ncat -C <ip address>
HELO mail.co.uk
MAIL FROM: <user@mail.co.uk>
RCPT TO: <test@email.com>
DATA
Test Email

nmap --script smtp-open-relay.nse [--script-args smtp-open-relay.domain=<domain>,smtp-open-relay.ip=<address>,...] -p 25,465,587 <host>
Host script results:
| smtp-open-relay: Server is an open relay (1/16 tests)
|_MAIL FROM:<antispam@insecure.org> -> RCPT TO:<relaytest@insecure.org>