Obtain the domain name provider through email forgery (DNSPOD)

In the last test, the technical support was spoofed, and the resolution was modified successfully. We may think DNSpod is safe, but it all relies on emails to identify authenticity, which brings us the advantage of forging emails.
Three steps in total
0X01 spoofing customer service, domain name resolution failure on your computer
0X02 spoofing customer service, mailbox cannot receive DNSPOD mail.
0X03 counterfeit email, sent in the past, KO DNSPOD
Because domain names involving DNSPOD are secure, we do not spoof customer service diagrams, but only forge how to use the mailbox. Including ideas, we will also say that the last contribution will be an honorary member. When we become a member, we will strive to become a core member. Corn with sharp online knives: safe.mcbang.com
Here we will talk about ideas and how to use the counterfeit email process.
As we all know, when the domain name is resolved to DNSPOD, even if the social engineering domain name fails for more than half, if the domain name provider is helen's dog Dad, it will fail, however, I recently studied the DNSPOD verification process and found that he used emails to verify and resolve domain names for you. This provides us with benefits. We can forge emails completely.
0x01
Deceiving customer service and saying that you cannot resolve the domain name, as long as you say it casually, you say that you cannot resolve the domain name, saying that your resolution has not taken effect, but the IP address remains unchanged, ask Customer Service what is going on. The customer service will say there are various reasons for changing the computer. You also say that I have changed the server here and I need to resolve the domain name. Now I cannot resolve the domain name. What should I do?-In fact, I think I am a sinner, deceiving too many people, haha. Continue, he will say that I sent a verification email to you. You can just reply. I want to say that my mailbox cannot receive a DNSPOD email.
0x02
I have already mentioned that I cannot receive DNSPOD emails. What should I do? The customer service didn't know what to do at that time. You continue to use this mentality. You also said, otherwise, I will use my account email to send you a certificate or a text description, and he will prompt you, not to mention this.
0x03
The point is how to forge it. We know that all the previously forged software is useless. I want to introduce it to you in the United States. It is a sample image. You can understand it. Www.deadfake.com.
The following figure shows

This is forged.
The following describes how to override deadfake.

Here, we will use the image to indicate that the code in the red box is the covered code.

In fact, this website is used in this way. You can make good use of the above ideas.