どーも。ばぁどです。
theHarvester とは
Pythonで書かれてたOSINTツールです。 Web上に公開されているメールアドレスやドメインなどの情報を収集することが可能です。
Google はもちろんのこと、bingやyahooなどの検索サイトで公開されているかどうかを確認することが可能です。
実際に使ってみる
GitHub から clone する
$ git clone https://github.com/laramies/theHarvester.git Cloning into 'theHarvester'... remote: Enumerating objects: 6571, done. remote: Total 6571 (delta 0), reused 0 (delta 0), pack-reused 6571 Receiving objects: 100% (6571/6571), 4.66 MiB | 3.22 MiB/s, done. Resolving deltas: 100% (4404/4404), done.
初期設定
requirements.txtが存在するので、pip installで必要なライブラリなどを取得する。
$python3 -m pip install -r requirements.txt
※必要に応じて sudo 権限を用いる
実行
実行コマンド
python3 theHarvester.py -d [domain] -l 100 -b all
実行結果
*******************************************************************
* _ _ _ *
* | |_| |__ ___ /\ /\__ _ _ ____ _____ ___| |_ ___ _ __ *
* | __| _ \ / _ \ / /_/ / _` | '__\ \ / / _ \/ __| __/ _ \ '__| *
* | |_| | | | __/ / __ / (_| | | \ V / __/\__ \ || __/ | *
* \__|_| |_|\___| \/ /_/ \__,_|_| \_/ \___||___/\__\___|_| *
* *
* theHarvester 3.2.0dev0 *
* Coded by Christian Martorella *
* Edge-Security Research *
* cmartorella@edge-security.com *
* *
*******************************************************************
[*] Target: [domain]
[!] Missing API key.
[!] Missing API key.
[!] Missing API key.
[!] Missing API key.
Searching results
[*] Searching Duckduckgo.
[*] Searching Baidu.
Searching results.
[*] Searching Suip this module can take 10+ min but is worth it.
[*] Searching Dnsdumpster.
[*] Searching Otx.
[*] Searching Exalead.
Searching results.
[*] Searching Bufferoverun.
[*] Searching Dogpile.
Searching 0 results.
[*] Searching Threatcrowd.
[*] Searching CRTsh.
Searching results.
Searching 0 results.
[*] Searching Bing.
[*] Searching Virustotal.
[*] Searching Netcraft.
Searching 100 results.
[*] Searching Google.
Searching results.
[*] Searching Certspotter.
Searching 100 results.
[*] Searching Linkedin.
[*] Users found: 13
---------------------
Christine Flynn - QESH Document Controller - [domain]
Cynthia Rubio - Executive Secretary - [domain]
David Yu - Rolling stock engineer - [domain]
Deepak Dubey - Senior Manager - [domain]
Dr. SOTIRIOS PASCHALIDIS - Director - [domain] Ltd
Duncan White - Resident Engineer Roads - [domain]
Edom Bezu - Topographic Engineer - [domain]
[domain] [domain] - Truck Driver - Transputinas ltd
Maurice Opar - Assistant Engineer - [domain]
Phillip MBULIGWE - Environmental Expert - [domain]
Pragati Srivastava - Manager HR - [domain] India
Rajkumar Vishwakarma - Engineer - [domain]
Shivani Sonu - Assistant Manager - [domain] India Pvt Ltd.
Searching 100 results.
[*] Searching Linkedin.
[*] No links found.
[*] Searching Intelx.
Searching 0 results.
[*] Searching Trello.
[*] IPs found: 5
-------------------
24.xxx.xx.xxx
158.xxx.xxx.xx
183.xx.xxx.xx
183.xx.xxx.xx
210.xxx.xx.xxx
[*] Emails found: 1
----------------------
contact@[domain]
[*] Hosts found: 19
---------------------
an[domain]:183.xx.xxx.xx
blog.an[domain]:183.xx.xxx.xx
blue-a[domain]:183.xx.xxx.xx
[domain]:24.xxx.xx.xxx
[domain]:24.xxx.xx.xxx
[domain]:24.xxx.xx.xxx
mail.[domain]:158.xxx.xxx.xx
mail.[domain]:158.xxx.xxx.xx
mta-sts.an[domain]:183.xx.xxx.xx
mta-sts.blue-a[domain]:183.xx.xxx.xx
raya[domain]:183.xx.xxx.xx
www.an[domain]:183.xx.xxx.xx
www.blue-a[domain]:183.xx.xxx.xx
www.[domain]:183.xx.xxx.xx
www.[domain]:183.xx.xxx.xx
www.[domain]:183.xx.xxx.xx
www.[domain]:183.xx.xxx.xx
www.raya[domain]:158.xxx.xxx.xx
[*] Trello URLs found: 7
--------------------
https://trello.com/b/blagzqzl/india-business-r[domain]trations
https://trello.com/b/grflbrwz/customer-billing-schedule
https://trello.com/b/kil63azb/besoin-de-support-[domain]
https://trello.com/c/npdtcnk5/21-[domain]
https://trello.com/c/npzaomsn/3-[domain]-polska-sp-z-oo
https://trello.com/c/odjfmuqn/22-[domain]-m
https://trello.com/gal[domain]1
まとめ
- theHarvester は 情報を集めるOSINTツール
- Python 環境が構築されていれば使用可能
