Email harvesting of a domain using Linux Backtrack

Email harvesting of a domain using Linux Backtrack

A while ago I wanted to scan which email addresses can be found by spambots because that domain received a lot of spam. You can prevent users from capturing your email addresses from your website by encrypting the characters with html or javascript. This tools can encrypt your email address with javascript http://hivelogic.com/enkoder/ and this website http://www.wbwip.com/wbw/emailencoder.html does this through using character entities.

To do an email harvesting scan you need to have Linux Backtrack installed. I installed this by using VirtualBox on my mac (which is free). You can download Backtrack 5 from their website.

Start of with opening the terminal in Backtrack and type msfconsole

Backtrack - extract email addresses (msfconsole)

After that type search_collector

Backtrack - extract email addresses (search collector)

This will show the available modules. Next you need to choose to use the search_email_collector module by typing use/auxiliary/gather/search_email_collector

Backtrack - extract email addresses (search_email_collector)

Now type show options

Backtrack - extract email addresses (show options)

Now you can set up the domain you want to scan for email addresses. You do this by typing set domain http://www.example.com

That’s it. You can now run the scan by doing run

This will output all found email addresses from your domain.

Backtrack - extract email addresses (run)

One thought on “Email harvesting of a domain using Linux Backtrack

  1. Great tutorial!! Just wondering if there was any way I could pull specefic emails from a domain. For example lets say I wanted to find the CFO of canons email Canon.com. Any help is decapitated. I tried jigsaw but it is unreliable.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s