This module also generates different files with combinations of possible usernames for an organization. In addition, it is possible to add the employees found to your contacts, so that you can later have access to their network of contacts and information. Linkedin: Using unofficial Linkedin API, different methods were developed to obtain a company’s employees and their contact information (email, twitter or phone).Instragram: Making use of the unofficial Instagram API from different methods were developed to obtain the emails published by users.If it’s not the case, at least you would have an idea of the patterns that follow this target to create the passwords and be able to perform other attacks with a higher level of effectiveness. It is common for employees of a company to publish their emails in social networks, either professional or personal, so if these emails have their credentials leaked, it is possible that the passwords found have been reused in the environment to be audited. The purpose of this tool is to facilitate the search for vulnerable targets during the phase of Footprinting in an Ethical Hacking. SocialPwned is an OSINT tool that allows to get the emails, from a target, published in social networks like Instagram, Linkedin and Twitter to find the possible credential leaks in PwnDB or Dehashed and obtain Google account information via GHunt.
0 kommentar(er)
