xx.html

<html>

<head>

<title>郵件欺騙</title>

<body>

<h3>社工必備-郵件欺騙</h3>

<form action="email_spoof_script.php" method="post">

<p>要偽造的郵件: <input type="text" name="spoofemail" size="30"</p>

<p>傳送到: <input type="text" name="toemail" size="30"</p>

<p>主題: <input type="text" name="subject" size="30"</p>

<p>內容: </p>

<p><textarea rows="10" cols="20" name="message"></textarea></p>

<input type="submit" name="submit" value="Send Spoofed Email!">

</body>

</html>

email_spoof_script.php

<?php

$from=$_POST['spoofemail']; //接受偽造的郵件

$email=$_POST['toemail']; //接受傳送到的地址

$subject=$_POST['subject']; //接受輸入的主題

$message=$_POST['message']; //接受內容

mail($email, $subject, $message, "From: " . $from); //把接受到的內容傳送並替換電子郵件

print "<h3>您的郵件已傳送成功. 這是您的電子郵件:</h3> <br>From: $from<br>To: $email<br>Subject: $subject<br>Message: $message";

?>