OSINT-SPY Search using OSINT(Open Source Intelligence)

Performs OSINT scan on email/domain/ip_address/organization using OSINT-SPY. It can be used by Data Miners, Infosec Researchers, Penetration Testers and cybercrime investigator in order to find deep information about their target.

File Name : README
Author : @sk_security
Version : 0.0.1
Website : osint-spy.com

Overview of this tool:

• Perform scan on IP Address / domain / email address / BTC(bitcoin) address / device
• Find out the latest bitcoin block information
• List out all the cyphers supported by particular website and server
• Check whether a particular website is vulnerable to heartbleed or not?
• Dump all the contacts and messages from skype database
• Analyze malware or malicious file remotely

Installation

git clone https://github.com/SharadKumar97/OSINT-SPY.git
cd OSINT-SPY
On Windows
python install_linux.py
On Linux
python install_windows.py

GENERATING API KEYS

We need some API Keys before using this tool. Following are the API’s which we are using this tool for a time being.
1. Clearbit API
2. Shodan API
3. Fullcontact API
4. Virus_Total API
5. EmailHunter API

Clearbit API

• Register yourself at Clearbitand activate your account.
• Once you login, you will find one section of API. Go there and copy your secret API Key and paste inside config.py file.
• Config.py file can be found in the modules directory of OSINT-SPY.

Shodan API

• Register yourself at Shodan and activate your account.
• Once you activated your account then login to Shodan.
• Once you login, you will find an API key in the overview tab.
• Copy that key and paste inside config.py file.

FullContact API

• Create an account at FullContact. Use your business email address.
• Fill in the required details.
• After successfully logging in, select Get an API Key from Getting started section.
• Enter the name for the key and after generating, paste the key in fullcontact_api_key.

VirusTotal API

• Register yourself at VirusTotal.
• Once you login, you will find the My API Key section in your profile menu. Just go there and copy your public API Key and paste in config.py file.

EmailHunter API

• Register yourself at Email Hunter.
• Once you login, go to the API tab and click on the EYE icon to view your API Key.
• Copy your API Key in the config.py file.

Usage

OSINT-SPY is very handy tool and easy to use.All you have to do is just have to pass values to parameter.In order to start OSINT-SPY just write -- 

python osint-spy.com



--btc_block



    --btc_block parameter gives you the information of latest bitcoin block chain.



Usage:

python osint-spy.py   --btc_block



--btc_date



    --btc_date parameter will give you an information of bitcoin block chain from given date.



Usage:

python osint-spy.py   --btc_date 20170620



--btc_address



    --btc_address will give you an information about particular bitcoin owner.



python osint-spy.py  --btc_address 1DST3gm6JthxhuoNKFqXrdpzPFfz1WgHpW



--ssl_cipher



    --ssl_cipher will show you all the ciphers supported by given website.



python osint-spy.py  --ssl_cipher google.com



--ssl_bleed



    --ssl_bleed will find out whether given website is vulnerable to heartbleed or not ? .



python osint-spy.py  --ssl_bleed google.com



--domain



    --domain will give you in depth-information about particular domain including whois,dns,ciphers,location and so more.



python osint-spy.py  --domain google.com



--email



    --email will gather information about given email address from various public sources.



python osint-spy.py  --email david@toorcon.org



--device



    --device will search for a given device from shodan and will list out all the available devices on public IP.



python osint-spy.py  --device webcam



--ip



    --ip will gather all the information of given IP Address from public sources.



python osint-spy.py  --ip 127.0.0.1



--skype_db



    --skype_db will find out all the contacts and message history from given skype database.This can be useful for forensics investigator.In Windows,Skype database can be found in AppData\Roaming\Skype\(Your username)\main.db and in Mac OSX , database can be found in /Users/(Your mac user anme)/Library/Support/Skype/(your skyoe username)/main.db



python osint-spy.py   --skype_db main.db



--malware



    --malware will send a given piece of file to virustotal and will give you a result whether given file is malware or not? .



python osint-spy.py  --malware abc.exe



--carrier and --stego_text



    --carrier and --stego_text are used to hide text behind any image.

    --carrier will specify the image behind which you want to hide the text.

    --stego_text will specify the text you want to add.



python osint-spy.py  --carrier image.jpg    --stego_text This_is_secre_text



--stego_find



    --stego_find will find out hidden text behind any image.



python osint-spy.py  --stego_find hidden.jpg

 

Copyright (C) 2017 SharadKumar97

Source: https://github.com/SharadKumar97/