pepe是一个基于python的用于从Pastebin收集有关泄露电子邮件地点信息的剧本东西。
它会理会Pastebin email:password转储并收集有关每个电子邮件地点的信息。pepe今朝支持Google,Trumail,Pipl,FullContact和HaveIBeenPwned。另外,它还答允你向人发送有关其泄露暗码的信息邮件,最后每个信息城市在Elasticsearch中举办进一步的摸索。
它只支持一种名目 – email:password。
今朝,通知(notification)仅在FullContact上找到匹配时才会事情,然后会向你发送电子邮件地点和关联的社交媒体帐户。
安装条件Python 3
FullContact API https://www.fullcontact.com/developer/
Pipl API https://pipl.com/api/
HaveIBeenPwned
SafePush (通知 – 可选 – 正在举办中) https://www.pushsafer.com/
Trumail https://trumail.io/
Gmail account (发送电子邮件)
Elasticsearch (可选)
pip install -r requirementsConfig{"domains": { #domains to whitelist or blacklist "whitelist": [""], "blacklist": ["yahoo.com"] }, "keys": { #API KEYS "pushsafer": "API_KEY", "fullcontact": "API_KEY", "pipl": "API_KEY" }, "gmail": { #GMAIL credentials and informational message that will be send "username": "your_username@gmail.com", "password": "password", "message": "Hey,\n\nI am a security researcher and I want to inform you that your password !PASSWORD! has been leaked and you should change it immediately.\nThis email is part of the research, you can find more about it on https://medium.com/@wojciech\n\nStay safe!"}, "elasticsearch": { #ElasticSearch connection info "host": "127.0.0.1", "port": 9200} }利用root@kali:~/PycharmProjects/pepe# python pepe.py -h usage: pepe.py [-h] [--file FILE] [--stream] [--interactive] [--modules MODULES [MODULES ...]] [--elasticsearch] [--whitelist] [--blacklist] ,=. ,=''''==.__.=" o".___ ,=.==" ___/ ,==.," , , \,==="" < ,==) "'"=._.==) `=='' `" ` clover/snark^ Post Exploitation Pastebin Emails github.com/woj-ciech medium.com/@woj_ciech Example: python pepe.py --file <dump.txt> --interactive --whitelist python pepe.py --file <dump.txt> --modules hibp google trumail --elasticsearch --blacklist optional arguments: -h, --help 显示辅佐信息并退出 --file FILE 加载文件 --stream Stream Pastebin --interactive 交互模式 --modules MODULES [MODULES ...] 用于查抄非交互模式的模块 --elasticsearch 输出到ElasticSearch --whitelist 白名单列表 --blacklist 黑名单列表示例交互模式,单独查抄每个电子邮件并执行特定模块。
root@kali:~/PycharmProjects/pepe# python pepe.py --file paste.txt --interactive --blacklist -----------------------Found email [REDACTED]@hotmail.com with password [REDACTED]----------------------- [A] Add domain hotmail.com to blacklist [T] Test [G] Google search [H] HaveIBeenPwned [P] Pipl [F] FullContact [I] Inform [N] Next > G ---Google Search--- http://[REDACTED] http://[REDACTED] http://[REDACTED] [A] Add domain gmail.com to blacklist [T] Test [G] Google search [H] HaveIBeenPwned [P] Pipl [F] FullContact [I] Inform [N] Next > N -----------------------Found email [REDACTED].[REDACTED]@gmail.com with password [REDACTED]----------------------- [A] Add domain gmail.com to blacklist [T] Test [G] Google search [H] HaveIBeenPwned [P] Pipl [F] FullContact [I] Inform [N] Next > F ---FullContact--- [REDACTED] [REDACTED] https://twitter.com/[REDACTED] https://facebook.com/[REDACTED] https:/linkedin.com/[REDACTED] [A] Add domain gmail.com to blacklist [T] Test [G] Google search [H] HaveIBeenPwned [P] Pipl [F] FullContact [I] Inform [N] Next > P ---Pipl--- Name: [REDACTED] [REDACTED] years old Jobs: Quality Control [REDACTED] (since 2018) [REDACTED] Review [REDACTED] (2017-2018) [REDACTED] Attorney [REDACTED] (2017-2018) [REDACTED] Attorney at [REDACTED] (2017-2017) ... [REDACTED] (2012-2012) [REDACTED] Assistant at [REDACTED] (2012-2012) Author/Founder at [REDACTED] (2009-2011) https://www.linkedin.com/in/[REDACTED] http://www.facebook.com/people/[REDACTED] http://twitter.com/[REDACTED] http://pinterest.com/[REDACTED] https://plus.google.com/[REDACTED] ... [REDACTED]