Aneesharokkiasamy

Feb 12, 2022

3 min read

OSINT Automation Tool — Spiderfoot

Spiderfoot

Information gathering is a first step in the cybersecurity, to discover and collect information about the target. When you’re getting into a new thing, you should research and gather some information about that, so it will help move further.

Spiderfoot is an OSINT automation tool used for threat intelligence and identifying attack surface. Based on the scan target, it gather information. The scan targets maybe a Domain/ Sub domain, Hostnames, Email addresses, IPv4 and v6 addresses, ASN, Phone numbers, Usernames, and Bitcoin addresses. It has over 200+ modules, some don’t require API keys and many require API Keys. we can easily extract data based on data type,data family, data source, module & module category. It has open source version’s Spiderfoot HX to upgrade more functionality.

spiderfoot

Features of Spiderfoot

How Spiderfoot will work?

So, Here’s an example screenshot to gather information about a user name “James Bond”.

Scan

We have to select the scan name and targets. Here our target is to gather information about the username. Once we entered the username, the scan starts and it will find out the social media account and other information with that username.Use help option to view about the scan target details.

New Scan type Username

Here we got the information that are associated with “james bond” username. The graph option shows the graphical representation of scanned elements, unique elements and errors during scan. This data is exportable and searchable.

Scan result

Correlation will help to look for condition that investigate immediately based on during and completion of a scan. The visualize nodegraph to focus more on the data. Hover over the node displays the details of the target. Here visualize displays the external social media accounts that are associated with name James bond.

visual — Nodegraph

This reconnaissance tool will be interesting and help you find more information about the target.

Thanks for reading…

Osint
Threat Intelligence
Cyber Threat Intelligence
Reconnaissance

--

--

More from Aneesharokkiasamy

Security Researcher | Blogger | Assistant Professor | Seeking for CTI Job | OSINT|CTI TOOLS|Do support me

Recommended from Medium

David Turcotte

IRT Timer 2 Privacy Policy

Kyber Network

in

Kyber Network

Katalyst and KyberDAO go live on 07.07.2020!

R B Srikanth

Digital Onboarding

Jyoti Agarwal

Pwnkit: CVE-2021–4034 Walkthrough

Latsan

InvArch Weekly Updates-11/26/2021

Officer's Notes

Someone overheard me!

TokenTraxx

in

tokentraxx

A focus on Security: keeping the TokenTraxx community safe at the TRAXX token sale

Spencer Stevens

Apple’s passkeys may be preferable than passwords. This is how they’ll function.

AboutHelpTermsPrivacy

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Aneesharokkiasamy

Aneesharokkiasamy

69 Followers

Security Researcher | Blogger | Assistant Professor | Seeking for CTI Job | OSINT|CTI TOOLS|Do support me

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Text to speech