Discord

Mailkeker.py Patched Now

: Connecting to an inbox and extracting body content or attachments into a structured local directory.

If you are a system administrator, download MailKeker.py tonight and run it against your own domain. The results may be alarming. If you see that your server silently confirms the existence of every rcpt to , you have work to do. If you are an attacker, be warned: modern email security gateways (M365 Defender, Proofpoint, Mimecast) utilize machine learning to detect the specific fingerprint of RCPT TO enumeration scripts like this. MailKeker.py

While specific versions may vary by author, common versions of the script include the following capabilities: SMTP Configuration : Allows users to specify the SMTP server address (e.g., ://gmail.com : Connecting to an inbox and extracting body

# The critical check code, message = server.rcpt(email_to_check) # RCPT TO If you see that your server silently confirms

It is critical that MailKeker.py is only used on systems or networks where you have explicit permission to test or own.

To verify a list of email addresses or credentials to see if they are active, valid, or capable of sending/receiving messages.

×

If the game is not working for you, try to refresh the page clicking CTRL+SHIFT+R. If it is still not working then report the game and we will review it.

Report the Game in Discord