Skip to main content

Mail Settings

PhishingBox Support
  • Updated

The Mail Settings page shows you where system and phishing email will come from. You can connect PhishingBox to a mail server via IMAP to use with the Report Phishing Outlook Add-in or to monitor replies from reply-to phishing email templates. You can connect to a mail server via SMTP in order to send PhishingBox system emails or phishing emails from your own mail server.

To reach the Mail Settings page, navigate to Administration > Settings > Mail Settings.

nav.png

  1. General
  2. Inboxes
  3. SMTP (Outgoing)
  4. Graph Apps

 

General

The General tab on the Mail Settings page shows an overview of the system email addresses, account manager, and saved system email and phishing email settings including the FromName for school (Testing Center) and PhishingBox emails system emails.

The System Email Addresses drop-down is the From and Reply-To address for all system emails. To use a custom System Email Address, you should also set up a custom SMTP connection as well (deliverability can be impacted if you are using a custom email address without an SMTP server). For reseller accounts, the parent account's selection will be displayed as the default selected option in sub-accounts.

You can send yourself a test system/phishing email by clicking the Send Test Email button.

 

mail_settings2.png

 

Custom System Email From - This field specifies the email address from which system emails will be sent.

Custom System Email Reply-To - This field specifies the email address in which will receive replies to system emails.

Custom Email Header - This is the email header added to phishing emails to help them get past email security and replaces the default X-PHISHTEST. The safelisting settings in your email client will need to be adjusted to accept your settings.

Custom Email Header Value - This is the value for the custom email header added to phishing emails to help them get past email security. The safelisting settings in your email client will need to be adjusted to accept your settings.

Saved System Email Settings - The system email settings that have been saved on the account. You can check deliverability of these types of emails by clicking on the Send Test Email button.

Saved Phishing Email Settings - The phishing email settings that have been saved on the account. You can check deliverability of these types of emails by clicking on the Send Test Email button.

 

Inboxes

The Inboxes tab shows the email accounts that you've added as Inbox connections. You can add two types of email accounts: Microsoft OAuth and IMAP.

You can view Active Directory connections or IMAP connections by choosing one from the dropdown beside the Show Deleted checkbox. If you select Show Deleted, then connections that have been deleted will be displayed (you can reenable deleted connections). The dropdown under actions allows you to edit, turn off/on, delete, or reauthorize (Active Directory only) connections. 

Screenshot_2022-06-09_113701.png

To connect an IMAP account, you'll need the server, port, username, password, and encryption type (SSL or TLS). Once you've entered this information, click the "Test IMAP" button. If PhishingBox is able to successfully connect to the IMAP account, you'll be able to click the Create button. This email account will then appear on your list of Inboxes. It will also show up in the dropdown when you navigate to the Inbox page. The account will be scanned once an hour 

adding_an_imap_connection.png

Gmail users - If you are using a Gmail account, and you have trouble connecting to IMAP, then you may need to follow these steps:

  1. Login to your Gmail account and enable IMAP (see this article for instructions).

  2. Allow access to less secure apps by following this link: https://www.google.com/settings/security/lesssecureapps

  3. Go to https://accounts.google.com/b/0/DisplayUnlockCaptcha and enable access.

Source: Stackoverflow - https://stackoverflow.com/questions/24525284/access-emails-using-imap/32239136#32239136

  • Note: Some security configurations may block PhishingBox from connecting to your mail servers. Consult with your software or hardware vendors for help with troubleshooting.

To connect a Microsoft Graph OAuth account, set the connection type to Microsoft Graph OAuth, choose a Microsoft App, and click the Authorize button.

The Azure Active Directory App require two delegated permissions into the connected mailbox.

  1. Mail.ReadWrite
  2. User.Read

If desired, you can create your own custom Azure Active Directory Application with the above permissions to use with Inbox. This process is described below in the Custom Active Directory App section.

active_directory.png

You'll then be taken to a Microsoft page where you will select the email account you want to connect. Since both the required permissions are delegated, they do not require Administrator consent. If successful, you will be returned to PhishingBox and get a success message.

Microsfot_Authorize.jpg

 

SMTP (Outgoing)

The SMTP (Outgoing) tab contains a setting that lets you configure your own SMTP server for sending email. Clicking the "Custom SMTP (Outgoing) Mail Server" switch will reveal the outgoing mail server configuration panel, where you can configure the SMTP server from which system and phishing emails will come. Input the configuration specified by your mail server in order to allow PhishingBox to connect to the server via SMTP. This will allow PhishingBox to send mail via your mail server.

Note: If you are attempting to connect to a mailbox in Microsoft, the account must be a licensed Microsoft user.

Screenshot_2021-12-30_095917.png

RESELLERS ONLY: The "Use as Sub Account System Mail" and "Use as Sub Account Phishing Mail" will make all phishing/system mail in your sub accounts come from the SMTP server. In order for these settings to be used in a sub-account, your System Email Addresses (on the General tab) must also be set to "custom".

After configuring the connection to the mail server via SMTP, click "Test SMTP" to verify that PhishingBox can connect to the mail server.

  •  Note: Some security configurations may block PhishingBox from connecting to your mail servers. PhishingBox admin portal servers (US - 54.80.160.189, EU - 54.93.55.235) must have access to the SMTP port. Consult with your software or hardware vendor(s) for troubleshooting assistance.

 

Custom Active Directory App

Microsoft requires the use of OAuth to connect to an email account and modify messages. In order to add a Microsoft account inbox connection to your list of Inboxes, you must first create an app registration inside your Azure AD admin account. Then, from the Custom Active Directory App tab on the Mail Settings page, you can add the app registration by clicking the Add Custom App button. This displays a modal in which you'll enter the app name, client id, and client secret. The client id and client secret will come from the app registration in Azure. The app name is something you assign to the Active Directory App in PhishingBox for identification purposes.

graph_app_popup.png

The client id and client secret will come from the app registration you create in Azure AD.

ad_app.png

 

Once you've added an Azure Active Directory App, the app will be available from the Microsoft App dropdown when you add a new Inbox connection.

Related articles

Comments

0 comments

Please sign in to leave a comment.