Harpoon – OSINT and Menace Intelligence CLI device


CLI device for open supply and risk intelligence


As a pre-requesite for Harpoon, you should set up lxml necessities, on Debian/Ubuntu : sudo apt-get set up libxml2-dev libxslt-dev python3-dev.

It’s worthwhile to have geoipupdate put in and correctly configured to make use of geolocation accurately (be sure you to have GeoLite2-Nation GeoLite2-Metropolis GeoLite2-ASN as EditionIDs).

If you wish to use the screenshot plugin, you want phantomjs and npm put in:

npm set up -g phantomjs

Installing harpoon

You can simply install the package from pypi with pip set up harpoon

If the above set up directions didn’t work, you possibly can construct the device from supply by executing the next instructions within the terminal (this assumes you’re utilizing virtualenvs):

git clone https://github.com/Te-k/harpoon.git
cd harpoon
pip3 set up .

You might wish to set up harpoontools to have extra instructions utilizing harpoon options.


To configure harpoon, run harpoon config and fill in the needed API keys.

Then run harpoon update to download needed files. Check what plugins are configured with harpoon config -c.

See the wiki for extra info.

Updating Harpoon

If you installed harpoon from pypi, simply do pip set up -U harpoon.

In case you put in harpoon from the git repository, go to the repository and use the next instructions:

git pull origin grasp
pip set up .

After configuration the next plugins can be found throughout the harpoon command:

    asn                 Collect info on an ASN
    binaryedge          Request BinaryEdge API
    cache               Requests webpage cache from totally different sources
    censys              Request info from Censys database (https://censys.io/)
    certspotter         Get certificates from https://sslmate.com/certspotter
    circl               Request the CIRCL passive DNS database
    config              Configure Harpoon
    crtsh               Search in https://crt.sh/ (Certificates Transparency database)
    cybercure           Search cybercure.ai intelligence database for particular indicators.
    dns                 Map DNS info for a site or an IP
    dnsdb               Requests Farsight DNSDB
    electronic mail               Collect info on an electronic mail deal with
    fullcontact         Requests Full Contact API (https://www.fullcontact.com/)
    github              Request Github info by means of the API
    googl               Requests Google url shortener API
    greynoise           Request info from GreyNoise API (choose Group or Enterprise by way of api_type config)
    assist                Give assistance on an Harpoon command
    hibp                Request Have I Been Pwned API (https://haveibeenpwned.com/)
    hunter              Request hunter.io info by means of the API
    hybrid              Requests Hybrid Evaluation platform
    intel               Collect info on a site
    ip                  Collect info on an IP deal with
    ipinfo              Request ipinfo.io info
    koodous             Request Koodous API
    malshare            Requests MalShare database
    misp                Get info from a MISP server by means of the API
    numverify           Question telephone quantity info from NumVerify
    opencage            Ahead/Reverse Geocoding utilizing OpenCage
    otx                 Requests info from AlienVault OTX
    permacc             Request Perma.cc info by means of the API
    pgp                 Seek for info in PGP key servers
    pt                  Requests Passive Whole database
    pulsedive           Request PulseDive API
    quad9               Test if a site is blocked by Quad9
    robtex              Search in Robtex API (https://www.robtex.com/api/)
    safebrowsing        Test if the given area is in Google protected Shopping record
    save                Save a webpage in cache platforms
    screenshot          Takes a screenshot of a webpage
    securitytrails      Requests SecurityTrails database
    shodan              Requests Shodan API
    spyonweb            Search in SpyOnWeb by means of the API
    subdomains          Analysis subdomains of a site
    telegram            Request info from Telegram by means of the API
    threatcrowd         Request the ThreatCrowd API
    threatgrid          Request Menace Grid API
    threatminer         Requests TreatMiner database https://www.threatminer.org/
    tor                 Test if an IP is a Tor exit node listed within the public record
    totalhash           Request Whole Hash API
    twitter             Requests Twitter API
    umbrella            Test if a site is in Umbrella High 1 million domains
    replace              Replace Harpoon information
    urlhaus             Request urlhaus.abuse.ch API
    urlscan             Search and submit urls to urlscan.io
    vt                  Request Virus Whole API
    xforce              Question IBM Xforce Trade API
    zetalytics          Search in Zetalytics database

You will get info on every command with harpoon assist COMMAND


Thanks to people who helped improving Harpoon : @jakubd @marrouchi @grispan56 @christalib

Credit for the emblem goes to @euphoricfall and the PulseDive team


This code is released under GPLv3 license.

Source link