theHarvester

mirror of https://github.com/laramies/theHarvester.git synced 2024-09-20 15:26:31 +08:00

E-mails, subdomains and names Harvester - OSINT

blueteam discovery emails information-gathering osint python recon reconnaissance redteam starred-laramies-repo starred-repo subdomain-enumeration

Go to file

Jay Townsend e5937a41f0 gitignore Signed-off-by: Jay Townsend <townsend891@hotmail.com>		2019-09-29 20:51:36 +01:00
.github	Remove censys for spyse	2019-09-26 23:01:44 +01:00
tests	Fixed test in test_otx and fixed pep8 error in main.py	2019-09-25 15:17:24 -04:00
theHarvester	Merge remote-tracking branch 'upstream/master' into dev	2019-09-29 18:13:58 +01:00
wordlists	Syncing and updated crtsh to work properly.	2019-08-08 00:27:42 -04:00
.gitattributes	Removed google-profiles and clean up.	2019-02-13 23:05:52 -06:00
.gitignore	gitignore	2019-09-29 20:51:36 +01:00
.lgtm.yml	Make sure we set lgtm.yml to use python3	2019-09-22 22:24:22 +01:00
.travis.yml	Remove censys for spyse	2019-09-26 23:01:44 +01:00
api-keys.yaml	Add Spyse to api-keys.yaml	2019-09-29 20:41:58 +01:00
CONTRIBUTING.md	Move contributing to the correct place and file name convention	2019-09-08 00:55:09 +01:00
COPYING	Fix line endings.	2019-02-04 13:48:29 +01:00
Dockerfile	Update dockerfile to use the kalilinux image	2019-09-25 00:35:14 +01:00
LICENSES	Fix line endings.	2019-02-04 13:48:29 +01:00
mypy.ini	Update mypy settings to use the new features of the 0.730 release	2019-09-26 19:36:01 +01:00
README.md	Remove censys for spyse	2019-09-26 23:01:44 +01:00
requirements.txt	Bump shodan from 1.18.0 to 1.19.0	2019-09-29 18:45:45 +00:00
setup.cfg	remove commented out flake8 param	2019-09-26 21:48:40 +01:00
setup.py	Travis fixes/flake8 fixes	2019-09-01 01:27:13 +01:00
theHarvester-logo.png	Update theHarvester-logo.png	2019-09-10 23:14:45 +02:00
theHarvester.py	Solve issue #259	2019-07-03 12:44:22 +02:00

README.md

What is this?

theHarvester is a very simple, yet effective tool designed to be used in the early
stages of a penetration test. Use it for open source intelligence gathering and
helping to determine a company's external threat landscape on the internet. The
tool gathers emails, names, subdomains, IPs, and URLs using multiple public data
sources that include:

Passive:

baidu: Baidu search engine - www.baidu.com
bing: Microsoft search engine - www.bing.com
bingapi: Microsoft search engine, through the API (Requires API key, see below.)
crtsh: Comodo Certificate search - www.crt.sh
dnsdumpster: DNSdumpster search engine - dnsdumpster.com
dogpile: Dogpile search engine - www.dogpile.com
duckduckgo: DuckDuckGo search engine - www.duckduckgo.com
Exalead: a Meta search engine - https://www.exalead.com/search
github-code: Github code search engine (Requires Github Personal Access Token, see below.) - www.github.com
google: Google search engine (Optional Google dorking.) - www.google.com
hunter: Hunter search engine (Requires API key, see below.) - www.hunter.io
intelx: Intelx search engine (Requires API key, see below.) - www.intelx.io
linkedin: Google search engine, specific search for Linkedin users - www.linkedin.com
netcraft: Netcraft Data Mining - www.netcraft.com
otx: AlienVault Open Threat Exchange - https://otx.alienvault.com
securityTrails: Security Trails search engine, the world's largest repository
of historical DNS data (Requires API key, see below.) - www.securitytrails.com
shodan: Shodan search engine, will search for ports and banners from discovered
hosts - www.shodanhq.com
threatcrowd: Open source threat intelligence - www.threatcrowd.org
trello: Search trello boards (Uses Google search.)
twitter: Twitter accounts related to a specific domain (Uses Google search.)
vhost: Bing virtual hosts search
virustotal: virustotal.com domain search
yahoo: Yahoo search engine