Phishing, e-mail manipulation

The goal of this activity is to deliver a fraudulent email to the mailbox of employee John Smith. Two mail servers are available for this activity, one for the cybfut.eu domain and one for the freemail.eu domain.

What you will learn in this task

• The basics of spoofing the sender of an email.
• The process of message processing on a mail server (SMTP).
• Sending an email by communicating directly with the mail server.
• Sending and receiving a test message.
• Spoofing the sender of an email via a third-party mail server.

Ongoing tasks are

• Sending an email from the client environment.
• Sending an email with a spoofed sender address.
• Sending an email by communicating directly with the mail server.
• Email phishing attack.

The following workstations are available for the task

• User – Windows OS
• Attacker – Kali OS
• cybfut.eu mail server – Ubuntu server OS
• Mail server freemail.eu – Ubuntu server OS

Network diagram

The maximum time required for the lab task is 45 minutes.

To complete the task, you need to have an English keyboard layout installed on your computer (for easier control of remote computers).