A tool was created in order to automate some basic OSINT tasks for penetration testing assingments
This tool was created in order to automate some basic OSINT tasks for penetration testing assingments. The main feature that I haven’t seen much anywhere is the downloadd google dork function where this function first perform basic google dorking to find the targets public documents. These documents will then be downloaded to the attackers computer and can be used further to identify metadata about the client.
Installation
- Create virtual enviroment:
python3 -m venv enumit - Activate the virtual enviroment:
source enumit/bin/activate - Install the required packages:
pip install -r requirements.txt
Google Dorking
Download the files found
python3 run.py --domain example.com --google --filetypes pdf --download-files
Create json list, no download
python3 run.py --domain example.com --google --filetypes pdf docx jpg
Certificates
This function will query https://crt.sh for the domain name, and create a de-duplicated list for