【工具】开源情报(OSINT)工具列表
【目录】
Software | 软件 |
Browsers | 浏览器 |
TOR | TOR |
User Agents | 用户代理 |
VPNs/Proxies | VPN/代理 |
Reconnaissance (Passive) | 侦察(被动) |
IP Addresses | IP地址 |
ip-adresscom | ip-adresscom |
whatismyipcom | Whatismyipcom |
ipchickencom | Ipchickencom |
iplocationcom | Iplocationcom |
Checking User agents | Checking User agents |
Wireless Networks | 无线网络 |
wiglenet | Wiglenet |
Search Engine Usage | 搜索引擎使用率 |
Google Usage | 谷歌使用率 |
Search Tips | 搜索提示 |
Search Operators | 搜索运算符 |
Cached Pages | 缓存的页面 |
Google Advanced Search Tools | 谷歌高级搜索工具 |
Google Scholar | 谷歌学者 |
Google Groups | Google群 |
Google News Archive | 谷歌新闻档案 |
Google images | 谷歌图片 |
Google Alerts | Google Alerts |
Google Search History | 谷歌搜索历史记录 |
Bing Usage | Bing使用情况 |
Other Valuable Search Engines | 其他有价值的搜索引擎 |
ussearchbothnet | 用户搜索网 |
Archiveorg | 档案馆 |
Globalfilesearchcom | Globalfilesearch.com |
Searchftpsnet | Searchftpsnet |
Filemarecom | Filemarecom |
Pastebincom | Pastebincom |
netbootcamporg/pastesearchhtml | Netbootcamporg/postesearchhtml |
Yandexcom | Yandexcom |
iSeekcom | ISeekcom |
blinkxcom | Binkxcom |
Topixcom | Topixcom |
searchcarrotorg/stable/search | searchcarrotorg/stable/search |
bitly/fgcZH | bitly/fgcZH |
Blogs | Blogs |
wwwgooglecom/blogsearch | Wwwgooglecom/博客搜索 |
technoraticom | 技术网(Technoraticom) |
omgilicom | Ogilicom |
DeepWeb Search Engines | Deep Web搜索引擎 |
thehiddenwikiorg | The Hiddenwikiorg |
onionlink | onionlink |
ahmiafi | ahmiafi |
onioncab | onioncab |
onionto | onionto |
Tracking Website Changes | Tracking Website Changes |
Followthatpagecom | Followthatpagecom |
Company Reconnaissance Sites (Passive) | 公司侦察地点(被动) |
Whoisnet | Whoisnet |
RobTexcom | RobTexcom |
CentralOpsnet | CentralOpsnet |
Netcraftcom | NetCraftcom |
People Searching | People Searching |
spokeocom | Spokeocom |
peoplecom | peoplecom |
zabasearchcom | Zabasearchcom |
piplcom | PIPPLCOM |
zoominfocom | Zoominfocom |
zillowcom | Zillowcom |
amazoncom | 亚马逊网站 |
voterrecordscom | Voterrecordscom |
peepdbcom | Peepdbcom |
reversegeniecom | 反向通信 |
Phone Numbers | 电话号码 |
calleridtestcom | Calleridtestcom |
argalicom | argalicom |
ciddbcom/indexphp | CIDDBCOM/indexphp |
cellrevealercom | CELL REVIDALECOM |
spydialercom | spydialercom |
Public Records | 公共记录 |
publicrecordssearchsystemsnet | 公共记录搜索系统网 |
Snoopstationcom/bc/courtsearch-crimphp | Snoopstation com/bc/Courtsearch-crimphp |
Familywatchdogus | 家族守望者(FamilyWatchdogus) |
Finding Usernames | 查找用户名 |
Social Networks | 社会网络 |
脸书 | |
Search engines | 搜索引擎 |
Google queries for Facebook | 谷歌对Facebook的查询 |
Facebook Query Language (FQL) | Facebook查询语言(FQL) |
The Ultimate Facebook Investigation Tool | Facebook终极调查工具 |
推特 | |
searchtwittercom | 搜索推特网站 |
twittercom/search-advanced | 推特/搜索-高级 |
twittercom/who_to_follow | Twittercom/关注谁 |
Twitter Search Operators: | Twitter搜索运营商: |
Twitter Search Engines | 推特搜索引擎 |
tweetpathscom | tweetpathscom |
Ready or Not | 好了没有 |
allmytweetsnet | 所有我的推特 |
