mxcheck

mxcheck is designed to scan e-mail servers for security and configuration issues. It provides comprehensive checks on DNS records including A, MX, PTR, SPF, MTA-STS, DKIM, and DMARC, as well as AS number and country information. The tool also verifies support for StartTLS and certificate validity, scans open ports 25, 465, and 587, detects blacklist listings, identifies information leaks via server strings and VRFY commands, and tests for open relays.

Use cases include reconnaissance of target mail servers during penetration testing, verifying email infrastructure security, and auditing for common misconfigurations that could lead to abuse or spam. It helps security professionals assess exposure to blacklisting and relay vulnerabilities.

The tool is lightweight with an installed size of 6.53 MB and depends only on libc6, making it easy to deploy on Kali Linux systems.

mxcheck performs DNS queries for records like A, MX, PTR, SPF, MTA-STS, DKIM, and DMARC using a specified DNS server (default 8.8.8.8). It checks AS number and country via WHOIS-like lookups. For SMTP services, it scans ports 25, 465, 587 unless disabled, tests StartTLS support and certificate validity, queries blacklists, attempts VRFY commands and server string analysis for leaks, and probes for open relay behavior using configurable mailFrom and mailTo addresses.