From f1e50a5715d275dc5c4f203b3f981660b2d7f369 Mon Sep 17 00:00:00 2001 From: Jieyab <71226310+Jieyab89@users.noreply.github.com> Date: Mon, 22 Nov 2021 14:07:22 +0000 Subject: [PATCH] Update README.md --- README.md | 255 +++++++++++++++++++++++++++++++++++++++++++++++++++++- 1 file changed, 253 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index fc3f98b..17ff044 100644 --- a/README.md +++ b/README.md @@ -1,2 +1,253 @@ -# OSINT-Cheat-sheet- -OSINT cheat sheet learn OSINT tools +# OSINT CHEAT SHEET + +[![Github Badge](https://img.shields.io/badge/-Jieyab89-black?style=flat&logo=github&logoColor=white&link=https://github.com/Jieyab89/)](https://github.com/Jieyab89) + +OSINT RESOURCES DATASET + +# IP Addresses +- [Whats my ip](https://whatismyipaddress.com/) +This tools can show your ip address isp provider +- [Ip 2 location](https://www.ip2location.com/) +This tools can show your ip address isp provider and geo location + +# Wireless Network +- [Wigle](https://www.wigle.net/) +Maps and database of 802.11 wireless networks, with statistics, submitted by wardrivers, netstumblers, and +net huggers + +# SOC or Threat Hunting + +- [Alien Vault](https://otx.alienvault.com/) +- [Exploit db](https://www.exploit-db.com/) + +# Dorking +Dorking is a wonderful thing, you can use this technique to search for anything such as index of a website, looking for live online camera server and other specifics, as for dorking commands that you can do for example + +1. intitle: Search for specific titles +2. inurl: Search for specific urls or paths +3. intext: Search for specific words or contects +4. filetype: Search for files +5. site: Search from a specified target +6. Wildcard or symbol * (star) Find all web pages, for example: seccodeid* +7. Define:term Search for all things with specified terms, example define:seccodeid +8. cache page Take a snapshot of an indexed page. Google uses this to find the right page for the query you're looking for. Website or target specifically + +example +> intext:"hacking" site:seccodeid.com + +# Google Advanced Search Tools + +- [Advanced google search](https://www.google.com/advanced_search) +- [Google Scholar](https://scholar.google.com) +- [Google Alerts](https://www.google.com/alerts) +- [Google Search History](https://myactivity.google.com/myactivity) + +# Other Search Engines + +- [us.searchboth.net](http://us.searchboth.net) +- [Archive.org](http://www.arhive.org) +- [Yandex](Yandex.com) +- [Pastebin](http://www.pastebin.com) +- [Topix.com](http://www.topix.com) +- [search.carrot2.org/stable/search](http://search.carrot2.org/stable/search) +- [Shodan](https://www.shodan.io/) + +# Crack Jurnals + +- [SCI HUB](https://sci-hub.hkvisa.net/) +This domain will always change + +# Blogs Search Engine + +- [Google Blog](www.google.com/blogsearch) +- [technorati](www.technorati.com) +- [omgili.com](http://omgili.com/) + +# DeepWeb Search Engines + +- [thehiddenwiki](http://thehiddenwiki.org) +- [onion link](http://www.onion.link) +- [MEMEX]() +- [onion](https://onion.cab) + +# Tracking Website Changes + +- [Changedetection](http://www.changedetection.com) +- [Followthatpage](http://www.followthatpage.com) + +# Company Reconnaissance Sites (Passive) + +- [whois](http://www.whois.net) +- [Netcraft](http://www.netcraft.com) + +# People Searching + +- [spokeo](http://www.spokeo.com) +- [123people](http://www.123people.com) +- [zoominfo](http://www.zoominfo.com) +- [peepdb](http://www.peepdb.com) +- [reversegeni](http://www.reversegenie.com/plate.php) +- [PDDIKTI](https://pddikti.kemdikbud.go.id/) +- [SINTA](https://sinta.kemdikbud.go.id/) + +# Phone Numbers + +- [argali](http://www.argali.com) +- [ciddb](http://www.ciddb.com/index.php) +- [cellrevealer](http://www.cellrevealer.com) +- [spydialer](http://www.spydialer.com) + +# Public Records + +- [Public Record](http://publicrecords.searchsystems.net) +- [Fam Watchdog](http://Familywatchdog.us) +- [Crime Reports](http://www.crimereports.com) + +# Finding Usernames + +- [Namechk](http://www.namechk.com) +- [Knowem](http://www.knowem.com) + +# Social Networks + +- [Facebook](www.facebook.com/livemap) +- [Sherlock]() + +# Google Queries for Facebook + +> Group Search: site:facebook.com inurl:group +> Group Wall Posts Search: site:facebook.com inurl:wall +> Pages Search: site:facebook.com inurl:pages +> Public Profiles: allinurl: people ‘‘name’’ site:facebook.com + +# Facebook