<html>
<head>
<title>邮件欺骗</title>
<body>
<h3>社工必备-邮件欺骗</h3>
<form action="email_spoof_script.php" method="post">
<p>要伪造的邮件: <input type="text" name="spoofemail" size="30"</p>
<p>发送到: <input type="text" name="toemail" size="30"</p>
<p>主题: <input type="text" name="subject" size="30"</p>
<p>内容: </p>
<p><textarea rows="10" cols="20" name="message"></textarea></p>
<input type="submit" name="submit" value="Send Spoofed Email!">
</body>
</html>

<?php
 
$from=$_POST['spoofemail']; //接受伪造的邮件
$email=$_POST['toemail']; //接受发送到的地址
$subject=$_POST['subject']; //接受输入的主题
$message=$_POST['message']; //接受内容
 
mail($email, $subject, $message, "From: " . $from); //把接受到的内容发送并替换电子邮件
print "<h3>您的邮件已发送成功. 这是您的电子邮件:</h3> <br>From: $from<br>To: $email<br>Subject: $subject<br>Message: $message";
 
?>