I had an idea about a way to prank my brother.

My idea was to try to get my brother to give me his facebook password, and then add rediculous applications to his account...
To do this, I was hoping to change my email account settings in Outlook to make it look like I'm sending him an email from facebook saying that it looks like his account has been hacked and that his password may have been changed. And then asking for his password to make sure the records on facebook's systems are accurate.

I managed to change the name on the email, but when I read the test mail, it went through as 'Facebook Support [w3bwarl0ck@gmail.com].
Obviously, this is a problem and it made me think, is it actually possible to fake your email address? If so, how? I changed the email address on my gmail account in outlook, and I through the only sign that the mail's fake would be in the headers...

No real reason for the prank, just jokes between brothers...

Last time, I took a screenshot of his desktop, hid all his icons and set the background image to the screenshot I took... He was really confused, but we got a good laugh out of it...

That's so juvenile.   Why not just change his shell to something like, oh, a looped rickroll video.   There is also the BSODomizer.

I guess the authorities/ police.

Changing a desktop background is one thing, gaining access to his private data is another.
That's a line I wouldn't like to cross with my sis (and she with me).

Could be the start of a nice cyberwar between the two of you though, might be a good opportunity to learn.
Wargames ftw!

In any case, if you do continue, have fun. But be ready for some hard-ass retaliation coming your way. At least that would be the case with me if you were my brother

you can use a fake email sender. with that you can send from anyones e-mail address. and if you wanna get his password . do a MITM in the local network and grab the password .

This is a little off topic but I purchased an item online from a major company in the uk today and got an email to confirm my order. I then saw this bit in the email


Am I reading this wrong but does this not leave them open to a SE attack for example please contact us asap on 0111111111 then use social engineering to get all the personal details?