Query Language (FQL) + +- [Findmyfbid](http://www.findmyfbid.com/) + +> Photos By - https://www.facebook.com/search//photos-by +> Photos Liked - https://www.facebook.com/search//photos-liked +> Photos Of - https://www.facebook.com/search//photos-of +> Comments - https://www.facebook.com/search//photos-commented +> Friends - https://www.facebook.com/search//friends +> Videos Tagged - https://www.facebook.com/search//videos +> Videos By - https://www.facebook.com/search//videos-by +> Videos Liked - https://www.facebook.com/search//videos-liked +> Videos Commented - https://www.facebook.com/search//videos-commented +> Events Attended - https://www.facebook.com/search//events-joined +> Relatives - https://www.facebook.com/search//relatives + +# The Ultimate Facebook Investigation Tool + +- [Intel Technique](https://inteltechniques.com/osint/facebook.html) + +# Twitter + +- [search.twitter.com](https://twitter.com/search-home) +- [twitter advanced](https://www.twitter.com/search-advanced) +- [twitter who_to_follow](https://www.twitter.com/who_to_follow) + +# Twitter Search Engines + +- [tweetpaths](http://www.tweetpaths.com) +- [allmytweets](http://www.allmytweets.com) +- [Sleepingtime](http://www.sleepingtime.org) +- [twicsy](http://www.twicsy.com) +- [Twimemachine](https://www.twimemachine.com) +- [inteltechniques](http://inteltechniques.com/osint/twitter.html) + +# LinkedIn + +Google queries for LinkedIn +> Public Profiles: site:linkedin.com inurl:pub +> Updated Profiles: site:linkedin.com inurl:updates +> Company Profiles: site:linkedin.com inurl:companies + +# MySpace + +Google queries for MySpace + +> Profiles: site: myspace.com inurl:profile +> Blogs: site:myspace.com inurl:blogs +> Videos: site:myspace.com inurl:vids +> Jobs: site:myspace.com inurl:jobs +> Videos: site:myspace.com ‘‘TARGET NAME’’ ‘‘videos’’ +> Comments: site:myspace.com ‘‘TARGET NAME’’ ‘‘comments’’ +> Friends: site:myspace.com ‘‘TARGET NAME’’ ‘‘friends’’ + +# Social Network Search Engines + +- [kurrently](http://www.kurrently.com) +- [socialmention](http://www.socialmention.com) +- [whostalkin](http://www.whostalkin.com) +- [twoogel](http://www.twoogel.com) +- [social mention](http://www.mention.com) +- [whostalkin](http://www.whostalkin.com) + +# Monitoring & Alerting + +- [Pastebin Alerts](http://pastebin.com/u/alerts) +- [HaveIBeenPwned](http://www.haveIbeenpwned.com) +- [breachorclear](http://breachorclear.jesterscourt.cc) + +# Images Search Engine + +- [Images google](https://images.google.com) +- [Facesaerch](http://facesaerch.com/) +- [Tineye](http://www.tineye.com) +- [Flickr](http://Flickr.com/map) +- [7photos](http://www.7photos.net) +- [Worldc](http://www.worldc.am) +- [Yandex](https://yandex.com/images/) + +# EXIF Analysis + +- [regex](http://regex.info/exif.cgi) +- [FindExif](http://www.findexif.com) +- [metapicz](http://metapicz.com) +- [imageforensic](http://www.imageforensic.org) +- [metapicz](http://metapicz.com) +- [jimpl](https://jimpl.com/) + +# Documents + +- [Metashield Analyzer](https://metashieldanalyzer.elevenpaths.com/) +- [forensicswiki](http://www.forensicswiki.org/wiki/Document_Metadata_Extraction) +- [foca](https://www.elevenpaths.com/labstools/foca/index.html) + +# Email Tracing + +- [ip-adress](http://www.ip-adress.com/trace_email/) +- [whatismyipaddress](http://www.whatismyipaddress.com/trace-email) + +# Tracking People + +- [getnotify](http://www.getnotify.com) + +# IoT – Internet of Things + +- [Insecam](http://Insecam.org) +- [Shodan](https://Shodan.io) + +# Shodan Query Options + +> https://pen-testing.sans.org/blog/2015/12/08/effective-shodan-searches +> https://danielmiessler.com/study/shodan/#gs.VBVsyo0 + +# Capturing Information + +- [DownloadHelper](https://www.downloadhelper.net/) +Firefox plugin that will assist in downloading all media from a website +- [Exif Viewer](https://addons.mozilla.org/en-US/firefox/addon/exif-viewer/) +- [HTTrack](https://www.httrack.com/) + +# OSINT TOOLS + +- [Shrelock]() +- [Maltego](https://www.maltego.com/) +- [OSINT Framework](https://osintframework.com/) +- [Creepy](https://www.geocreepy.com/) +- [Twint](https://forum.seccodeid.com/d/twint-twitter-intelligence-tool) +- [Telegram OSINT](https://forum.seccodeid.com/d/telegram-nearby-map) +- [Recon-Ng](https://github.com/lanmaster53/recon-ng) +- [Metagoofil](https://www.kali.org/tools/metagoofil/) +- [More](https://forum.seccodeid.com/?q=osint)