Information Gathering

Information Gathering, often referred to as Open Source Intelligence (OSINT) in the context of ethical hacking, is the systematic collection and analysis of publicly available data about a target, providing the foundational knowledge necessary to identify potential vulnerabilities and craft targeted security assessments.

Command line tools

From	Use
Email	`holehe $email`
	`ghunt email $email` (for google account)
	`github-recon $email` (link, for github account)
Domain	`theHarvester -d $domain -l 100`
	`theHarvester -d $domain -l 100 -b all` (full)
Username	`sherlock $username`
Image	`exiftool $imagePath`
Instagram	`instaloader profile $username`
Github	`trufflehog github --org=$usernameOrOrg>`
	`github-recon $username` (link)

Online tools

For	Use
Visualiser	OSINTracker
IP	Shodan
	Censys
Domain	Whois
Name	Webmii
	BreachDirectory
	LeakLookup
	IntelX
	Genealogic.review
SSID	Wigle
Image	PimEyes
	TinEye
	Pic2Map (exif geolocation)
Username	DeHashed
	BreachDirectory
	IntelX
	LeakLookup
	Oathnet
Email	DeHashed
	Hunter
	HaveIBeenPwned
	BreachDirectory
	LeakLookup
	IntelX
	Oathnet
Phone	Epieos
Instagram	Dumpor
Misc	Goosint
	OSINT Framework
	OSINT Dojo

OSINT Frameworks

Recon-ng is a modular Python framework for automating OSINT collection via many built-in modules
SpiderFoot is an open-source tool aggregating dozens of data sources to profile domains, IPs, or identifiers
Eleakxir is a self-hosted search engine for leaked data

Cheatsheets

nix4cyber

Title here

Information Gathering

Command line tools

Online tools

OSINT Frameworks

Information Gathering

Command line tools#

Online tools#

OSINT Frameworks#

Command line tools

Online tools

OSINT Frameworks