openSquat is an opensource Intelligence (OSINT) security tool to identify cyber squatting threats to specific companies or domains, such as:
It does support some key features such as:
This is an opensource project so everyoneβs welcomed to contribute.
Check the 40 seconds Demo Video (v1.95)
Note: Both forks do not contain all openSquat features.
git clone https://github.com/atenreiro/opensquat
pip install -r requirements.txt
Make sure you have Python 3.6+ andpip3 in your environment
To update your current version, just type the following commands inside the openSquat directory:
git pull
pip install -r requirements.txt
The βpip installβ is just to make sure no new libs were added with the new upgrade.
Edit the βkeywords.txtβ with your customised keywords to hunt.
certificate transparency (ct) hunt python opensquat.py --ct # Period search - registrations from the last month (default: day) python opensquat.py -p month # Tweak confidence level. The lower values bring more false positives # (0: very high, 1: high (default), 2: medium, 3: low, 4: very low python opensquat.py -c 2 # All validations options python opensquat.py --phishing phishing_domains.txt --dns --ct --subdomains --portcheck ">
# Lazy run with default options
python opensquat.py
# for all the options
python opensquat.py -h
# Search for generic terms used in phishing campaigns (can lead to false positives)
python opensquat.py -k generic.txt
# With DNS validation (quad9)
python opensquat.py --dns
# Subdomain search
python opensquat.py --subdomains
# Check for domains with open ports 80/443
python opensquat.py --portcheck
# With Phishing validation (Phishing Database)
python opensquat.py --phishing phish_results.txt
# Save output as JSON
python opensquat.py -o example.json -t json
# Save output as CSV
python opensquat.py -o example.csv -t csv
# Conduct a certificate [transparency](<https://www.kitploit.com/sea rch/label/Transparency> "transparency" ) (ct) hunt
python opensquat.py --ct
# Period search - registrations from the last month (default: day)
python opensquat.py -p month
# Tweak confidence level. The lower values bring more false positives
# (0: very high, 1: high (default), 2: medium, 3: low, 4: very low
python opensquat.py -c 2
# All validations options
python opensquat.py --phishing phishing_domains.txt --dns --ct --subdomains --portcheck
To request for a new feature, create a βnew issueβ and describe the feature and potential use cases. If something similar already exists, you can upvote the βissueβ and contribute to the discussions.
Project founder
Contributors
You can help this project in many ways: