← 返回 Skills 市场
psyduckler

Email Finder

作者 psyduckler · GitHub ↗ · v1.0.1
cross-platform ⚠ suspicious
1041
总下载
0
收藏
3
当前安装
2
版本数
在 OpenClaw 中安装
/install email-finder
功能描述
Find email addresses for a domain by combining website scraping, search dorking, pattern guessing, DNS analysis, and SMTP verification. Use when prospecting...
使用说明 (SKILL.md)

Email Finder

Discover email addresses associated with a domain using multiple methods.

How It Works

  1. Website Scraping — Fetches homepage, /contact, /about, /team pages and extracts emails via regex
  2. Search Dorking — Searches for published emails in directories and search engines
  3. Pattern Guessing — If a name is provided, generates common patterns (first@, first.last@, flast@, etc.)
  4. DNS Hints — Checks MX/SPF/DMARC records to identify the email provider
  5. SMTP Verification — Verifies all found/guessed emails using RCPT TO

Dependencies

pip3 install dnspython

Usage

Basic domain search

python3 scripts/find_emails.py example.com

With name for pattern guessing

python3 scripts/find_emails.py example.com --name "John Smith"

Skip SMTP verification

python3 scripts/find_emails.py example.com --no-verify

Options

  • --name "First Last" — Enable pattern guessing for a specific person
  • --no-verify — Skip SMTP verification step
  • --timeout SECONDS — Connection timeout (default: 10)

Output

JSON to stdout:

{
  "domain": "example.com",
  "provider": "Google Workspace",
  "mx": ["aspmx.l.google.com"],
  "spf": "v=spf1 include:_spf.google.com ~all",
  "dmarc": "v=DMARC1; p=reject; rua=mailto:[email protected]",
  "emails_found": 2,
  "emails": [
    {
      "email": "[email protected]",
      "source": "scraped",
      "deliverable": "yes",
      "smtp_detail": "2.1.5 OK"
    },
    {
      "email": "[email protected]",
      "source": "guessed",
      "deliverable": "catch-all",
      "smtp_detail": "2.1.5 OK"
    }
  ]
}

Source values

Value Meaning
scraped Found on the domain's website
searched Found via search/directory lookup
guessed Generated from name patterns
dns Found in DNS records (DMARC reports, etc.)

Deliverable values

Value Meaning
yes Server accepted the recipient
no Server rejected the recipient (invalid)
catch-all Server accepts all addresses
unknown Could not determine
not_checked Verification was skipped

Rate Limiting

The script includes built-in rate limiting at every stage to protect your IP:

# Defaults: 0.5s between page fetches, 2s between SMTP checks, max 15 SMTP checks
python3 scripts/find_emails.py example.com --name "John Smith"

# Conservative settings for sensitive environments
python3 scripts/find_emails.py example.com --scrape-delay 1.0 --smtp-delay 4 --max-smtp-checks 8

# Just scrape, no SMTP (zero risk)
python3 scripts/find_emails.py example.com --no-verify

Options

  • --scrape-delay SECONDS — Pause between website page fetches (default: 0.5)
  • --smtp-delay SECONDS — Pause between SMTP verification checks (default: 2.0)
  • --max-smtp-checks N — Max SMTP verifications per run (default: 15). Remaining emails get not_checked status.

Why rate limiting matters

This tool hits both web servers and mail servers. Without rate limiting:

  • Web scraping — Aggressive crawling gets your IP blocked by WAFs (Cloudflare, etc.) and makes you look like a bot. Respectful delays avoid this.
  • SMTP verification — Mail servers flag IPs making rapid RCPT TO requests. Your IP can get blacklisted, affecting your ability to send real email.
  • Residential IPs are fragile — Unlike datacenter IPs, your home/office IP is shared across all your internet activity. Getting it blacklisted affects everything.

Guidelines for agents

Scenario Recommended approach
Single domain lookup Defaults are fine
Domain + name pattern guessing Defaults are fine (15 SMTP checks covers all patterns)
Multiple domains in sequence Add 5-10s pause between domains. Don't run more than 20 domains/day
Just need the email provider Use --no-verify — DNS-only, zero risk
Bulk prospecting (50+ domains) Use a paid service (Hunter.io, Apollo) or spread across multiple days

Key principle: The script is designed for targeted lookups, not mass scraping. If you need to process hundreds of domains, use a dedicated service with proper IP reputation management.

