SudhanshuC
commented
8 years ago Hi WebBreacher, We will surely checkout the project. Thanks for the suggestion and awesome work.
Open WebBreacher opened 8 years ago
SudhanshuC
commented
8 years ago Hi WebBreacher, We will surely checkout the project. Thanks for the suggestion and awesome work.
I maintain the WhatsMyName repo (https://github.com/WebBreacher/WhatsMyName) of user enumeration data. With the JSON file in my repo, you can find out which of over 150 sites have a specific username as an account.
I noticed at least one (prolly more) module(s) in datasploit that could possibly be converted to use my JSON file. I've done this successfully in the Recon-NG framework in the Profiler script (https://bitbucket.org/LaNMaSteR53/recon-ng/src/4e3cc65adfdd79cfa366b64dcce68e5ab9b2dd8c/modules/recon/profiles-profiles/profiler.py?at=master&fileviewer=file-view-default).
At runtime, a call is made to the Git repo and it pulls the most recent content, iterates through it when it finds an entry marked "valid=True" and then uses the data in my project to find valid user names. Check out https://webbreacher.com/2014/12/11/recon-ng-profiler-module/ for a run-through.
Just a suggestion to augment your awesome project. While my WhatsMyName JSON project will find valid usernames, it does not scrape content from the pages of the destination sites. This is a gap-area that your project (if you choose) could fill.