Sleepingtimeorg | Sleepingtimeorg |
Socialbearingcom | SocialBearing.com |
twicsycom | TWICSYCOM |
Twimemachinecom | 双机联动 |
inteltechniquescom/osint/twitterhtml | Inteltechnescom/osint/twitterhtml |
领英 | |
Google queries for LinkedIn | 谷歌对LinkedIn的查询 |
MySpace | MySpace |
Google queries for MySpace | 谷歌对MySpace的查询 |
Social Network Search Engines | 社交网络搜索引擎 |
kurrentlycom | Kurrentlycom |
socialmentioncom | 社交网站 |
whostalkincom | whostalkincom |
twoogelcom | Twoogelcom |
mentioncom | mentioncom |
Monitoring & Alerting | Monitoring & Alerting |
Google Alerts | Google Alerts |
Pastebin Alerts | Pastebin Alerts |
HaveIBeenPwnedcom | HaveIBeenPwnedcom |
breachorclearjesterscourtcc | breachorclearjesterscourtcc |
Images | 影象 |
Picture Searching | 图片搜索 |
Imagesgooglecom | 图片搜索引擎 |
Facesaerchcom | FacesAerchcom |
Tineyecom | Tineyecom |
Flickrcom/map | Flickrcom/MAP |
Photobucketcom | Photobuketcom |
Searchfotkicom | Searchfotkicom |
photosnet | photosnet |
Worldcam | Worldcam |
Yandexcom | Yandexcom |
EXIF Analysis | EXIF分析 |
regexinfo | Regexinfo |
FindExifcom | FindExifcom |
metapiczcom | Metapiczcom |
imageforensicorg | Imageforensicorg |
Documents | 文件 |
Metashield Analyzer | Metashield分析仪 |
forensicswikiorg/wiki/Document_Metadata_Extraction | Forensicswikiorg/wiki/Document_Metadata_Extraction |
FOCA | 焦点 |
Email Tracing | 电子邮件跟踪 |
ip-adresscom/trace_email/ | Ip-adresscom/trace_email/ |
whatismyipaddresscom/trace-email | Whatismyipaddress scom/跟踪-电子邮件 |
Tracking People | 跟踪人员 |
getnotifycom | getnotifycom |
IoT – Internet of Things | 物联网 |
Insecamorg | Insecamorg |
IoTscannerbullguardcom | IoTscannerBulkGuardcom |
Shodan | Shodan |
Shodan Query Options | Shodan查询选项 |
Software
Browsers
https://www.mozilla.org
https://www.google.com/chrome
TOR
https://www.torproject.org/
User Agents
What is my User Agent - http://user-agent.me/
User Agent Changer Firefox - https://addons.mozilla.org/en-US/firefox/addon/user-agentswitcher/
User Agent Changer Chrome - https://chrome.google.com/webstore/detail/user-agentswitcher-for-c/
VPNs/Proxies
http://anonymouse.org
http://guardster.com
http://webwarper.net
https://www.privateinternetaccess.com
Reconnaissance (Passive)
https://addons.mozilla.org/en-US/firefox/addon/passiverecon/
IP Addresses
Websites to determine IP information
ip-adress.com
Will show you your IP address initially. Scroll down and choose “IP Tracing” to enter a different IP address.
whatismyip.com
Will show you your IP address initially and also provides other IP related tools.
ipchicken.com
Will show you your IP address initially and also provides other IP related security tools.
ip2location.com
Will show you your IP address initially and also provides other IP Geo locations related tools.
Checking User agents
http://user-agent.me
http://www.ip-adress.com/what_is_my_ip
Wireless Networks
Websites to find Wireless networks
wigle.net
Maps and database of 802.11 wireless networks, with statistics, submitted by wardrivers, netstumblers, and
net huggers.
