Hosthunter - A Recon Tool For Discovering Hostnames Using Osint Techniques

Influenza A virus subtype H5N1 tool to efficiently discover as well as extract hostnames over a large ready of target IP addresses. HostHunter utilises uncomplicated OSINT techniques. It generates a CSV file containing the results of the reconnaissance.

Taking screenshots was also added every bit a beta functionality.

Demo

• Currently GitLab's markup linguistic communication does non back upward HTML or CSS command over the images, hence the next link thumbnail is huge. 

Installation

• Tested alongside Python 3.7.2.

Linux

• Use wget command to download a latest Google Chrome debian package.

$ wget https://dl.google.com/linux/direct/google-chrome-stable_current_amd64.deb  $ dpkg -i ./google-chrome-stable_current_amd64.deb  $ sudo apt-get install -f

• Install python dependencies.

$ pip install -r requirements.txt

Simple Usage Example

$ python3 hosthunter.py 

$ truthful cat vhosts.csv

More Examples
HostHunter Help Page

$ python3 hosthunter.py -h usage: hosthunter.py [-h] [-V] [-f FORMAT] [-o OUTPUT] [-b] [-sc] targets  |<--- HostHunter v1.5 - Help Page --->|  positional arguments:   targets               Sets the path of the target IPs file.  optional arguments:   -h, --help            exhibit this assistance message as well as larn out   -V, --version         Displays the currenct version.   -f FORMAT, --format FORMAT                         Choose betwixt CSV as well as TXT output file formats.   -o OUTPUT, --output OUTPUT                         Sets the path of the output file.   -b, --bing            Use Bing.com search engine to discovery to a greater extent than hostnames                         associated alongside the target IP addreses.   -sc, --screen-capture                         Capture a shroud shot of whatever associated Web                         App   lications.

Run HostHunter alongside Bing as well as Screen Captures modules enabled

$ python3 hosthunter.py  --bing -sc -f csv -o hosts.csv

Display Results

$ truthful cat hosts.csv

View Screenshots

$ opened upward ./screen_captures/

Features
[X] Works alongside Python3
[X] Scraps Bing.com results
[X] Supports .txt as well as .csv output file formats
[X] Validates target IPv4 addresses
[X] Takes Screenshots of the targets [X] Extracts hostnames from SSL certificates
[X] Utilises Hacker Target API

Coming Next
[_] Support for HackerTarget API key

Notes

• Free APIs bound the sum of requests per twenty-four hours per source IP address.

License
This projection is licensed nether the MIT License.

Authors

• Andreas Georgiou - discovery me on twitter - @superhedgy

Download HostHunter