Support HackTricks and get benefits! - Do you work in a **cybersecurity company**? Do you want to see your **company advertised in HackTricks**? or do you want to have access to the **latest version of the PEASS or download HackTricks in PDF**? Check the [**SUBSCRIPTION PLANS**](https://github.com/sponsors/carlospolop)! - Discover [**The PEASS Family**](https://opensea.io/collection/the-peass-family), our collection of exclusive [**NFTs**](https://opensea.io/collection/the-peass-family) - Get the [**official PEASS & HackTricks swag**](https://peass.creator-spring.com) - **Join the** [**💬**](https://emojipedia.org/speech-balloon/) [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** me on **Twitter** [**🐦**](https://github.com/carlospolop/hacktricks/tree/7af18b62b3bdc423e11444677a6a73d4043511e9/\[https:/emojipedia.org/bird/README.md)[**@carlospolopm**](https://twitter.com/carlospolopm)**.** - **Share your hacking tricks by submitting PRs to the** [**hacktricks github repo**](https://github.com/carlospolop/hacktricks)**.**
# [ProjectHoneypot](https://www.projecthoneypot.org/) You can ask if an IP is related to suspicious/malicious activities. Completely free. # [**BotScout**](http://botscout.com/api.htm) Check if the IP address is related to a bot that register accounts. It can also check usernames and emails. Initially free. # [Hunter](https://hunter.io/) Find and verify emails. Some free API requests free, for more you need to pay. Commercial? # [AlientVault](https://otx.alienvault.com/api) Find Malicious activities related to IPs and Domains. Free. # [Clearbit](https://dashboard.clearbit.com/) Find related personal data to a email \(profiles on other platforms\), domain \(basic company info ,mails and people working\) and companies \(get company info from mail\). You need to pay to access all the possibilities. Commercial? # [BuiltWith](https://builtwith.com/) Technologies used by webs. Expensive... Commercial? # [Fraudguard](https://fraudguard.io/) Check if a host \(domain or IP\) is related with suspicious/malicious activities. Have some free API access. Commercial? # [FortiGuard](https://fortiguard.com/) Check if a host \(domain or IP\) is related with suspicious/malicious activities. Have some free API access. # [SpamCop](https://www.spamcop.net/) Indicates if host is related to spam activity. Have some free API access. # [mywot](https://www.mywot.com/) Based on opinions and other metrics get if a domain is related with suspicious/malicious information. # [ipinfo](https://ipinfo.io/) Obtains basic info from an IP address. You can test up to 100K/month. # [securitytrails](https://securitytrails.com/app/account) This platform give information about domains and IP addresses like domains inside an IP or inside a domain server, domains owned by an email \(find related domains\), IP history of domains \(find the host behind CloudFlare\), all domains using a nameserver.... You have some free access. # [fullcontact](https://www.fullcontact.com/) Allows to search by email, domain or company name and retrieve "personal" information related. It can also verify emails. There is some free access. # [RiskIQ](https://www.spiderfoot.net/documentation/) A lot of information from domains and IPs even in the free/community version. # [\_IntelligenceX](https://intelx.io/) Search Domains, IPs and emails and get info from dumps. Have some free access. # [IBM X-Force Exchange](https://exchange.xforce.ibmcloud.com/) Search by IP and gather information related to suspicions activities. There is some free access. # [Greynoise](https://viz.greynoise.io/) Search by IP or IP range and get information about IPs scanning the Internet. 15 days free access. # [Shodan](https://www.shodan.io/) Get scan information of an IP address. Have some free api access. # [Censys](https://censys.io/) Very similar to shodan # [buckets.grayhatwarfare.com](https://buckets.grayhatwarfare.com/) Find open S3 buckets searching by keyword. # [Dehashed](https://www.dehashed.com/data) Find leaked credentials of emails and even domains Commercial? # [psbdmp](https://psbdmp.ws/) Search pastebins where a email appeared. Commercial? # [emailrep.io](https://emailrep.io/key) Get reputation of a mail. Commercial? # [ghostproject](https://ghostproject.fr/) Get passwords from leaked emails. Commercial? # [Binaryedge](https://www.binaryedge.io/) Obtain interesting info from IPs # [haveibeenpwned](https://haveibeenpwned.com/) Search by domain and email and get if it was pwned and passwords. Commercial? [https://dnsdumpster.com/](https://dnsdumpster.com/)\(in a commercial tool?\) [https://www.netcraft.com/](https://www.netcraft.com/) \(in a commercial tool?\) [https://www.nmmapper.com/sys/tools/subdomainfinder/](https://www.nmmapper.com/) \(in a commercial tool?\)
Support HackTricks and get benefits! - Do you work in a **cybersecurity company**? Do you want to see your **company advertised in HackTricks**? or do you want to have access to the **latest version of the PEASS or download HackTricks in PDF**? Check the [**SUBSCRIPTION PLANS**](https://github.com/sponsors/carlospolop)! - Discover [**The PEASS Family**](https://opensea.io/collection/the-peass-family), our collection of exclusive [**NFTs**](https://opensea.io/collection/the-peass-family) - Get the [**official PEASS & HackTricks swag**](https://peass.creator-spring.com) - **Join the** [**💬**](https://emojipedia.org/speech-balloon/) [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** me on **Twitter** [**🐦**](https://github.com/carlospolop/hacktricks/tree/7af18b62b3bdc423e11444677a6a73d4043511e9/\[https:/emojipedia.org/bird/README.md)[**@carlospolopm**](https://twitter.com/carlospolopm)**.** - **Share your hacking tricks by submitting PRs to the** [**hacktricks github repo**](https://github.com/carlospolop/hacktricks)**.**