OSINT
The Internet knows pretty much everything, we just need to ask the right questions
Last updated
The Internet knows pretty much everything, we just need to ask the right questions
Last updated
Gives a ton of excellent resources on gathering intel.
Websites which are constantly scanning the Internet for available devices, performs banner grabbing and publicly publishes its findings. Great to see what attackers on the Internet will see for an IP you own.
This is an OCR package which is a CLI tool that understands 100+ languages. Very useful to gather quick text from images!
GHDB contains a ton of premade dorks to find info.
Dork | Purpose |
| searches for whales without any mention of bitcoin |
| filters to only the site m4lwhere.org |
| search the Google cache only |
| filters to the extension and filetype only |
| Searches for any page that has "Index of " in the name |
| Searches for any page that ends in a ".cgi" |
| Searches for a directory listing of a page on the site m4lwhere.org |
CAs are required to publish all certificates issued to a public database. This can be useful to find servers that are internal to a LAN or are not Internet accessible.
Occasionally there will be old or forgotten IPs for a site listed in passive DNS listings.
Hunter.io, compiles lists of org metadata, useful to identify email addressing schemes.
haveibeenpwned.com, lists of pwned email accounts.
dehashed.com, public data dumps available, requries paid access.
scylla.sh, indexed data dumps, free, currently down.
Public data dump forums
Torrents
