OSINT-Search - Useful For Digital Forensics Investigations Or InitialBlack-Box Pentest Footprinting

OSINT-Search could be a great tool for digital forensics investigations or initial black-box pentest footprinting.

OSINT-Search Description

• Python script that applies OSINT techniques by searching public data using domain, email, phone, IP addresses or URLs.
• Create account at https://pipl.com/api & get the API key.
• Create account at https://www.opencnam.com/ & get the Account SID and Auth Token.
• Create account at https://www.shodan.io/ & get the Shodan API key.
• Create account at https://whatcms.org/API & get the WhatCMS API key.
• Create account at https://censys.io/register & get the API ID and API secret.
• Create account at https://dashboard.fullcontact.com/consents & get The Full Contact API key. 

Functionality

• Collect personal information include full name, age, gender, languages, location, social networks, etc...
• Collect information related to data breaches.
• Collect information related to pastes of data breaches made public.
• Collect which country a phone number belongs to.
• Collect results of google hackings searches.
• Collect results related to a domain or an IP address.
• Collect digital certificates for a certain domain.
• Collect CMS for a certain website.
• Collect DNS Records and zone transfers information for a certain domain.
• Collect Facebook ID and a facebook page full of photos after getting a facebook profile URL.
• Collect URLs present in some web page.
• Collect URL to know what torrents are being downloaded from some IP.
• This script allows specfic searches and in bulk.
• More functionalities may to be added later. 

Tested On

• Kubuntu 18.04.2 LTS
• Kali Linux 2019.1
• Windows 10

Requirements (Install)

Linux:

• Python3 - https://docs.python-guide.org/starting/install3/linux/#install3-linux

• sudo apt-get install git

Windows:

• Python3 - https://www.python.org/downloads/windows/
• git - https://git-scm.com/download/win

Both:

• pip3 install -r requirements.txt
• pip3 install git+https://github.com/abenassi/Google-Search-API --upgrade
• pip3 install https://github.com/PaulSec/API-dnsdumpster.com/archive/master.zip --user

Run

• first run, you need to submit your API fields to get all the functionality of the script. I suggest you create the accounts mentioned in the description.
• 'osintSearch.config.ini' configuration file, created with your data and can be edited by you.

Usage

• $ python3 osintS34rCh.py

DOWNLOAD

• Share
• Share
• Share
• Share
• Share