A simple tool to fetch, parse, and identify services included in SPF records for any domain. This is an open-source intelligence (OSINT) tool for scanning the Sender Policy Framework (SPF) records for a domain. The information provided in these records can allow attackers to learn about the technology used by an organization.
The tool uses Python to fetch the TXT records, grab the SPF record, filter through the record, and compare it to a database of known email services.
To download and install the Python script and requirements, run these commands:
git clone https://github.com/cstreit03/spf_scanner.git
cd spf_scanner
pip install -r requirements.txtOnce you have downloaded the repository and installed the requirements, you can execute the program with the following command:
python3 spf_scanner.pyOnce started, simply enter a domain name and press Enter on your keyboard. The program will automatically detect SPF records and email services for the target domain:
Note: You can repeat the process multiple times by entering a new domain each time. In future versions, additional functionality and the ability to scan multiple domains at once may be added.
