nuclei-templates/network/detection/esmtp-detect.yaml

id: esmtp-detect

info:
  name: ESMTP Detection
  author: pussycat0x
  severity: info
  description: |
    ESMTP (Extended Simple Mail Transfer Protocol) specifies extensions to the original protocol for sending e-mail that supports graphics, audio and video files, and text in various national languages
  reference:
    - https://nmap.org/nsedoc/scripts/smtp-open-relay.html
  metadata:
    verified: true
    shodan-query: 'ESMTP'
  tags: network,detect,smtp,mail

network:
  - inputs:
      - data: "\n"

    host:
      - "{{Hostname}}"
      - "{{Host}}:25"

    matchers-condition: and
    matchers:
      - type: word
        words:
          - "ESMTP Postfix"
          - "220"
        condition: and
ESMTP Detection 2022-11-14 05:17:07 +00:00			`id: esmtp-detect`

			`info:`
			`name: ESMTP Detection`
			`author: pussycat0x`
			`severity: info`
			`description: \|`
			`ESMTP (Extended Simple Mail Transfer Protocol) specifies extensions to the original protocol for sending e-mail that supports graphics, audio and video files, and text in various national languages`
Update esmtp-detect.yaml 2022-11-14 06:06:20 +00:00			`reference:`
			`- https://nmap.org/nsedoc/scripts/smtp-open-relay.html`
ESMTP Detection 2022-11-14 05:17:07 +00:00			`metadata:`
			`verified: true`
			`shodan-query: 'ESMTP'`
			`tags: network,detect,smtp,mail`

			`network:`
			`- inputs:`
			`- data: "\n"`
Update esmtp-detect.yaml 2022-11-14 06:06:20 +00:00
ESMTP Detection 2022-11-14 05:17:07 +00:00			`host:`
			`- "{{Hostname}}"`
			`- "{{Host}}:25"`
Update esmtp-detect.yaml 2022-11-14 06:06:20 +00:00
ESMTP Detection 2022-11-14 05:17:07 +00:00			`matchers-condition: and`
			`matchers:`
			`- type: word`
			`words:`
			`- "ESMTP Postfix"`
Update esmtp-detect.yaml 2022-11-14 06:14:01 +00:00			`- "220"`
Update esmtp-detect.yaml 2022-11-14 06:06:20 +00:00			`condition: and`