SpiderFoot – OSINT Collection and Reconnaissance Tool

SpiderFoot is an open source intelligence (OSINT) automation tool. Its goal is to automate the process of gathering intelligence about a given target, which may be an IP address, domain name, hostname, network subnet, ASN or person’s name. SpiderFoot can be used offensively, i.e. as part of a black-box penetration test to gather information about the target or defensively to identify what information your organisation is freely providing for attackers to use against you.

SpiderFoot - OSINT Collection and Reconnaissance Tool

SpiderFoot – OSINT Collection and Reconnaissance Tool

The tool will have about 165 modules to check information from different sources to look for possible associated malicious activity with the system in question. Some module allow to query the targeted accounts on nearly 200 websites like Ebay, Slashdot, reddit, etc. There is also module to query AlienVault OTX , There is also verification for the IP address if it was participating in malicious cryptocurrency mining.

The tool can also check if the IP is listed in the projecthoneypot.org database which is a large database that include spammers , botnets and any suspicious IP conducted an attack in the past. User will need to add the API for each module required before usage so he will be able to make the query for online threat resources. 

You can read more and download this tool over here: https://github.com/smicallef/

Notify of
Inline Feedbacks
View all comments