Email Spoofing and Domain Impersonation Through Cloud Services

Learn how to exploit email security vulnerabilities in this DEF CON 31 conference talk that reveals techniques for spoofing emails from over 2 million domains while bypassing SPF and DMARC protections. Dive into the mechanics of edge serverless applications and explore how to abuse a partnership between Cloudflare and a major transactional email service provider. Discover practical code examples and access a newly released tool for domain email impersonation, while gaining insights into the fragile infrastructure of modern email security systems. Perfect for red team operators and security professionals looking to understand and demonstrate email spoofing vulnerabilities.

Syllabus

DEF CON 31 - SpamChannel - Spoofing Emails From 2M+ Domains & Virtually Becoming Satan - byt3bl33d3r

Taught by

DEFCONConference

Reviews

Start your review of Email Spoofing and Domain Impersonation Through Cloud Services

40% Off All Coursera Courses

Introduction to Programming with Python

Taught by

Foundations for Product Management Success

Novel Email Spoofing Attack Patterns - Bypassing SPF, DKIM, and DMARC Security Protocols

FakeBehalf: Imperceptible Email Spoofing Attacks against the Delegation Mechanism in Email Systems

SMTP Smuggling: A Novel Technique for Email Spoofing

You Have No Idea Who Sent That Email - 18 Attacks on Email Sender Authentication

Exploiting Cloud Connectivity to Compromise Network-Attached Storage Devices

Get 50% Off Udacity Nanodegrees — Code CC50 Ad

Learn Something New: 100 Most Popular Courses For December

7 Best Network Security Courses in 2026

6 Best Courses on Wireshark in 2026

12 Best Cybersecurity Courses for 2026

A Free Tool to Learn Languages Through Netflix and YouTube: Language Reactor Review

Never Stop Learning.