Search Engines Resources: Difference between revisions
Jump to navigation
Jump to search
(Created page with "=== Search Engines === https://www.shodan.io/ https://www.zoomeye.org/ https://search.censys.io/ https://hunter.io/ https://fullhunt.io/ https://www.onyphe.io/ https://binaryedge.io/ https://ivre.rocks/ https://vulners.com/ https://pulsedive.com/ https://www.exploit-db.com https://wigle.net/ https://grep.app/ https://www.onyphe.io/ https://intelx.io/ https://dehashed.com/ https://github.com/khast3x/h8ma...") |
No edit summary |
||
| (22 intermediate revisions by 2 users not shown) | |||
| Line 1: | Line 1: | ||
== Search Engines == | |||
The following search engines can be used as part of your passive recon. They are good for searching through code repositories, passive port scanning and technology analysis and looking for CVEs and exploits. To make use of their fullest potential they often require payments. Remember to conduct good OPSEC when placing any purchases with services that you're going to use in your hacktivist operations! | |||
Many of these search engines allow the use of an API. You can integrate their API's with some of your automated tooling. | |||
=== Web === | |||
* https://www.google.com | |||
* https://duckduckgo.com | |||
* https://www.bing.com | |||
* https://yandex.com | |||
* https://metager.de/ | |||
* https://searxng.nicfab.eu/ | |||
* https://search.carrot2.org/#/search/web | |||
* https://github.com | |||
** https://github.com/gwen001/github-subdomains | |||
*** https://github.com/gwen001/github-endpoints | |||
**** https://github.com/gwen001/github-regexp | |||
=== Code repository search === | |||
* https://grep.app | |||
* https://searchcode.com | |||
=== Exploit/CVE search === | |||
* https://www.exploit-db.com | |||
* https://www.rapid7.com/db | |||
* https://sploitus.com | |||
* https://www.exploitalert.com/search-results.html | |||
* https://vulmon.com | |||
* https://www.cisa.gov/known-exploited-vulnerabilities-catalog | |||
* https://vulners.com [Free & Paid] | |||
* Nuclei template search engine: https://nuclei-templates.netlify.app | |||
=== Internet of things search === | |||
* https://www.shodan.io [Free & Paid] | |||
* https://www.zoomeye.org [Free & Paid] | |||
* https://search.censys.io [Free & Paid] | |||
* https://dnsdumpster.com | |||
* https://urlscan.io [Free & Paid] | |||
* https://ivre.rocks | |||
* https://fullhunt.io [Free & Paid] | |||
* https://pulsedive.com [Free & Paid] | |||
* https://wigle.net | |||
* https://crt.sh | |||
* https://publicwww.com [Free & Paid] | |||
* https://viz.greynoise.io [Free & Paid] | |||
* https://tls.bufferover.run [Free & Paid] | |||
* https://www.whois.com/whois | |||
* Passively enumerate subdomains: https://subdomainfinder.c99.nl | |||
* https://host.io [Free & Paid] | |||
* https://viewdns.info | |||
* https://hackertarget.com [Free & Paid] | |||
* Internet analysis: https://bgp.he.net | |||
* https://check-host.net | |||
* https://whois.whoisxmlapi.com [Free & Paid] | |||
* https://www.whoxy.com [Free & Paid] | |||
* https://viewdns.info | |||
=== Business e-mail search === | |||
* https://hunter.io [Paid] | |||
* https://rocketreach.co [Paid] | |||
Latest revision as of 08:02, 27 November 2023
Search Engines
The following search engines can be used as part of your passive recon. They are good for searching through code repositories, passive port scanning and technology analysis and looking for CVEs and exploits. To make use of their fullest potential they often require payments. Remember to conduct good OPSEC when placing any purchases with services that you're going to use in your hacktivist operations!
Many of these search engines allow the use of an API. You can integrate their API's with some of your automated tooling.
Web
- https://www.google.com
- https://duckduckgo.com
- https://www.bing.com
- https://yandex.com
- https://metager.de/
- https://searxng.nicfab.eu/
- https://search.carrot2.org/#/search/web
- https://github.com
Code repository search
Exploit/CVE search
- https://www.exploit-db.com
- https://www.rapid7.com/db
- https://sploitus.com
- https://www.exploitalert.com/search-results.html
- https://vulmon.com
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog
- https://vulners.com [Free & Paid]
- Nuclei template search engine: https://nuclei-templates.netlify.app
Internet of things search
- https://www.shodan.io [Free & Paid]
- https://www.zoomeye.org [Free & Paid]
- https://search.censys.io [Free & Paid]
- https://dnsdumpster.com
- https://urlscan.io [Free & Paid]
- https://ivre.rocks
- https://fullhunt.io [Free & Paid]
- https://pulsedive.com [Free & Paid]
- https://wigle.net
- https://crt.sh
- https://publicwww.com [Free & Paid]
- https://viz.greynoise.io [Free & Paid]
- https://tls.bufferover.run [Free & Paid]
- https://www.whois.com/whois
- Passively enumerate subdomains: https://subdomainfinder.c99.nl
- https://host.io [Free & Paid]
- https://viewdns.info
- https://hackertarget.com [Free & Paid]
- Internet analysis: https://bgp.he.net
- https://check-host.net
- https://whois.whoisxmlapi.com [Free & Paid]
- https://www.whoxy.com [Free & Paid]
- https://viewdns.info
Business e-mail search
- https://hunter.io [Paid]
- https://rocketreach.co [Paid]