Search Engine Usage
Google Usage
Search Tips
“-” Avoids pages that match a term
Description: You want to find websites related to computer forensics, not forensics as a science
Query: forensics -science
“ “ Allows exact phrase searches
Description: You want to narrow these results further to find pages with the exact phrase “iphone forensics”
Query: forensics -science ‘‘iphone forensics’’
Wildcard
Description: You want to find all web pages with variances of the term recover
Query: recover*
Define:term
Description: You want to find the definition of the term “forensicator”
Query: define:forensicator
Search Operators
The same operators will work with Bing
inurl:
Description: Google will restrict the results to documents containing that word in the URL. For example, you
want to find all website with the word forensics in the url.
Query: inurl:forensics
intitle:
Description: The query intitle:term restricts results to documents containing term in the title. For example,
you want to find all jobs related to forensics on career pages.
Query: forensics intitle:careers
Filetype:
Description: Finds files of a particular format (PDF,XLS,etc). For example, you want to find presentations
related to iphone forensics
Query: ‘‘iphone forensics’’ filetype:ppt|pptx
Site:
Description- Searches only within a site. For example, you want to find books related to computer forensics
on amazon.com.
Query: ‘‘computer forensics’’ site:amazon.com
Cached Pages
Description Google takes a snapshot of each page it examines and caches (stores) that version as a back up.
The cached version is what Google uses to judge if a page is a good match for your query. This can allow you
to preview a previous version of a website or access the content without leaving your information.
Query: cache:lbmcinformationsecurity.com
Google Advanced Search Tools
http://www.google.com/advanced_search
Google has a built-in advanced search feature to assist in advanced searching. This can allow you to specify
items such as:
Google Scholar
http://scholar.google.com
Description: Legal research (article, patents, legal documents) for Federal and State courts
Google Groups
https://groups.google.com
Description: searches newsgroups only
Google News Archive
https://news.google.com
Description: Searches news only
Google images
http://images.google.com/
Description: searches Google images. Can also performed reverse image searching
Google Alerts
http://www.google.com/alerts
Description: emails sent to you when Google finds new results -- such as web pages, newspaper articles, or
blogs -- that match your search term. You must have a Google account to set this up.
Google Search History
https://myactivity.google.com/myactivity
Description: for Google users that are signed in, Google maintains all search queries and many other
activities such as locations, Device information, YouTube activity, etc.
Bing Usage
*Note: Yahoo now uses Bing.com as its search engine.
All usage and operators are mostly the same as google.com with one exception. The Linkfromdomain:
operator. This operator finds domains this site links to.
For example: Linkfromdomain:lbmcinformationsecurity.com will find all domains that sans.org
links to. This is the opposite from the Google operator Link:lbmcinformationsecurity.com
Other Valuable Search Engines
us.searchboth.net
http://us.searchboth.net
Description: Provides the ability to search Google and another search engines simultaneously
Archive.org
http://www.arhive.org
Description: Allows you to search previous versions of websites at different timeframes. Also has archives of
movies and audio.
You can actually search archives using https://web-beta.archive.org/#/
Globalfilesearch.com
http://www.globalfilesearch.com
Description: Index of FTP servers (search engines typically do not index FTP servers).
Searchftps.net
http://searchftps.net
Description: Index of FTP servers (search engines typically do not index FTP servers).
Filemare.com
http://www.filemare.com
Description: Index of FTP servers (search engines typically do not index FTP servers).
Pastebin.com
http://www.pastebin.com
Description: Hacker dumping ground for “loot” stolen such as usernames, passwords, pii, etc. Not a bad idea
to setup alerts for your information under in the upper right hand corner
netbootcamp.org/pastesearch.html
http://netbootcamp.org/pastesearch.html
Description: Searches all major “paste” sites for “loot” stolen such as usernames, passwords, pii, etc.
