CLI device for open supply and risk intelligence
As a pre-requesite for Harpoon, you should set up
sudo apt-get set up libxml2-dev libxslt-dev python3-dev.
It’s worthwhile to have
GeoLite2-Nation GeoLite2-Metropolis GeoLite2-ASN as
If you wish to use the screenshot plugin, you want phantomjs and npm put in:
npm set up -g phantomjs
You can simply install the package from
pip set up harpoon
If the above set up directions didn’t work, you possibly can construct the device from supply by executing the next instructions within the terminal (this assumes you’re utilizing virtualenvs):
git clone https://github.com/Te-k/harpoon.git cd harpoon pip3 set up .
You might wish to set upto have extra instructions utilizing harpoon options.
To configure harpoon, run
harpoon config and fill in the needed API keys.
harpoon update to download needed files. Check what plugins are configured with
harpoon config -c.
See the wiki for extra info.
If you installed harpoon from pypi, simply do
pip set up -U harpoon.
In case you put in harpoon from the git repository, go to the repository and use the next instructions:
git pull origin grasp pip set up .
After configuration the next plugins can be found throughout the
asn Collect info on an ASN binaryedge Request BinaryEdge API cache Requests webpage cache from totally different sources censys Request info from Censys database (https://censys.io/) certspotter Get certificates from https://sslmate.com/certspotter circl Request the CIRCL passive DNS database config Configure Harpoon crtsh Search in https://crt.sh/ (Certificates Transparency database) cybercure Search cybercure.ai intelligence database for particular indicators. dns Map DNS info for a site or an IP dnsdb Requests Farsight DNSDB electronic mail Collect info on an electronic mail deal with fullcontact Requests Full Contact API (https://www.fullcontact.com/) github Request Github info by means of the API googl Requests Google url shortener API greynoise Request info from GreyNoise API (choose Group or Enterprise by way of api_type config) assist Give assistance on an Harpoon command hibp Request Have I Been Pwned API (https://haveibeenpwned.com/) hunter Request hunter.io info by means of the API hybrid Requests Hybrid Evaluation platform intel Collect info on a site ip Collect info on an IP deal with ipinfo Request ipinfo.io info koodous Request Koodous API malshare Requests MalShare database misp Get info from a MISP server by means of the API numverify Question telephone quantity info from NumVerify opencage Ahead/Reverse Geocoding utilizing OpenCage otx Requests info from AlienVault OTX permacc Request Perma.cc info by means of the API pgp Seek for info in PGP key servers pt Requests Passive Whole database pulsedive Request PulseDive API quad9 Test if a site is blocked by Quad9 robtex Search in Robtex API (https://www.robtex.com/api/) safebrowsing Test if the given area is in Google protected Shopping record save Save a webpage in cache platforms screenshot Takes a screenshot of a webpage securitytrails Requests SecurityTrails database shodan Requests Shodan API spyonweb Search in SpyOnWeb by means of the API subdomains Analysis subdomains of a site telegram Request info from Telegram by means of the API threatcrowd Request the ThreatCrowd API threatgrid Request Menace Grid API threatminer Requests TreatMiner database https://www.threatminer.org/ tor Test if an IP is a Tor exit node listed within the public record totalhash Request Whole Hash API twitter Requests Twitter API umbrella Test if a site is in Umbrella High 1 million domains replace Replace Harpoon information urlhaus Request urlhaus.abuse.ch API urlscan Search and submit urls to urlscan.io vt Request Virus Whole API xforce Question IBM Xforce Trade API zetalytics Search in Zetalytics database
You will get info on every command with
harpoon assist COMMAND
Thanks to people who helped improving Harpoon : @jakubd
Credit for the emblem goes toand the
This code is released under GPLv3 license.