OSINT tool.
You can simply pip install the tool:
pip install git+ssh://[email protected]/Te-k/harpoon#egg=0.1.1 --process-dependency-links
Optionally if you want to use the screenshot plugin, you need phantomjs and npm installed:
npm install -g phantomjs
To configure harpoon, run harpoon config
and fill in the needed API keys. Then run harpoon config -u
to download needed files. Check what plugins are configured with harpoon config -c
.
After configuration the following plugins are available within the harpoon
command:
help Give help on an Harpoon command
safebrowsing Check if the given domain is in Google safe Browsing list
hibp Request Have I Been Pwned API (https://haveibeenpwned.com/)
cache Requests webpage cache from different sources
misp Get information from a MISP server through the API
spyonweb Search in SpyOnWeb through the API
censys Request information from Censys database (https://censys.io/)
shodan Requests Shodan API
vt Request Virus Total API
config Configure Harpoon
fullcontact Requests Full Contact API (https://www.fullcontact.com/)
googl Requests Google url shortener API
ip Gather information on an IP address
twitter Requests Twitter API
asn Gather information on an ASN
robtex Search in Robtex API (https://www.robtex.com/api/)
hunter Request hunter.io information through the API
otx Requests information from AlienVault OTX
crtsh Search in https://crt.sh/ (Certificate Transparency database)
github Request Github information through the API
bitly Request bit.ly information through the API
screenshot Takes a screenshot of a webpage
greynoise Request Grey Noise API
telegram Request information from Telegram through the API
pgp Search for information in PGP key servers
totalhash Request Total Hash API
You can get information on each command with harpoon help COMMAND
- Telegram : Create an application
- Virus Total : for public, create an account and get the API key in the Settings page
- Total Hash