Before you can configure Metasploit Pro to send e-mail through a mail server, please make sure that it meets the following requirements:
· The mail server does not perform reverse DNS lookup to verify that the IP address of the server hosting Metasploit Pro matches the domain of the e-mail address that you are trying to spoof. If the mail server performs reverse DNS lookup, the server will reject the e-mail and refuse to deliver it.
· The mail server does not perform restrictive checks for spam, malicious files, or any type of e-mail abuse. Basically, the mail server should use the lowest levels of protection against spam and junk mail.
For example, publicly available e-mail services like Gmail, Yahoo, and Hotmail enforce extremely high levels of security and will most likely blacklist any e-mail that appears to be spam. Due to these restrictions, it is recommended that you do not use these types of e-mail services.
· If the mail server is provided through an e-mail relay service, please check the terms of service for spam or bandwidth restrictions. Many of these providers will track your account to ensure that you are not using it to abuse their services. If any of your e-mail recipients flag your e-mail as spam, this will alert the provider that you may be potentially abusing their system and may cause them to blacklist your e-mail.
Some relay service providers may require that you take the time to build a reputation as a legitimate e-mail sender, otherwise, many Internet Service Providers will immediately begin to flag your e-mail as spam. Since volume is typically a huge indicator of spam, you should probably keep the number of outgoing e-mails to below the relay service’s recommended volume.While attempting to send e-mail, you may encounter some errors that prevent you from successfully delivering e-mail. If you are having problems getting your mail server to deliver mail, please go to the task log and search for any text highlighted in red or any text tagged as an error. You can use the error message to help troubleshoot the issue.The following table provides workarounds for a few of the most common errors that you may encounter while trying to send e-mail from Metasploit Pro:
This error indicates that the domain you are trying to spoof does not match the originating IP address for a reverse DNS lookup.
· You can set up a proxy or IP address that enables the phishing e-mail to act as if it were coming from a legitimate origin. This error indicates that the mail server has flagged the e-mail as spam and has refused to deliver the e-mail.
· You can lower your mail server’s security level for unknown and untrusted senders, and you can lower your mail server’s security level for spam.
· You can utilize an e-mail relay service, such as Sendgrid, JangoSMTP, or Mandrill. These e-mail services provide its users the ability to configure the level of security that is enforced on outgoing mail and the ability to send bulk mail. Additionally, these e-mail relay services are more likely to reliably deliver e-mail successfully.
However, before you decide to use an e-mail relay service, please check the terms of service agreement to verify that the provider will not blacklist your e-mails if they are classified as spam. Sender e-mail address does not match with the user account. This error most likely results from a reverse DNS lookup that determined that the IP address of the e-mail did not match the host name that it is trying to spoof.
· You can set up a proxy or IP address that enables the phishing e-mail to act as if it were coming from a legitimate origin.
· You can set up a local SMTP server on the server that runs Metasploit Pro. On Linux machines, you can use SendMail or Postfix.
· You can utilize an e-mail relay service, such as Sendgrid, JangoSMTP, or Mandrill. The server has encountered a bad sequence of commands. This is a general error that you may see when the e-mail server is unable to deliver e-mail. Usually, this error is followed by an additional series of messages that you can use to troubleshoot the error.
![]() |