Yandex.com
http://www.yandex.com
Description: alternate search engine with International results
iSeek.com
http://www.iseek.com
Description: alternate search engine with categories such as topic, people, places, organizations, etc
blinkx.com
http://www.blinkx.com
Description: searches text (phrases) used in videos
Topix.com
http://www.topix.com
Description: local and crowdsourced news by community. I call it the “Jerry Springer” of the Internet
search.carrot2.org/stable/search
http://search.carrot2.org/stable/search
description: Search results clustering engine pulling data from a meta-search engine, Bing, Wikipedia and
other sources. Also provides visual representations of the clusters.
bit.ly/2fgc3ZH
http://bit.ly/2fgc3ZH
Description: A Google Custom Search Engine (CSE) that Searches cloud based storage for public information.
Blogs
Search engines that focus on blogs and forums.
www.google.com/blogsearch
Description: Google search specialized to blogs
technorati.com
Description: Real-time search for user-generated media (including weblogs) by tag or keyword. Also provides
popularity indexes.
omgili.com
Description: Searches discussions in message boards (forums)
DeepWeb Search Engines
**You Must be Using the TOR browser bundle when accessing this sites
*Access the sites produced by the search engines at your own risk
thehiddenwiki.org
http://thehiddenwiki.org
onion.link
http://www.onion.link
ahmia.fi
https://ahmia.fi/search
onion.cab
https://onion.cab
onion.to
https://xmh57jrzrnw6insl.onion.to
Tracking Website Changes
Changedetection.com
http://www.changedetection.com
Description: provides page change monitoring and notification services to internet users worldwide. Anyone
can use our service to monitor any website page for changes.
Followthatpage.com
http://www.followthatpage.com
Description: sends you an email when your favorite web pages have changed.
Company Reconnaissance Sites (Passive)
Whois.net
http://www.whois.net
Description: Your Trusted Source for Secure Domain Name Searches, Registration & Availability.
RobTex.com
http://www.robtex.com
Description: We aim to make the fastest and most comprehensive free DNS lookup tool on the Internet
CentralOps.net
http://www.centralops.net
Description: Free online network tools.
Netcraft.com
http://www.netcraft.com
Description: Providing research data and analysis on many aspects of the Internet.
People Searching
Description: These are search engines that aggregate information specific related a person.
spokeo.com
http://www.spokeo.com
Description People search engine and free white pages finds phone, address, email, and photos. Find people
by name, email, address, and phone for free (and paid).
peekyou.com
http://www.peekyou.com
Description: PeekYou's free people search engine allows you to find and contact anyone online. Find social
links, photos, work history, alumni info, family and more.
thatsthem.com
http://www.thatsthem.com
Description: ThatsThem is a completely Free People Search service that allows you to lookup anyone's
phone number, email address, postal address, and more.
123people.com
http://www.123people.com
Description: 123-People-Search is a free people search engine that allows you to find & track anyone online.
Our records contain current addresses, phone numbers & more.
zabasearch.com
http://www.zabasearch.com
Description: Find people free with Zabasearch directory engine that includes free people search, reverse
phone number lookup, address lookup, and more.
pipl.com
http://www.pipl.com
Description: Pipl finds high-quality results in pages that cannot be found on regular search engines.
zoominfo.com
http://www.zoominfo.com
Description: ZoomInfo delivers detailed contact information to fuel your sales & marketing funnels–
backed by a comprehensive B2B database.
zillow.com
http://www.zillow.com
Description: The leading real estate marketplace. Search millions of for-sale and rental listings, compare
Zestimate® home values and connect with local professionals.
amazon.com
http://www.amazon.com
Description: searching book reviews (may require username being used)
voterrecords.com
https://voterrecords.com
Description: Access more than 50 million people's voter info for free.
peepdb.com
http://www.peepdb.com
Description: Find addresses, phone numbers, and comments on people you know.
reversegenie.com
http://www.reversegenie.com/plate.php
Description: ReverseGenie provides free license plate search lookup tool.
Phone Numbers
Description: Phone lookup databases
calleridtest.com
http:// www.calleridtest.net
argali.com
http://www.argali.com
ciddb.com/index.php
http://www.ciddb.com/index.php
cellrevealer.com
http://www.cellrevealer.com
spydialer.com
http://www.spydialer.com
Description: This website, without ringing the phone (most of the time), pulls the first 10 seconds of the
voicemail greeting to determine the name of the owner if the voicemail reveals it.
