MailFail by Hacks and Hops
MailFail identifies and provides commands to exploit a large number of email-related misconfigurations for the current domain and subdomain. The extension's UI popup highlights any misconfigurations in red and links to the supporting documentation.
You'll need Firefox to use this extension
Extension Metadata
Screenshots
About this extension
Code
This addon is free and open-source software (FOSS) all code can be found here: https://github.com/ACK-J/MailFail
Please report your bugs or feature requests in a GitHub issue instead of in a review.
Test if it works!
https://m.ail.fail/
This addon checks misconfigurations with the following protocols:
Why I wrote this addon?
While researching email security for a few months I realized that there was a lot of nuance in how different email security protocols worked. It was very confusing at times and I wanted to organize all the different edge cases into a single tool that could help others identify these misconfigurations without having to read through dozens of RFCs. This extension was supposed to be 100 lines of code written in an afternoon, instead it has reached almost 2,000 lines of code over multiple months.
Donations
Permissions Needed
Privacy Warning
This addon is free and open-source software (FOSS) all code can be found here: https://github.com/ACK-J/MailFail
Please report your bugs or feature requests in a GitHub issue instead of in a review.
Test if it works!
https://m.ail.fail/
This addon checks misconfigurations with the following protocols:
- SPF
- DMARC
- DKIM
- ARC
- BIMI
- MX
- MTA-STS
- DANE
- DNSSEC
- SMTP TLS Reporting
- ADSP
- Mail Channels
- NSEC
- NSEC3
- SRV
- Click HERE to read the specifics.
Why I wrote this addon?
While researching email security for a few months I realized that there was a lot of nuance in how different email security protocols worked. It was very confusing at times and I wanted to organize all the different edge cases into a single tool that could help others identify these misconfigurations without having to read through dozens of RFCs. This extension was supposed to be 100 lines of code written in an afternoon, instead it has reached almost 2,000 lines of code over multiple months.
Donations
- Monero Address: 89jYJvX3CaFNv1T6mhg69wK5dMQJSF3aG2AYRNU1ZSo6WbccGtJN7TNMAf39vrmKNR6zXUKxJVABggR4a8cZDGST11Q4yS8
Permissions Needed
- Display notifications to you
- This is needed so the addon can alert you when a severe misconfiguration is discovered. Access browser tabs
- This is needed so the addon can display the proper number of misconfigurations on a per-tab basis.
Privacy Warning
- This extension does not use your computers default DNS and instead uses CloudFlare's 1.1.1.1 over DoH. It also uses duckduckgo's icon API to privately retrieve websites favicon images.
Rate your experience
PermissionsLearn more
This add-on needs to:
- Display notifications to you
- Access browser tabs
More information
- Add-on Links
- Version
- 1.0.18
- Size
- 526.96 KB
- Last updated
- 6 months ago (Jun 28, 2024)
- Related Categories
- License
- GNU General Public License v3.0 only
- Version History
Add to collection
Release notes for 1.0.18
removed wrong DMARC fo= flags
More extensions by Hacks and Hops
There are no ratings yet- There are no ratings yet
- There are no ratings yet
- There are no ratings yet
- There are no ratings yet
- There are no ratings yet