Infoga is a tool gathering email accounts informations (ip,hostname,country,...) from different public source

Overview

Infoga - Email OSINT

Infoga is a tool gathering email accounts informations (ip,hostname,country,...) from different public source (search engines, pgp key servers and shodan) and check if emails was leaked using haveibeenpwned.com API. Is a really simple tool, but very effective for the early stages of a penetration test or just to know the visibility of your company in the Internet.

screen

Installation

$ git clone https://github.com/m4ll0k/Infoga.git
$ cd Infoga
$ python setup.py install
$ python infoga.py

Python 2 Support

As of January 1st, 2020 no new bug reports, fixes, or changes will be made to Python 2, and Python 2 is no longer supported. it means no new update to python2 and updated version of os's doesn't support python2 anymore. but you can still use the tool

$ git clone https://github.com/m4ll0k/Infoga.git
$ cd Infoga
$ wget https://bootstrap.pypa.io/pip/2.7/get-pip.py
$ python get-pip.py
$ pip2 install -r requirements.txt
$ python setup.py install

This script is Tested in Kali linx , Parrot os , Ubuntu os

Usage

$ python infoga.py --domain nsa.gov --source all --breach -v 2 --report ../nsa_gov.txt

run_1

$ python infoga.py --info [email protected] --breach -v 3 --report ../m4ll0k.txt

info

Support Docker

Install Docker Linux

Install Docker

curl -fsSL https://get.docker.com | bash

To use docker you need superuser power

Build Image dirsearch

To create image

docker build -t "infoga:1" .

dirsearch this is name the image and 1 is version

Using dirsearch

For using

docker run -it --rm "infoga:1" --domain target --source all --breach -v 2

target is the site

Adding persistent volume

For example

docker run -it --rm "infoga:1" -v /tmp/infoga-report:/tmp --domain target --source all --breach -v 2 --report /tmp/report.txt
Comments
  • Issues on lib/output.py

    Issues on lib/output.py

    Infoga rised me error in if 'found' in data['status']: so I decided to add if data!= ([] or None):. I dont know if this is a good fix, cause I haven't seen any leaked mail.

    I also added to infoga.py:

    	def search(self,module):
    		try:
    			os.makedirs('domains/'+self.domain)
    		except OSError as exc:
    			if exc.errno != errno.EEXIST:
    				raise
    		emails = module.search()
    		if emails != ([] or None):
    			list = []
    			f = open('domains/' + self.domain + '/mails.txt','a')
    			for email in emails:
    				new = True
    				if email not in self.listEmail:
    					self.listEmail.append(email)
    				if email and self.domain:
    					for n in list:
    						if n == email:
    							new = False
    					if new == True:
    						list.append(email)
    						f.write(email+'\n')
    			f.close()
    

    For making it more confortable.

    Another question, why does it takes so many time to print at the end all the emails?

    I mean, It saves in seconds the list but it cannot print it?

    Thanks for reading

    opened by evilrawman 10
  • JSON object must be str, not 'bytes'

    JSON object must be str, not 'bytes'

    I'm receiving this error when I search for a specific email

    /infoga$ pip3 install requests Requirement already satisfied: requests in /usr/lib/python3/dist-packages (2.9.1)

    python3 infoga.py --info [email protected]


    Infoga - Email Information Gathering Momo Outaadi (m4ll0k) https://github.com/m4ll0k


    Traceback (most recent call last): File "infoga.py", line 104, in infoga().main() File "infoga.py", line 98, in main data(i,json.loads(self.shodan(i)),email,self.verbose) File "/usr/lib/python3.5/json/init.py", line 312, in loads s.class.name)) TypeError: the JSON object must be str, not 'bytes'

    opened by belisards 2
  • error with setup

    error with setup

    Operating system debian 11

    ######@#######:~/Infoga$ python infoga.py
    Traceback (most recent call last):
      File "/home/anoam/Infoga/infoga.py", line 12, in <module>
        from lib.check import *
      File "/home/anoam/Infoga/lib/check.py", line 8, in <module>
        from lib.output import *
      File "/home/anoam/Infoga/lib/output.py", line 10, in <module>
        from lib.colors import *
      File "/home/anoam/Infoga/lib/colors.py", line 9, in <module>
        import colorama
    ModuleNotFoundError: No module named 'colorama'
    
    opened by raf181 1
  • an update for your README file

    an update for your README file

    hey there Thanks for this awesome tool

    i have been trying to install this script in my parrot os but i got some issue with the commands that you have given below 1 . " git clone https://github.com/m4ll0k/Infoga.gi infoga " has to be " git clone https://github.com/m4ll0k/Infoga.git " 2. " cd infoga " has to be " cd Infoga "

    by using these commands i installed this tool in my 3 os and works fine .. OS are ,,, parrot os , kali linux , ubuntu os