Public Records
publicrecords.searchsystems.net
http://publicrecords.searchsystems.net
Description: “Free” public records
Snoopstation.com/bc/courtsearch-crim.php
http://snoopstation.com/bc/courtsearch-crim.php
Description: County Court records. Not all will be available.
Familywatchdog.us
http://Familywatchdog.us
Description: Sex offenders database
Crimereports.com
http://www.crimereports.com
Description: Map of criminal incidents, traffic incidents, registered sex offenders, police reports and
emergency situations.
Finding Usernames
Description: these search engines search the major social networks to determine where username is being
used.
Namechk.com
http://www.namechk.com
Description: Use Namechk to search for an available username or domain and secure your brand across the
Internet.
Knowem.com
http://www.knowem.com
Description: Check username availability on over 500 social networks in social media, domain names and the
USPTO Trademark database to see if your company, brand, ...
Social Networks
Facebook has a built-in search feature to assist in searching within Facebook as a logged in user. This is
located at the top of your home page.
Search engines
Facebook Live
www.facebook.com/livemap
Google queries for Facebook
Group Search: site:facebook.com inurl:group (‘‘lbmc information security’’ | lbmc)
Group Wall Posts Search: site:facebook.com inurl:wall (lbmcinformationsecurity | lbmc)
Pages Search: site:facebook.com inurl:pages (lbmcinformationsecurity | lbmc)
Public Profiles: allinurl: people ‘‘Bill Dean’’ site:facebook.com
Facebook Query Language (FQL)
**Will need the Facebook ID from findmyfbid.com
http://www.findmyfbid.com/
Description: Find numeric ID →. What's my personal profile URL? Your Facebook personal profile URL is the
the URL you get to when you click on your name in the upper right hand corner.
Direct FQL Queries
Photos By - https://www.facebook.com/search/<ID>/photos-by
Photos Liked - https://www.facebook.com/search/<ID>/photos-liked
Photos Of - https://www.facebook.com/search/<ID>/photos-of
Comments - https://www.facebook.com/search/<ID>/photos-commented
Friends - https://www.facebook.com/search/<ID>/friends
Videos Tagged - https://www.facebook.com/search/<ID>/videos
Videos By - https://www.facebook.com/search/<ID>/videos-by
Videos Liked - https://www.facebook.com/search/<ID>/videos-liked
Videos Commented - https://www.facebook.com/search/<ID>/videos-commented
Events Attended - https://www.facebook.com/search/<ID>/events-joined
Relatives - https://www.facebook.com/search/<ID>/relatives
The Ultimate Facebook Investigation Tool
https://inteltechniques.com/osint/facebook.html
Twitter has three built-in search features to assist in searching within Twitter. These are located at the
following locations.
search.twitter.com
https://twitter.com/search-home
twitter.com/search-advanced
https://www.twitter.com/search-advanced
twitter.com/who_to_follow
https://www.twitter.com/who_to_follow
Description: Since everything in twitter is based on Twitter handle and does not have an easy way to search
by a name. “Who to Follow” provides this capability.
Twitter Search Operators:
Twitter Search Engines
tweetpaths.com
http://www.tweetpaths.com
Description: If the user has geolocation enabled, this site will provide their locations when tweets are sent.
Ready or Not
http://teachingprivacy.icsi.berkeley.edu:8080/
allmytweets.net
http://www.allmytweets.com
Description: Simple way to view all tweets, retweets and replies for a user
Sleepingtime.org
http://www.sleepingtime.org
Description: Analyzes tweets of a person to “estimate” when they sleep.
Socialbearing.com
https://www.socialbearing.com
Description: Powerful Twitter analytics. Find, filter and sort tweets or handles by influence, engagement,
sentiment, location and more.
twicsy.com
http://www.twicsy.com
Description: Twicsy is social pics. Browse & Search social pics! Search over 6,270,226,100 Twitter pics,
millions posted every day! View top trends, popular pics, pics by user
Twimemachine.com
https://www.twimemachine.com
Description: Easily read and search your old tweets. All in one place. Used by more than 585 000 people.
inteltechniques.com/osint/twitter.html
http://inteltechniques.com/osint/twitter.html
Description: Very versatile twitter custom search page
LinkedIn has two built-in search features to assist in searching within LinkedIn. These are located on your
profile home page.
