Check your domain now!

Spoofing is an offensive technique that allows anyone, including malicious actors, to impersonate a brand's domain. A common attack involves sending emails from the company's domain without authorization.

Spoof2Pwn is provided by OLETROS, a cybersecurity consulting company based in France.


The Risk Values

Risk 0:

Your configuration is clearly enough. You are not vulnerable to domain spoofing/ email identity theft.

Risk 1:

Your SPF is not secure. Your DMARC value is set to 'reject' but on some systems, spoofing may still be possible. Some (too much?) companies do not properly respect DMARC for external domains. The 'reject' policy is generally more respected than 'quarantine'.

Risk 2:

Your SPF is not secure. Your DMARC value is set to 'quarantine' but on some systems, spoofing may still be possible. Some (too much?) companies do not properly respect DMARC for external domains. The 'quarantine' policy is generally less respected than 'reject'.

Risk 3:

Your SPF is not secure. And you don't have setup any DMARC records. Anyone can spoof you and use your domain for mail sending without authorization!

Oletros - Method

Problems? Questions? We are here to help

Mail
Linkedin
90%
APT group use spear phishing
597%
Increase in phishing on 4 years
93%
Breaches involve phishing
382%
Increase in phishing cost over 6 years