Research
Malicious fezbox npm Package Steals Browser Passwords from Cookies via Innovative QR Code Steganographic Technique
A malicious package uses a QR code as steganography in an innovative technique.
By Olivia Brown - Sep 22, 2025
- Version
- 0.5
- Maintainers
- 1
======================================
smtpcli is SMTP Client tool.
This command line tool for SMTP client.
Requirements
- Python 2.7 or later.
Setup
Case: Github
::
$ git clone https://github.com/kmn/smtpcli $ cd smtpcli $ sudo python setup.py install $ cp sample/smtpcli.conf.sample $HOME/.smtpcli.conf
and edit $HOME/.smtpcli.conf
Case: Pypi
:: $ sudo pip install smtpcli $ cp sample/smtpcli.conf.sample $HOME/.smtpcli.conf
and edit $HOME/.smtpcli.conf
Usage
Setting the configuration file ($HOME/.smtpcli.conf)
An alternative method of command options that use the config file.
Copy examples/.smtpcli.conf.sample to `$HOME/.smtpcli.conf`. `password` key to set password in plain text.
::
#
[smtpcli]
smtp-server = smtp.exmple.org
port = 25
encoding = ISO-2022-JP
mailaddress = user001@exmple.org
password = user001pw
Sending mail
~~~~~~~~~~~~~~~~~~~~
::
$ echo "Hello, world!" > msg.txt
$ smtpcli --to user007@example.org --subject "from 001 to 007" \
--file msg.txt
To: user007@example.org
Subject: from 001 to 007
Body: Hello, world!
Send this email? [y/N]
History
-------
0.4 (2012-09-16)
~~~~~~~~~~~~~~~~
* fix minor bugs
0.3 (2012-09-16)
~~~~~~~~~~~~~~~~
* fix minor bugs
0.2 (2012-09-16)
~~~~~~~~~~~~~~~~
* fix minor bugs
0.1 (2012-09-16)
~~~~~~~~~~~~~~~~
* modify setup.py
0.0 (2012-06)
~~~~~~~~~~~~~~~~
* first release
See also
--------
* `RFC 821 <http://tools.ietf.org/html/rfc821.html>`_
* `RFC 1896 <http://tools.ietf.org/html/rfc1869.html>`_
ToDo
====
Features
--------
* Sending email.
Improvement
-----------
* Using CC or BCC.
* Send to multiple destination mailaddress.
* Add "--no-confirm " option
* Add siguniture
* gpg
Known bugs
---------
* garbling when viewing via iPhone.
FAQs
SMTP CLI tool
We found that smtpcli demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
/Security News
Identifying and Preventing Fraudulent Engineering Candidates: An Investigation into 80 Confirmed Cases
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.
By Lauren Valencia, Kirill Boychenko - Sep 17, 2025
Application Security
/Research
/Security News
Updated and Ongoing Supply Chain Attack Targets CrowdStrike npm Packages
Socket detected multiple compromised CrowdStrike npm packages, continuing the "Shai-Hulud" supply chain attack that has now impacted nearly 500 packages.
By Kush Pandya, Peter van der Zee, Olivia Brown, Socket Research Team - Sep 16, 2025