0x53 - Using Collaborator as Email Inbox

Did you know that Burp Collaborator listens to SMTP messages, on top of HTTP and DNS?

This means that you can use the collaborator as a throw away email address and register as many accounts on your target platform as you want.

Most applications will send you a verification code which you can also read from the SMTP body and confirm that the email is valid.

Best part is that you can have as many unique email addresses as you want without "registering" a new email inbox.

Worst part is that you'll lose access to the inbox. But that's what throw away emails are for, right?


How to do it

  1. Navigate to the registration page of the app (in my case Linkedin)

  2. Copy the collaborator URL from Burp and use it as domain for your email (i.e: test@onfqio8a5qv1kuzw0iwchs3q7hd81zpo.oastify.com)

  3. Check the collaborator requests for SMTP messages

  4. Use the confirmation code in the message to confirm the legitimacy of your email