    Thankyou

    opened by kaliram850 1
  • Fix crash when -h is used after another argument

    Fix crash when -h is used after another argument

    Fix undefined function call to usage(True) when -h is used after another argument.

    python infoga.py --domain domain.com -h
    ________________________________________
    -==[ Infoga - Email OSINT 
    -==[ Momo (m4ll0k) Outaadi 
    -==[ https://github.com/m4ll0k 
    ________________________________________
    
    Traceback (most recent call last):
      File "infoga.py", line 109, in <module>
        infoga().main()
      File "infoga.py", line 77, in main
        if o in ('-h','--help'):usage(True)
    NameError: global name 'usage' is not defined
    

    This call should be Banner().usage(True).

    opened by brannondorsey 1
  • Problem with Shodan API

    Problem with Shodan API

    Traceback (most recent call last): File "tools/infoga/run.py", line 216, in infoga().main() File "tools/infoga/run.py", line 201, in main self.all(self.target) File "tools/infoga/run.py", line 156, in all self.baidu(target) File "tools/infoga/run.py", line 90, in baidu info(ip,self.shodan(ip),email) File "tools/infoga/run.py", line 135, in shodan return shodansearch.ShodanSearch(target).search() File "tools/infoga/recon/shodansearch.py", line 20, in search host = self.api.host(self.ip) File "build/bdist.macosx-10.13-intel/egg/shodan/client.py", line 241, in host File "build/bdist.macosx-10.13-intel/egg/shodan/client.py", line 201, in _request shodan.exception.APIError: No information available for that IP.

    opened by reynldi 1
  • Code refactor and improvements

    Code refactor and improvements

    Hi, this PR does the following:

    • Make checks for types precise and uses a couple of one-liners
    • Remove redundant for loops.
    • Remove broad Exception throws more specific errors.
    • Use more informative names in loops
    • Specify versions in requirements.txt.
    • Fix inheritance
    • Fix inconsistent indenting

    Let me know what you think.

    Thanks,

    Nelson

    opened by Nelson-Gon 0
  • Redundancies in classes

    Redundancies in classes

    Hi,

    I have been taking a look at the code and will be sending a pull request later. However, I noticed that in recon there are redundant classes that could instead be under one "super" class.

    If we want to switch from "Ask" to "Baidu" for instance, it would be better to simply change addresses, not rewrite the same code for every website. This follows the DRY principle.

    Let me know what you think (and if you are happy for me to work on this).

    Thanks,

    Nelson

    opened by Nelson-Gon 0
  • Issue in exalead

    Issue in exalead

    Running the following command: ./infoga.py -t dixie.edu -s all

    recieved a traceback error for:

    Traceback (most recent call last): File "./infoga.py", line 226, in infoga().main() File "./infoga.py", line 211, in main self.all(self.target) File "./infoga.py", line 169, in all self.exalead(target) File "./infoga.py", line 119, in exalead ips = self.uIp(self.tester(email))[0] IndexError: list index out of range

    opened by MisterBianco 0
  • haveibeenpwned??

    haveibeenpwned??

    It does not work well with haveibeenpwned, I have tried emails and they all tell me that they were not filtered, but on the haveibeenpwned website it tells me that they are filtered. With shodan it is the same, no information was found is what it turns out. Any solution?

    opened by NextKool 0
  • No IP returned

    No IP returned

    Hi,

    I have used Infoga since it was first released. But recently I have noticed that when I search a domain, I do not get an IP address associated with it ... like I used to. Have you noticed? try it, you will see.

    I am using Win 7 with all updates + latest Conda.

    opened by hexben 2
Owner
m4ll0k (mallok)
Life is short .. hack it! || [email protected] || 🇲🇦🇪🇸🇮🇹
m4ll0k (mallok)
Um script simples de Port Scan + DNS by Hostname

?? PortScan-DNS Esta é uma ferramenta simples de Port Scan + DNS by Hostname... ?? | DNS Resolver / by Hostname: HOST IP EXTERNO IP INTERNO ?? | Port

AlbâniaSecurity-RT 7 Dec 8, 2022
Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.

