demo.png)

 I know, i know .. i'm using `ngrok`, for testing purpose only

### 📨 Send & track in one-step

You can use `smtrackerp` to directly send your mail and then waiting for the "proof of reading".

**1️ Put the mail body in a file**

*You could use `test/test.html` if you want*

**2️ Load your SMTP credential**

Via environment variable, the credentials are used to communicate with your SMTP server.

I encourage you to save it in a file:

```shell

export SMPT_USERNAME=[YOUR_MAIL]

export SMPT_PASSWORD=[YOUR_PASSWORD]

```

and source it

**3️ Send and wait**

```shell

smtrackerp send -u [YOUR_EXTERNAL_URL] -r [LIST_OF_RECIPIENTS] -s [MAIL_SUBJECT] -b [BODY_FILENAME] -a [SMP_HOST] -p [SMTP_PORT]  --track

```

#### Demo

What the target sees:

![target](https://github.com/ariary/SMTrackerP/blob/main/img/mail.png)

What we see:

![demo-send](https://github.com/ariary/SMTrackerP/blob/main/img/send-demo.png)