OSINT tool.
You can simply pip install the tool:
pip install git+ssh://[email protected]/Te-k/harpoon#egg=0.1.1 --process-dependency-links
Optionally if you want to use the screenshot plugin, you need phantomjs and npm installed:
npm install -g phantomjs
To configure harpoon, run harpoon config and fill in the needed API keys. Then run harpoon config -u to download needed files. Check what plugins are configured with harpoon config -c.
After configuration the following plugins are available within the harpoon command:
safebrowsing Check if the given domain is in Google safe Browsing list
hibp Request Have I Been Pwned API (https://haveibeenpwned.com/)
cache Requests webpage cache from different sources
misp Get information from a MISP server through the API
spyonweb Search in SpyOnWeb through the API
censys Request information from Censys database (https://censys.io/)
shodan Requests Shodan API
vt Request Virus Total API
config Configure Harpoon
fullcontact Requests Full Contact API (https://www.fullcontact.com/)
googl Requests Google url shortener API
ip Gather information on an IP address
twitter Requests Twitter API
asn Gather information on an ASN
robtex Search in Robtex API (https://www.robtex.com/api/)
hunter Request hunter.io information through the API
otx Requests information from AlienVault OTX
crtsh Search in https://crt.sh/ (Certificate Transparency database)
github Request Github information through the API
bitly Request bit.ly information through the API
screenshot Takes a screenshot of a webpage
greynoise Request Grey Noise API
telegram Request information from Telegram through the API
pgp Search for information in PGP key servers
- Telegram : Create an application
- Virus Total : for public, create an account and get the API key in the Settings page