The Recon-ng Framework Recon-ng content now available on Pluralsight! Recon-ng is a full-featured reconnaissance framework designed with the goal of p

null 2.4k Jan 7, 2023
A windows post exploitation tool that contains a lot of features for information gathering and more.

Crowbar - A windows post exploitation tool Status - ✔️ This project is now considered finished. Any updates from now on will most likely be new script

null 29 Nov 20, 2022
Mr.Holmes is a information gathering tool (OSINT)

?? Mr.Holmes Mr.Holmes is a information gathering tool (OSINT). Is main purpose is to gain information about domains,username and phone numbers with t

null 534 Jan 8, 2023
Discord-email-spammer-exploit - A discord email spammer exploit with python

Discord-email-spammer-exploit was made by Love ❌ code ✅ ?? ・Description First it

Rdimo 25 Aug 13, 2022
A tool to brute force a gmail account. Use this tool to crack multiple accounts

A tool to brute force a gmail account. Use this tool to crack multiple accounts. This tool is developed to crack multiple accounts

Saad 12 Dec 30, 2022
Threat Intelligence Gathering 威胁情报收集,旨在提高蓝队拿到攻击 IP 后对其进行威胁情报信息收集的效率。

0x00 介绍 tig Threat Intelligence Gathering 威胁情报收集,旨在提高蓝队拿到攻击 IP 后对其进行威胁情报信息收集的效率,目前已集成微步、IP 域名反查、Fofa 信息收集、ICP 备案查询、IP 存活检测五个模块,现已支持以下信息的查询: ✅ 微步标签 ✅ I

Wolf Group Security Team 698 Dec 9, 2022
This is a multi-password‌ cracking tool that can help you hack facebook accounts very quickly

Pro_Crack Facebook Fast Cracking Tool This is a multi-password‌ cracking tool that can help you hack facebook accounts very quickly Installation On Te

•JINN• 1 Jan 16, 2022
A simple tool to audit Unix/*BSD/Linux system libraries to find public security vulnerabilities

master_librarian A simple tool to audit Unix/*BSD/Linux system libraries to find public security vulnerabilities. To install requirements: $ sudo pyth

CoolerVoid 167 Dec 19, 2022
Profil3r is an OSINT tool that allows you to find potential profiles of a person on social networks, as well as their email addresses 🕵️

Profil3r is an OSINT tool that allows you to find potential profiles of a person on social networks, as well as their email addresses. This program also alerts you to the presence of a data leak for the found emails.

null 1.1k Aug 24, 2021
An forensics tool to help aid in the investigation of spoofed emails based off the email headers.

A forensic tool to make analysis of email headers easy to aid in the quick discovery of the attacker. Table of Contents About mailMeta Installation Us

Syed Modassir Ali 59 Nov 26, 2022
ThePhish: an automated phishing email analysis tool

ThePhish ThePhish is an automated phishing email analysis tool based on TheHive, Cortex and MISP. It is a web application written in Python 3 and base

null 675 Jan 3, 2023
Now patched 0day for force reseting an accounts password

Animal Jam 0day No-Auth Force Password Reset via API Now patched 0day for force reseting an accounts password Used until patched to cause anarchy. Pro

IRIS 10 Nov 17, 2022
Guess the password for Tik Tok accounts

Guess the password for Tik Tok accounts Tool features : You don't need proxies There is no captcha Running on a private api Combo T

null 32 Dec 25, 2022
Brute Force Guess the password for Instgram accounts with python

Brute-Force-instagram Guess the password for Instgram accounts Tool features : It has two modes: 1- Combo system from you 2- Automatic (random) system

null 45 Dec 11, 2022
Gmail Accounts Hacking

gmail-hack Gmail Accounts Hacking Gemail-Hack python script for Hack gmail account brute force What is brute force attack? In brute force attack,scrip

Aryan 25 Nov 10, 2022
A python script to brute-force guess the passwords to Instagram accounts

Instagram-Brute-Force The purpose of this script is to brute-force guess the passwords to Instagram accounts. Specifics: Comes with 2 separate modes i

Moondog 2 Nov 16, 2021
Oh365UserFinder is used for identifying valid o365 accounts without the risk of account lockouts.

Oh365 User Finder Oh365UserFinder is used for identifying valid o365 accounts without the risk of account lockouts. The tool parses responses to ident

Joe Helle 414 Jan 2, 2023
A python base script from which you can hack or clone any person's facebook friendlist or followers accounts which have simple password

Hcoder This is a python base script from which you can hack or clone any person's facebook friendlist or followers accounts which have simple password

Muhammad Hamza 3 Dec 6, 2021