Scribd
Upload
7 views

OSINT Exp 01.docx

The document outlines a procedure for performing Email Header Analysis to extract information such as sender IP addresses and email routing details, as well as conducting email address enumeration using tools like the Harvester and thehunter.io. It details steps for analyzing email headers, including examining sender IPs and routing information, and provides instructions for using thehunter.io to find email addresses associated with a target domain. The conclusion emphasizes the successful application of these techniques to identify valid email addresses within an organization.

Uploaded by

Nitin
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
7 views

OSINT Exp 01.docx

The document outlines a procedure for performing Email Header Analysis to extract information such as sender IP addresses and email routing details, as well as conducting email address enumeration using tools like the Harvester and thehunter.io. It details steps for analyzing email headers, including examining sender IPs and routing information, and provides instructions for using thehunter.io to find email addresses associated with a target domain. The conclusion emphasizes the successful application of these techniques to identify valid email addresses within an organization.

Uploaded by

Nitin
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 6

Experiment No.

01

AIM:
● Perform Email Header Analysis for extracting valuable information like sender IP
address, email servers, and routing information.
● Conduct email address enumeration by attempting to verify the existence of email
addresses within atarget domain. Use tools like the Harvester or thehunter.io to search
for email addresses associated with a specific domain. This can help identify valid
email addresses within an organization.
Theory:
Email header analysis is a common technique used for various purposes, including
cybersecurity, email tracing, and investigations. Analyzing email headers can reveal valuable
information about the sender, the email's path, and other metadata. Below, I'll provide an
overview of how to perform email header analysis and conduct email address enumeration:

Email Header Analysis:

To analyze email headers, follow these steps:

• View Email Headers:


Open the email message in your email client (e.g., Gmail, Outlook).
Find an option to "View Original" or "View Email Headers." This will display the raw email
headers.

• Examine Sender IP Address and Email Servers:


Look for "Received" headers to trace the path the email took from the sender to your inbox.
Each "Received" header typically contains an IP address and email server information.

The last "Received" header is often the sender's email server.

• Routing Information:
Examine the "Received" headers from top to bottom to see the route the email traveled
through different email servers.

Note timestamps, IP addresses, and server names.


• Geo-Location:
You can use online tools or services to look up the geographic location of IP addresses found
in the email headers.

Note that some IP addresses might be anonymized or routed through VPNs or proxy servers.
• Email Clients:
Look for "User-Agent" or "X-Mailer" headers to identify the email client or software used by
the sender.

• Originating IP Address:
Check for the "X-Originating-IP" header, which can provide information about the sender's
IP address.

IMPLEMENTATION:-
By using mx analyzer tool:
email address enumeration Using thehunter.io (Online Service).
• Visit thehunter.io:
Open a web browser and go to thehunter.io's website.

• Enter the Target Domain:


On thehunter.io's homepage, you'll find a search bar.

Enter the target domain (the one you want to enumerate email addresses for) into the
search bar.

• Initiate the Search:


After entering the domain, click the search button (usually represented by a magnifying
glass or "Search" button).

• View the Results:


thehunter.io will perform a search for email addresses associated with the specified
domain.
It will then provide a list of email addresses it found, along with any associated
information, in the search results on the webpage.

IMPLEMENTATION.
Conclusion: We have successfully used Email Header Analysis for extracting valuable
information like sender IP address, email servers, and routing information. Conduct email
address enumeration by attempting to verify the existence of email addresses within atarget
domain. Use tools like the Harvester or thehunter.io to search for email addresses associated
with a specific domain. This can help identify valid email addresses within an organization.

You might also like