SpiderFoot 2.9.0

SpiderFoot 2.9.0 is now out, totaling almost 60 data collection/analysis
modules for your reconnaissance, footprinting and OSINT needs.

Here’s what’s new since 2.7.0 was announced here…

  • *9* new modules:
    -Base64 string finder
    -Binary string searches (identifies file meta data)
    -Censys.io data collection (device info)
    -Cymon.io data collection (threat intel)
    -Hunter.io data collection (e-mail addresses)
    -psbdmp.com data collection (password dumps/breaches)
    -ThreatCrowd data collection (threat intel)
    -Squatted domain identification
    -Wikileaks.org data searches
  • Search by e-mail addresses in addition to IPs, subnets, domains
    and hosts
  • Massive reduction in false positives of junk files and social
    media accounts
  • German, French and Spanish dictionaries added for better
    name/string finding
  • Bunch of bug fixes and minor enhancements
  • User manual updated: http://www.spiderfoot.net/documentation/

This compliments the existing list of modules performing searches of
SHODAN, VirusTotal, Google, Web crawling, DNS and a ton of other data
collections (full list here:
http://www.spiderfoot.net/documentation/#module-list)

For more information:

http://www.spiderfoot.net

Enviar un mail mediante el reconocimiento de voz del sistema operativo con PowerShell

SpiderFoot 2.7.0

SpiderFoot 2.7.0: An open source intelligence automation tool to automate the process of gathering intelligence about a given target: IP address, domain name, hostname or network subnet. SpiderFoot can be used offensively, i.e. as part of a black-box penetration test to gather information about the target or defensively to identify what information your organisation is freely providing for attackers to use against you.

  • Six (6) new modules:
    • BotScout.com search for malicious e-mail addresses
    • MalwarePatrol.net search
    • IBM X-Force Threat Exchange search
    • Amazon S3 bucket search
    • Phone number identification
    • Public vulnerability search (PunkSpider and XSSposed)
  • Authentication and HTTPS support
  • Scan by use case: e.g. use “Passive” for gathering info without touching the target
  • SpamCop, bitcash.cz, VXVault, VOIPBL and more added as malicious data sources
  • Pastie and Notepad.cc added as data paste sources
  • Data can be flagged as false positive in the UI (with trickle-down effect)
  • Bunch of bug fixes and minor enhancements
  • User manual updated: http://www.spiderfoot.net/documentation/

SpiderFoot 2.7.0 Server

SpiderFoot 2.7.0 Server Result

Enviar un mail a las direcciones almacenadas en un fichero

Enviar un mail con las últimas entradas publicadas en una web

Comprobar si una cuenta de correo electrónico ha sido comprometida en alguna fuga de datos (versión 2)

Comprobar si una cuenta de correo electrónico ha sido comprometida en alguna fuga de datos

Crear una tarea programada que se encarga de enviar un mail a una hora en concreto si se encuentra un valor en una tabla de MySQL

En primer lugar, crear el script que se conecta a una base de datos de MySQL y hace una consulta para ver si existe un elemento dentro de una tabla, si existe se encarga de enviar un mail

En segundo lugar crear una tarea programada que llama al script