DataSploit is a collection of python scripts which automate open source intelligence searches about domain names, email addresses, IP addresses and usernames.
To use DataSploit, you’ll need:
a basic understanding of the command line.
In addition, knowing your way around python versions, dependencies and virtual environments will definitely help should the script throw out errors.
Why is DataSploit useful?
DataSploit searches several services at once. This speeds up the research process, as you don’t have to perform searches on each service separately. DataSploit also allows to search several targets in one go.
theHarvester is a Python script that uses several search engines to find emails matching a certain domain name.
This has several use cases:
find emails of a company’s employees, if you know the company’s website.
find the email of someone if you know the website of its company or its personal website.
find the format of email addresses of a company. A lot of companies usually use a common format for its employees’ emails, such as email@example.com. If this is the case, you can easily infer the email address of employees from their names.
Say we need to quickly get up-to-date data on French MPs for a project.
Everything we need is on the National Assembly or on the Senate websites, but they provide no structured way to get the data.
Fortunately, Regards Citoyens provides up-to-date data on both French Parliament houses in multiple formats, through several websites:
For example, if we need information on all lower-house MPs currently in office, we get the corresponding JSON data from nosdeputes.fr :
We can then iterate over the 577 lower-house MPs to get the info we want.
Inside this for loop, we can now access data on MPs to store it in the format we want (CSV or Excel table, python dictionary, etc.). For example, we access the surname of the MP with d['nom']. Have a look at the JSON data in your web browser to find all the available attributes.
Some attributes have multiple values, such as email addresses: many MPs have more than one registered. We can store them in a list, like so:
Example: fetching all email addresses
Putting all this together, we can write a little script that outputs all the email addresses of current lower-house MPs: