HostHunter – A Recon Tool For Discovering Hostnames Using OSINT Techniques

A tool to efficiently discover and extract hostnames over a large set of target IP addresses. HostHunter utilises simple OSINT techniques. It generates a CSV file containing the results of the reconnaissance.Taking screenshots was also added as a beta functionality.DemoCurrently GitLab’s markup language does not support HTML or CSS control over the images, thus the following link thumbnail is huge.¬†InstallationTested with Python 3.7.2.LinuxUse wget command to download a latest Google Chrome debian package.$ wget https://dl.google.com/linux/direct/google-chrome-stable_current_amd64.deb$ dpkg -i ./google-chrome-stable_current_amd64.deb$ sudo apt-get install -fInstall python dependencies.$ pip install -r requirements.txtSimple Usage Example$ python3 hosthunter.py $ cat vhosts.csvMore ExamplesHostHunter Help Page$ python3 hosthunter.py -husage: hosthunter.py [-h] [-V] [-f FORMAT] [-o OUTPUT] [-b] [-sc] targets|<— HostHunter v1.5 – Help Page —>|positional arguments: targets Sets the path of the target IPs file.optional arguments: -h, –help show this help message and exit -V, –version Displays the currenct version. -f FORMAT, –format FORMAT Choose between CSV and TXT output file formats. -o OUTPUT, –output OUTPUT Sets the path of the output file. -b, –bing Use Bing.com search engine to discover more hostnames associated with the target IP addreses. -sc, –screen-capture Capture a screen shot of any associated Web App lications.Run HostHunter with Bing and Screen Captures modules enabled$ python3 hosthunter.py <targets.txt> –bing -sc -f csv -o hosts.csvDisplay Results$ cat hosts.csvView Screenshots$ open ./screen_captures/Features[X] Works with Python3[X] Scraps Bing.com results[X] Supports .txt and .csv output file formats[X] Validates target IPv4 addresses[X] Takes Screenshots of the targets [X] Extracts hostnames from SSL certificates[X] Utilises Hacker Target APIComing Next[_] Support for HackerTarget API keyNotesFree APIs throttle the amount of requests per day per source IP address.LicenseThis project is licensed under the MIT License.AuthorsAndreas Georgiou – find me on twitter – @superhedgyDownload HostHunter

Link: http://feedproxy.google.com/~r/PentestTools/~3/QiCNKN5VS74/hosthunter-recon-tool-for-discovering.html

Data: E-Retail Hacks More Lucrative Than Ever

For many years and until quite recently, credit card data stolen from online merchants has been worth far less in the cybercrime underground than cards pilfered from hacked brick-and-mortar stores. But new data suggests that over the past year, the economics of supply-and-demand have helped to double the average price fetched by card-not-present data, meaning cybercrooks now have far more incentive than ever to target e-commerce stores.

Link: https://krebsonsecurity.com/2019/04/data-e-retail-hacks-more-lucrative-than-ever/