Selecting the “Advanced” option provides a more granular search option:
Google queries for LinkedIn
Public Profiles: site:linkedin.com inurl:pub (‘‘lbmc information security’’ | lbmc)
Updated Profiles: site:linkedin.com inurl:updates (‘‘lbmc information security’’ |
lbmc)
Company Profiles: site:linkedin.com inurl:companies (‘‘lbmc information security’’ |
lbmc)
MySpace
MySpace has a built-in search feature to assist in searching within MySpace.
Google queries for MySpace
Profiles: site: myspace.com inurl:profile (‘‘lbmc information security’’ | lbmc)
Blogs: site:myspace.com inurl:blogs (‘‘lbmc information security’’ | lbmc)
Videos: site:myspace.com inurl:vids (‘‘lbmc information security’’ | lbmc)
Jobs: site:myspace.com inurl:jobs (‘‘lbmc information security’’ | lbmc)
Videos: site:myspace.com ‘‘TARGET NAME’’ ‘‘videos’’
Comments: site:myspace.com ‘‘TARGET NAME’’ ‘‘comments’’
Friends: site:myspace.com ‘‘TARGET NAME’’ ‘‘friends’’
Social Network Search Engines
Social network search engines that combine the results from the primary social networks. These are great
for “live” monitoring across social networks.
kurrently.com
http://www.kurrently.com
Description: Kurrently is a new, real-time search engine that includes both Twitter and Facebook results,
giving companies.
socialmention.com
http://www.socialmention.com
Description: Social Mention is a social media search and analysis platform that aggregates user generated
content from across the universe into a single stream of information.
whostalkin.com
http://www.whostalkin.com
Description: WhosTalkin? helps search for conversations, surrounding the topics that we care about most.
Join us, in conversation today.
twoogel.com
http://www.twoogel.com
Description: Twoogel.com utilizes a powerful custom Google Search code to search the entire Twitterverse.
mention.com
http://www.mention.com
Description: Get the easy-to-use media monitoring tool that lets you track social mentions, analyze
competitors, find influencers, and generate leads.
Monitoring & Alerting
Google Alerts
https://www.google.com/alerts
Description: Monitor the web for interesting new content. **Requires a Google account.
Pastebin Alerts
http://pastebin.com/u/alerts
Monitor the pastebin site for interesting new content. **Requires a Pastebin account
HaveIBeenPwned.com
http://www.haveIbeenpwned.com
Description: Have I been pwned? allows you to search across multiple data breaches to see if your email
addresses has been compromised.
breachorclear.jesterscourt.cc
http://breachorclear.jesterscourt.cc
Description: Search across multiple data breaches to see if your accounts have been compromised.
Images
Picture Searching
Website that allow you to search for pictures based on numerous criteria and specialties. Also performs
reverse imaging searching.
Images.google.com
https://images.google.com
Description: Google Images. The most comprehensive image search on the web.
Facesaerch.com
http://facesaerch.com/
Description: Searches for pictures of a person.
Tineye.com
http://www.tineye.com
Description: Allows you to upload a picture to determine all locations a picture exists on the Internet. Also
has a Firefox plugin.
Flickr.com/map
http://Flickr.com/map
Description: searches flickr pictures based on location (requires EXIF data in picture).
Photobucket.com
http://photobucket.com/
Description: Get free image hosting, easy photo sharing, and photo editing. Upload pictures and videos,
create with the online photo editor, or browse a photo gallery.
Search.fotki.com
http://search.fotki.com/
Description: Search Fotki.com for members, albums, photos. ... Search by tags: Find files. color · black, white,
red, orange, yellow, green, blue, purple, pink, silver, sepia, ...
7photos.net
http://www.7photos.net
Try the search tools of 7photos.net and you'll be surprised how easy you can find a photo ... The search will
be much more productive if use the site 7photos.net.
