OSINT tool is an open source intelligence (OSINT) tool designed to search for subdomains, web archives, and other related information. It works by using Google's API to pull data from the site, then processes it through a number of different filters before presenting it back to the user in a clean and easy-to-read interface.
In this post, we are going to discuss about a OSINT tool - Photon. Photon is a python-based tool which is useful in various purposes like Website cloning, find archive pages and subdomains of any website.
Photon can extract the following data while crawling:
- URLs (in-scope & out-of-scope)
- URLs with parameters
- Intel (emails, social media accounts, amazon buckets etc.)
- Files (pdf, png, xml etc.)
- Secret keys (auth/API keys & hashes)
- JavaScript files & Endpoints present in them
- Strings matching custom regex pattern
- Subdomains & DNS related data
Installation
1) Update packages
$ sudo apt update
2) Install required packages
$ sudo apt install python git
3) Clone Photon from Github
$ git clone https://github.com/s0md3v/Photon
4) Install requirements
$ cd Photon
$ sudo pip3 install -r requirements.txt
5) Now run this tool
$ python3 photon.py -h
You will see instructions to use Photon
How to Use -
1) To find all URLs in any website
You can easily find all URLs including hidden URL by using this -
$ python3 photon.py -u http://testphp.vulnweb.com/ --only-urls
2) To clone website
You can easily clone any website by using this -
$ python3 photon.py -u http://testphp.vulnweb.com/ --clone
3) To find subdomains
You can easily find subdomains and DNS data of any website by using this -
$ python3 photon.py -u http://testphp.vulnweb.com/ --dns
Output will be stored in the directory format of website's name.
If you're facing any issues regarding this, please comment below.
Related Information -
Also Read -
Fix Termux repository related issues [2022]
How to create metasploit payload easily using Linux and Termux
Tags -
#linux #OSINT #tool #termux #subdomain-finder
