The most complete email security assessment framework in existence. DMARC-pass attack automation, dark web credential hunting, SPF chain analysis, password spray — one static Debian/Kali binary, zero dependencies.
Built by practitioners. Tested in the field. Everything an email security assessment needs — and nothing that belongs in a SaaS dashboard.
Route your email through a provider the target has already authorised — Microsoft 365, Google Workspace, their own ESP. EPS automates the chain: find the stolen credential, test it, relay through it. DKIM signed by Microsoft. SPF passes. DMARC passes. No other tool does this end-to-end.
Most tools start at "send email." EPS starts three steps earlier — mapping the full SPF tree, identifying every authorised ESP, hunting for stolen credentials on the dark web and testing them live. By the time you send, you already know whether it'll land.
Ignis-sec wordlist library bundled — 1,048,576 passwords, curated from real-world leaks. Multi-target mode, STARTTLS, configurable delay, stop-on-hit, live credential vault. Hits feed directly into the DMARC-pass relay engine.
Tor-routed search across dark web paste sites and leak indexes. HIBP stealer log enrichment. Results are automatically tested live against the target mail server — finding credentials is just step one.
Recursively resolve the full SPF authorisation tree. Every include, redirect, and nested mechanism exposed. Domain permutation generator with live DNS validation surfaces all squatting opportunities.
Risk-scored, colour-coded, client-ready. DMARC posture, credential hits, relay exposure, dark web leaks, header forensics — all in one deliverable. From recon to report in one session, not one week of stitching together five different tools.
Desktop GUI for interactive assessments. Headless CLI for scripted pipelines and jump boxes. Both ship in the same static binary.
Assessment Report — One-click professional HTML/PDF report covering DMARC posture, credential spray hits, relay exposure, dark web leaks, and delivery results.
€199/year. Everything the $15,000 tools don't do.
| Capability | EPS €199/yr |
GoPhish Pro ~$1,500/yr |
swaks Free |
Cobalt Strike $3,500/yr |
KnowBe4 Enterprise |
Metasploit Pro $15,000/yr |
|---|---|---|---|---|---|---|
| DMARC-pass via stolen creds | ✓ | ✗ | ✗ | ✗ | ✗ | ✗ |
| Dark web credential hunting (Tor) | ✓ | ✗ | ✗ | ✗ | ✗ | ✗ |
| HIBP stealer log enrichment | ✓ | ✗ | ✗ | ✗ | ✗ | ✗ |
| SPF chain walking | ✓ | ✗ | ✗ | ✗ | ✗ | ~ |
| SMTP spray (1M+ bundled wordlists) | ✓ | ✗ | ✗ | ~ | ✗ | ~ |
| Open relay discovery | ✓ | ✗ | ✗ | ~ | ✗ | ~ |
| Domain permutations + DNS check | ✓ | ✗ | ✗ | ✗ | ✗ | ✗ |
| DKIM signing (own key) | ✓ | ✗ | ~ | ✗ | ✗ | ✗ |
| Email header forensic analyser | ✓ | ✗ | ✗ | ✗ | ✗ | ✗ |
| Professional HTML/PDF report | ✓ | ~ | ✗ | ✗ | ✓ | ✓ |
| Campaign + phishing mode | ✓ | ✓ | ~ | ✓ | ✓ | ✓ |
| Debian/Kali native · single binary | ✓ | ✗ | ✓ | ✗ | ✗ | ✗ |
✓ Full · ~ Partial · ✗ Not available · Pricing from public sources, 2026
Online validation on every launch. Machine-fingerprint locked. No seat sharing.
Prices in EUR excluding VAT. Invoice available via portal. Authorised security testing only.
No credit card. Instant key. You sign — you own the liability.