OSINT Tool: GHunt - ReadBull.net

06-11-2020, 14:39:13

#1
Açık Profil bilgileri

Özel Mesaj Gönder

tarafından gönderilen tüm mesajları bul

'ı arkadaş olarak ekle
GHunt

GHunt is an OSINT tool used to extract a lot of data from someone's e-mails.

Information That GHunt Provides

It contains personal information such as Name, Surname, Locatıon Information, Public photos, Phone model, Phone software, Google Maps reviews, Activated Google accounts (Youtube, Photos, Maps, News360, Hangouts, etc.) and Google ID.

Installation and Usage

Before the installing process, let's download the "chromedriver".

Then open the terminal and download the .zip file of the driver with the "wget" command.

Kod:

wget https://chromedriver.storage.googlea...er_linux64.zip

Let's extract our .zip file.

Kod:
unzip chromedriver_linux64.zip

Let's write this

Kod:
sudo su
and become an administrator, then follow the steps below.

Kod:
sudo mv chromedriver /usr/bin/chromedriver
Kod:
sudo chown root:root /usr/bin/chromedriver
Kod:
sudo chmod +x /usr/bin/chromedriver

We've installed our driver. Now we have to download the tool.

Firstly, we need to create an e-mail address for ourselves here on the https://myaccount.google.com/ .

Let's login, then fill the form and register.

Let's fill in our information.

Let's finish our registration by clicking the "I Agree" button.

Now let's go to Linux and check our version of python3 because our tool for python 3.7 and below wouldn't work.

Kod:
python3 --version

Then, let's download our tool with "git" command.

Kod:
git clone https://github.com/mxrch/GHunt.git

Let's login to our downloaded file named "GHunt".

Kod:
cd GHunt

To complete the setup enter this command below.

Kod:
python -m pip install -r requirements.txt

Then we go to accounts.google.com and right click then say "View" or "Examine".

After that, we come to the "Application" section and save the cookies in a text file of the places where "__Secure-3PSID", "APISID", "SAPISID", "HSID" are written.

We go back to our terminal and write the Cookies.

Kod:
python3 check_and_gen.py

With our last command, we enter the email address of the target. I had an account named "kanserojen". I registered that account before. Let's look at that e-mail.

As you can see, it provided a lot of information. If the target has made their photos or other private data "Public", you can find more information.

Yours affectionately...

Source: https://www.turkhackteam.org/siber-g...aci-ghunt.html
Original Author: @kanserojen
Translator: @Dolyetyus