Worldc.am
http://www.worldc.am
Description: The best way to find the latest Instagram photos from places on the other side of the world, or
just around the corner.
Yandex.com
https://yandex.com/images/
Description: Russian search engine that does a good job of reverse image searching.
EXIF Analysis
regex.info
http://regex.info/exif.cgi
Description: Online tool for viewing image Exif data (metadata embedded within images), such as camera
setting used when taking a photographs, date and location
FindExif.com
http://www.findexif.com
Description: findExif is a free service that can extract and show EXIF data from any photo on the web. Exif
data are shown in a user-friendly format and has support for GPS
metapicz.com
http://metapicz.com
Description: Visualize image metadata anywhere. ... online metadata and exif
viewer. http://metapicz.com. Visualize image metadata anywhere
imageforensic.org
http://www.imageforensic.org
Description: Public and free Digital Image Forensic Analyzer. ... With more features and more great power,
check it out Ghiro at: http://getghiro.org.
Documents
Metashield Analyzer
https://metashieldanalyzer.elevenpaths.com/
Description: Metashield Analyzer Online is a service that allows you to analyze the metadata contained in
your office documents, no matter where you are.
forensicswiki.org/wiki/Document_Metadata_Extraction
http://www.forensicswiki.org/wiki/Document_Metadata_Extraction
Description: Here are tools that will extract metadata from document files.
FOCA
https://www.elevenpaths.com/labstools/foca/index.html
Description: FOCA (Fingerprinting Organizations with Collected Archives) is a tool used mainly to find
metadata and hidden information in the documents its ...
Email Tracing
Websites that you can copy an email header and determine additional information such as sender.
ip-adress.com/trace_email/
http://www.ip-adress.com/trace_email/
Description: Performing an email trace can be done with two different methods and IP-Adress.com can help
you discover the sender of any email by using that person's IP address information that you received. The
way we can help you do this is by using the email header to determine the IP information of the device
where the email originated, and then using that information to run an IP lookup here on our site.
whatismyipaddress.com/trace-email
http://www.whatismyipaddress.com/trace-email
Description: In the following steps you'll learn how to find and copy an email header and paste it into
the Trace EmailAnalyzer to get the sender's IP address and track the ...
Tracking People
getnotify.com
http://www.getnotify.com
Description: Allows you to send an email that will let you know when they open the email and the IP address
they had at that time (combine the info with the IP Geolocating sites later discussed).
IoT – Internet of Things
Insecam.org
http://Insecam.org
Description: Insecam.com - the world biggest directory of online surveillance security IP
IoTscanner.bullguard.com
http://iotscanner.bullguard.com
Description: Check if your internet-connected devices at home (webcams, smart TVs etc) are public on
Shodan.
Shodan
https://Shodan.io
Description: Shodan is the world's first search engine for Internet-connected devices. ... Use Shodan to
discover which of your devices are connected to the Internet.
Shodan Query Options
https://pen-testing.sans.org/blog/2015/12/08/effective-shodan-searches
https://danielmiessler.com/study/shodan/#gs.VBVsyo0
Capturing Information
Tools for capturing information from websites
DownloadHelper
https://www.downloadhelper.net/
Description: A Firefox plugin that will assist in downloading all media from a website
Exif Viewer
https://addons.mozilla.org/en-US/firefox/addon/exif-viewer/
Description: A Firefox plugin that will assist in analyzing EXIF data for both local files and files on remote
webservers
FacePaste
https://addons.mozilla.org/en-US/firefox/addon/facepaste/
Description: A Firefox plugin that will assist in downloading Facebook photo albums. **Currently not
working.. Check back at a later time
FireShot
https://addons.mozilla.org/en-US/firefox/addon/fireshot/
Description: A Firefox plugin that will assist in creating screenshots full or partial webpages.
HTTrack
https://www.httrack.com/
Description: Downloads full websites to local disk (do not try with Facebook)
Camstudio
http://camstudio.org/
Description: If nothing else works, this is a free application to grab video screen captures of websites
Maltego (Ultimate OSINT Tool)
https://www.paterva.com/web7/
http://ctas.paterva.com/view/Userguide
原文PDF已上传知识星球