четверг, 18 января 2024 г.

Theharvester: Email Harvesting Throughout Year




You might have harvested many things upto now but what we are going to harvest today is something bad :)



Requirements:

  1. A Linux box (I'm using Kali Linux)
  2. theharvester program (already available in Kali Linux)
So what does theharvester harvest? Well it harvests email addresses. theharvester is an Information gathering tool. If you want a list of emails to spam you can get that easily from theharvester tool and go on Spamming (I'm joking its illegal). It's a security tool that helps you in pentesting an organization (as always it can be used for evil as well). You can gather emails from an organization and look for potential victims to attack or use brute-force techniques to get their passwords or Social Engineer them into doing something that will let you compromise some or all systems in the organization. Uhh there are so many things that you can do when you have access to someone's email address.

OK stop talking and start doing.


Fire up a terminal in your kali box and type this command:


theharvester -d hotmail.com -l 50 -b google


In a small amount of time you'll see your terminal flooded with 200 hotmail.com email address. What does this command mean?


theharvester is the tool name that we are using

-d <domain_name> specifies the domain (or website) who's email addresses we're looking for, in our case it was hotmail.com
-l <number> specifies the number of results that we want in the output, I limited it to 50
-b <source> specifies the source on which to look for email addresses, I specified google as the source

Besides google we can specify any of the follow as source:

google, googleCSE, bing, bingapi, pgp, linkedin, google-profiles, people123, jigsaw, twitter, googleplus, all
Here the last entry all means look in every available source.

Let's say you wanted to look in every available source they you should specify the following command:


theharvester -d hotmail.com -b all




-f is another great flag which can be utilized to save the output in case we want to SPAM them later (just kidding) or for other reasons (I'm thinking positive). -f flag saves the result in html or xml format. Let's do just that:


theharvester -d gmail.com -l 50 -b google -f emailaddresses.html


here -f flag is followed by the location where we want to store the file and the name of file, in our case we stored it in our pwd (present working directory) with the name emailaddresses.html.




Above picture shows an html output generated by harvester.


That's it for this tutorial hope to see you next time!

Related articles


  1. Hacking Tools And Software
  2. Hack Tools For Windows
  3. Hack Website Online Tool
  4. Best Pentesting Tools 2018
  5. World No 1 Hacker Software
  6. Hacker Tools Windows
  7. Blackhat Hacker Tools
  8. Pentest Tools List
  9. Pentest Tools For Mac
  10. Pentest Tools Free
  11. Wifi Hacker Tools For Windows
  12. How To Make Hacking Tools
  13. Hacking Tools 2020
  14. Black Hat Hacker Tools
  15. Beginner Hacker Tools
  16. Hacking Tools Download
  17. Github Hacking Tools
  18. Pentest Recon Tools
  19. Hack Tools
  20. Black Hat Hacker Tools
  21. Hack Tools Pc
  22. Hack Tools Github
  23. Wifi Hacker Tools For Windows
  24. Pentest Recon Tools
  25. Hacking Tools Hardware
  26. Pentest Tools Bluekeep
  27. Hack Tools Download
  28. Hackrf Tools
  29. Pentest Tools For Ubuntu
  30. Growth Hacker Tools
  31. Hacking Tools For Windows Free Download
  32. Hacker Tools 2020
  33. Hacker Tools For Ios
  34. Hack Rom Tools
  35. Pentest Box Tools Download
  36. Top Pentest Tools
  37. Tools 4 Hack
  38. Pentest Tools For Ubuntu
  39. Hacking Tools Free Download
  40. Pentest Tools Android
  41. Hacking Tools 2020
  42. Hacker Hardware Tools
  43. Pentest Recon Tools
  44. Blackhat Hacker Tools
  45. Pentest Tools For Mac
  46. Hack App
  47. Hacking Tools Download
  48. Hacking Tools 2020
  49. Hack Tools Github
  50. Pentest Tools Website Vulnerability
  51. Hacker Security Tools
  52. Hacker Tools Mac
  53. Hack Tools For Ubuntu
  54. Physical Pentest Tools
  55. Tools 4 Hack
  56. Nsa Hack Tools Download

Комментариев нет:

Отправить комментарий