Bug Hunter Handbook

Powered by GitBook

On this page

Was this helpful?

OSINT

PreviousFinding Information Using Public Resources NextCloud

Last updated 3 years ago

Search Engine For Hackers - https://twitter.com/trimstray/status/1086705742793658369?lang=en

OSINT - https://twitter.com/BadassBowden/status/1132663671962972164

---https://osint.link/

Shodan -

Search Queries - https://twitter.com/_harleo/status/1201513513929396225

https://medium.com/@alyssa.o.herrera/reconnaissance-to-a-quick-p1-fc1085d0fb22
https://medium.com/@malavsharma/magic-of-shodan-15dd17854099
shodan - hostname:company.com
Shodan dorks
https://github.com/JavierOlmedo/shodan-filters
https://medium.com/@shifacyclewala/the-complete-subdomain-enumeration-guide-b097796e0f3
https://posts.specterops.io/gathering-open-source-intelligence-bee58de48e05
https://twitter.com/Dinosn/status/1341846433968713728?s=20

Censys -

https://github.com/censys/nmap-censys

Tools -

Favicon search

https://devanshbatham.github.io/osint/2021/09/11/weaponizing-favicon-ico.html

Google Analytics bugbounty

[#OSINT] Find domains by registrant name or email https://viewdns.info/reversewhois/

Reverse Whois - https://github.com/MilindPurswani/whoxyrm

Try ssl:target.* 200 Try http://Ssl.cert.subject.CN:"target.*" 200

Google search - https://github.com/deepseagirl/degoogle

https://github.com/ninoseki/mitaka

Attack Surface Management Platform And Continuous Infrastructure SecurityRedHunt Labs

Using Shodan Better Way!Medium

OSINT Resources for 2019Medium