search

SimplySecurity / SimplyEmail

Email recon made fast and easy, with a framework to build on
CyberSyndicates.com
GNU General Public License v3.0
952 stars 226 forks source link

Add ARIN Whois Search module #55

Closed bcoles closed 6 years ago

bcoles commented 6 years ago

Add ARIN Whois Search module

This module searches ARIN WHOIS database for email addresses for the specified domain.

The module makes use of subprocess and relies on the whois executable existing in $PATH.

No error handling is present to verify whether the executable is present.

I realise that forking out to whois is not ideal; however, the existing Python libraries suck.

Sample Output

# ./SimplyEmail.py -v -t WhoisScrape -e example.com 

 ============================================================
 Current Version: v1.5.0 | Website: CyberSyndicates.com
 ============================================================
 Twitter: @real_slacker007 |  Twitter: @Killswitch_gui
 ============================================================
------------------------------------------------------------
   ______  ________                       __ __
 /      \/        |                     /  /  |
/$$$$$$  $$$$$$$$/ _____  ____   ______ $$/$$ |
$$ \__$$/$$ |__   /     \/    \ /      \/  $$ |
$$      \$$    |  $$$$$$ $$$$  |$$$$$$  $$ $$ |
 $$$$$$  $$$$$/   $$ | $$ | $$ |/    $$ $$ $$ |
/  \__$$ $$ |_____$$ | $$ | $$ /$$$$$$$ $$ $$ |
$$    $$/$$       $$ | $$ | $$ $$    $$ $$ $$ |
 $$$$$$/ $$$$$$$$/$$/  $$/  $$/ $$$$$$$/$$/$$/

------------------------------------------------------------
 [*] Starting: ARIN WHOIS Search
 [*] Requesting whois data from whois.arin.net
 [*] ARIN WHOIS Search: Gathered 118 Email(s)!
 [*] Completed cleaning results
 [*] Completed output!

 ============================================================
 Current Version: v1.5.0 | Website: CyberSyndicates.com
 ============================================================
 Twitter: @real_slacker007 |  Twitter: @Killswitch_gui
 ============================================================
 [*] Email reconnaissance has been completed:

   File Location:       /pentest/recon/SimplyEmail/example.com-20180908-0758
   Unique Emails Found:     9
   Emails Built from Names: 0
   Total Emails:        9
   Raw Email File:      Email_List.txt
   HTML Email File:     Email_List.html
   Built Email File:        Email_List_Built.txt
   Verified Email File:     Email_List_Verified.txt
   Domain Performed:        example.com

[>] Would you like to launch the HTML report?: y
# cat /pentest/recon/SimplyEmail/example.com-20180908-0758/Email_List.txt 
    ----------------------------------
    Email Recon: 08/09/2018 07:58:59
    ----------------------------------
you@example.com
nobody@example.com
unknown@example.com
me@example.com
leo.deng@example.com
krishna@example.com
asd@example.com
krishna123@example.com
bogus.user@example.com
coveralls commented 6 years ago

Coverage Status

Coverage increased (+0.01%) to 34.722% when pulling c9a6380ee235084a226d79e5e3fea08cf3432b50 on bcoles:WhoisScrape into 6a42d373a13b258e90d61efc82c527c5b754a9b8 on SimplySecurity:master.