Limitations

  • Website scraping depends on emails being visible in page source (won't find obfuscated/JS-rendered emails)
  • Search engines may block automated queries
  • SMTP verification requires outbound port 25 access
  • Catch-all domains accept all addresses — can't confirm real inboxes
  • Be respectful: the script adds delays between requests but don't run it in tight loops
安全使用建议
This skill appears to implement an email-finder tool that scrapes pages, reads DNS records, and probes mail servers via SMTP RCPT TO. Before installing or running it: 1) Review the full script — the provided file in the manifest was truncated, so there may be hidden behavior in the omitted portion. 2) Be aware SMTP verification performs active probes to other domains' mail servers (outbound port 25) and can trigger blacklisting or be considered intrusive—use --no-verify if you only need DNS/scraping. 3) The fetch code disables HTTPS certificate validation (ssl.CERT_NONE), which is insecure; consider enabling cert checks or running in a controlled environment. 4) Respect target sites' terms of service and robots.txt and avoid bulk runs; SKILL.md's rate-limiting guidance is helpful—follow it. 5) Ensure you have permission for any large-scale or automated lookups, and run the tool from an environment where outbound SMTP/DNS traffic is allowed and won't affect other services. If you want to proceed, request the full, untruncated source to audit before use.
功能分析
Type: OpenClaw Skill Name: email-finder Version: 1.0.1 The skill bundle is classified as suspicious primarily due to a significant security vulnerability in `scripts/find_emails.py`: it disables SSL certificate verification (`ssl.CERT_NONE`) when fetching web pages, exposing the agent to potential Man-in-the-Middle (MITM) attacks. Additionally, the script performs extensive network requests (HTTP/HTTPS, DNS, SMTP) which, while aligned with its stated purpose of email finding, represent high-risk capabilities. There is no evidence of intentional malicious behavior like data exfiltration, persistence, or prompt injection against the agent in `SKILL.md`.
能力评估
Purpose & Capability
Name and description align with the included script: website scraping, DNS inspection, pattern guessing, and SMTP RCPT verification. No unrelated credentials, binaries, or install steps are requested.
Instruction Scope
SKILL.md and the script instruct the agent to fetch site pages, query search-engine-like URLs, and perform SMTP RCPT checks against mail servers. Those actions are consistent with the stated purpose but are network-scanning behaviors with privacy/abuse implications. The code also disables HTTPS certificate validation when fetching pages (ssl.CERT_NONE / check_hostname=False), which is a security risk and unusual for a scraping tool and could mask MITM/network issues. SKILL.md encourages rate-limiting (good), but the script performs potentially sensitive external probes (SMTP) that could lead to abuse or IP blacklisting.
Install Mechanism
No install spec is included; dependencies are minimal and declared (dnspython). No downloads from arbitrary URLs or archives are present in the manifest.
Credentials
The skill requests no environment variables or credentials. The network access (HTTP/HTTPS, DNS, outbound SMTP on port 25) is proportional to the feature set but requires the user to ensure allowed egress in their environment.
Persistence & Privilege
The skill is not always-enabled and does not request elevated platform privileges or modify other skills. Autonomous invocation remains possible (platform default) but is not combined with other red flags.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install email-finder
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /email-finder 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
Re-publish: find email addresses via website scraping, search dorking, pattern guessing, DNS analysis, and SMTP verification.
v1.0.0
Initial release: find email addresses via website scraping, search dorking, pattern guessing, DNS analysis, and SMTP verification.
元数据
Slug email-finder
版本 1.0.1
许可证
累计安装 3
当前安装数 3
历史版本数 2
常见问题

Email Finder 是什么?

Find email addresses for a domain by combining website scraping, search dorking, pattern guessing, DNS analysis, and SMTP verification. Use when prospecting... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1041 次。

如何安装 Email Finder?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install email-finder」即可一键安装,无需额外配置。

Email Finder 是免费的吗?

是的,Email Finder 完全免费(开源免费),可自由下载、安装和使用。

Email Finder 支持哪些平台?

Email Finder 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Email Finder?

由 psyduckler(@psyduckler)开发并维护,当前版本 v1.0.1。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论