Generate possible email addresses from personal information using common naming patterns and check them against breach databases.
MailCraft is an OSINT web tool built for investigators and researchers. It generates possible email addresses by combining personal information against common naming patterns across 24 email providers, then checks them against breach databases to identify exposed accounts.
- Pattern Generation - Combines names, birth dates, nicknames, and postcodes into 100+ email patterns across 24 providers with relevance scoring
- Wildcard Search - Filter results using
*(any characters) and_(single character) pattern matching - Breach Checking - Queries XposedOrNot and LeakCheck databases to identify emails found in known data breaches
- Export and Share - Copy results to clipboard, download as CSV, or share via URL with encoded application state
Enter a first name, last name, and optional details (middle name, nickname, birth year, postcode) to generate possible email addresses. Results are scored by pattern commonality, identifiability, and provider market share. Select any email to view detailed scoring or run verification checks against it.
| Area | Description |
|---|---|
| Search & Filter | Wildcard query input with quick-access domain buttons and custom domain support |
| Person Details | Input fields for name, birth year, and optional middle name, nickname, postcode, and birthday |
| Patterns | Toggle pattern categories on/off to control which email formats are generated |
| Results List | Scrollable list of generated emails with inline verification badges and breach counts |
| Detail Sidebar | Expanded view of a selected email showing scoring breakdown, verification checks, and data exposure |
| Provider Reference | Collapsible table of provider-specific email rules and domains |
Each generated email receives a relevance score based on:
- Commonality (35%) - How frequently the pattern appears in real-world usage
- Identifiability (45%) - How uniquely the pattern identifies the person
- Provider Market Share (20%) - Relative popularity of the email provider
- PII Bonus - Extra weight for patterns using additional personal information like birth year or nickname
Each address goes through four layers of checks:
- Syntax - Validates the address format against RFC 5321 and provider-specific rules (Gmail, Outlook, Yahoo, iCloud each have unique constraints like character limits and allowed characters)
- MX Records - DNS lookup to confirm the domain accepts email
- Disposable Check - Flags temporary/throwaway email providers using the mailchecker database
- Breach Databases - Searches XposedOrNot and LeakCheck for appearances in known data breaches and leaks
After verification, each address is marked as INVALID (failed syntax, MX, or disposable check) or CHECKED (passed basic checks). Emails found in breaches display a count of known exposures.
- Rate Limiting - Verification requests are spaced 500ms apart to avoid API throttling
- Batch Limit - The top 10 results can be tested at once, or all results can be tested sequentially with abort support
- State Persistence - All application state is encoded in URL query parameters for sharing; no data is stored server-side