Free tool that acts as a honeypot for spammers, who use spambots to harvest email addresses from websites
Version: 0.2BASTED has been designed to become a powerful tool for system administrators willing to learn about the the spam process.
Operating System: Mac OS X
The idea behind BASTED is simple. Spammers use programs that crawl our websites and automatically gather text matching the email address format (email@example.com).
They then use those harvested email addresses to pollute the internet, our networks and everyone's mailboxes with unsolicited spam mail. BASTED tricks spambots into collecting randomly generated email addresses from a php script, each one recorded in BASTED's database along with the visitor's IP address.
Those email addresses would be in the format firstname.lastname@example.org and should be handled by your MTA to forward all mail traffic into one mailbox. Once mail is received on that mailbox, a perlscript would parse the mailbox and insert the mail message in BASTED's database.
BASTED is then able to generate nice (abuse) reports containing all ascociated data for the spam mail received. Yes, it is handy for monitoring/trapping those filthy spammers.
At the moment, BASTED is designed to operate on its own vhost (for web and mail), which gives the advantage of only receiving spam messages sent solely to addresses that were gerated by the php script.
It is important to note that the forementioned addresses are generated using a pronounceable word algorithm, in order to make sure that the email address appears valid to any filters running on the crawler's side.
Through its web-based administrative interface, BASTED can generate reports about spam-mail received and usernames/mailboxes generated by the php script, report IP addresses of spammers and spamcrawlers, associate those results, and last but not least, cr
BASTED is written in php and perl, and also requires a mailserver accepting spam-mail for a dns record, and a web-server to host the php-scripts for the honeypage and the administrative interface.
NOTE: BASTED is developed, licensed and distributed under the terms of the BSD License.