What is SEES?
Most of the companies nowadays have their firewalls, threat monitoring and prevention security appliances setup. With these mechanisms in place, security precautions are taken and incidents are monitored. Inbound traffic being restricted, SEES on the other hand is developed for sending targeted phishing emails in order to carry sophisticated social engineering attacks/audits.
SEES aims to increase the success rate of phishing attacks by sending emails to company users as if they are coming from the very same company’s domain. The attacks become much more sophisticated if an attacker is able to send an email, which is coming from email@example.com email address, to a company with domain example.org.
Example SMTP Service Configuration :
It is possible to send emails with or without attachments with SEES. But first, a working SMTP service is needed to send an email. You can use postfix or sendmail for this purpose.. Here, postfix service will be used as an example. On Kali linux this can easily be achieved by using the package management system;
Downloading & Configuring SEES :Latest source code can be downloaded fro https://github.com/galkan/sees. For Backtrack Linux first we should install dependencies. For Kali Linux you can skit this step.
# apt-get install python-argparse
# wget https://github.com/galkan/sees/archive/master.zip
# unzip master.zip
Note: Allowed upload file types are “gif|jpg|png|doc|txt|pdf|rar|docx|pptx|ppt|xlsx|xls|zip|html|htm|text”, make sure that file size is max 12MB in PHP configuration file.
Using SEES for malicious purposes is illegal. USE AT YOUR OWN RISK