mirror of
https://github.com/carlospolop/hacktricks
synced 2024-11-24 13:43:24 +00:00
155 lines
6.1 KiB
Markdown
155 lines
6.1 KiB
Markdown
# Online Platforms with API
|
|
|
|
{% hint style="success" %}
|
|
Learn & practice AWS Hacking:<img src="/.gitbook/assets/arte.png" alt="" data-size="line">[**HackTricks Training AWS Red Team Expert (ARTE)**](https://training.hacktricks.xyz/courses/arte)<img src="/.gitbook/assets/arte.png" alt="" data-size="line">\
|
|
Learn & practice GCP Hacking: <img src="/.gitbook/assets/grte.png" alt="" data-size="line">[**HackTricks Training GCP Red Team Expert (GRTE)**<img src="/.gitbook/assets/grte.png" alt="" data-size="line">](https://training.hacktricks.xyz/courses/grte)
|
|
|
|
<details>
|
|
|
|
<summary>Support HackTricks</summary>
|
|
|
|
* Check the [**subscription plans**](https://github.com/sponsors/carlospolop)!
|
|
* **Join the** 💬 [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** 🐦 [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
|
|
* **Share hacking tricks by submitting PRs to the** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.
|
|
|
|
</details>
|
|
{% endhint %}
|
|
|
|
## [ProjectHoneypot](https://www.projecthoneypot.org/)
|
|
|
|
You can ask if an IP is related to suspicious/malicious activities. Completely free.
|
|
|
|
## [**BotScout**](http://botscout.com/api.htm)
|
|
|
|
Check if the IP address is related to a bot that register accounts. It can also check usernames and emails. Initially free.
|
|
|
|
## [Hunter](https://hunter.io/)
|
|
|
|
Find and verify emails.\
|
|
Some free API requests free, for more you need to pay.\
|
|
Commercial?
|
|
|
|
## [AlientVault](https://otx.alienvault.com/api)
|
|
|
|
Find Malicious activities related to IPs and Domains. Free.
|
|
|
|
## [Clearbit](https://dashboard.clearbit.com/)
|
|
|
|
Find related personal data to a email (profiles on other platforms), domain (basic company info ,mails and people working) and companies (get company info from mail).\
|
|
You need to pay to access all the possibilities.\
|
|
Commercial?
|
|
|
|
## [BuiltWith](https://builtwith.com/)
|
|
|
|
Technologies used by webs. Expensive...\
|
|
Commercial?
|
|
|
|
## [Fraudguard](https://fraudguard.io/)
|
|
|
|
Check if a host (domain or IP) is related with suspicious/malicious activities. Have some free API access.\
|
|
Commercial?
|
|
|
|
## [FortiGuard](https://fortiguard.com/)
|
|
|
|
Check if a host (domain or IP) is related with suspicious/malicious activities. Have some free API access.
|
|
|
|
## [SpamCop](https://www.spamcop.net/)
|
|
|
|
Indicates if host is related to spam activity. Have some free API access.
|
|
|
|
## [mywot](https://www.mywot.com/)
|
|
|
|
Based on opinions and other metrics get if a domain is related with suspicious/malicious information.
|
|
|
|
## [ipinfo](https://ipinfo.io/)
|
|
|
|
Obtains basic info from an IP address. You can test up to 100K/month.
|
|
|
|
## [securitytrails](https://securitytrails.com/app/account)
|
|
|
|
This platform give information about domains and IP addresses like domains inside an IP or inside a domain server, domains owned by an email (find related domains), IP history of domains (find the host behind CloudFlare), all domains using a nameserver....\
|
|
You have some free access.
|
|
|
|
## [fullcontact](https://www.fullcontact.com/)
|
|
|
|
Allows to search by email, domain or company name and retrieve "personal" information related. It can also verify emails. There is some free access.
|
|
|
|
## [RiskIQ](https://www.spiderfoot.net/documentation/)
|
|
|
|
A lot of information from domains and IPs even in the free/community version.
|
|
|
|
## [\_IntelligenceX](https://intelx.io/)
|
|
|
|
Search Domains, IPs and emails and get info from dumps. Have some free access.
|
|
|
|
## [IBM X-Force Exchange](https://exchange.xforce.ibmcloud.com/)
|
|
|
|
Search by IP and gather information related to suspicions activities. There is some free access.
|
|
|
|
## [Greynoise](https://viz.greynoise.io/)
|
|
|
|
Search by IP or IP range and get information about IPs scanning the Internet. 15 days free access.
|
|
|
|
## [Shodan](https://www.shodan.io/)
|
|
|
|
Get scan information of an IP address. Have some free api access.
|
|
|
|
## [Censys](https://censys.io/)
|
|
|
|
Very similar to shodan
|
|
|
|
## [buckets.grayhatwarfare.com](https://buckets.grayhatwarfare.com/)
|
|
|
|
Find open S3 buckets searching by keyword.
|
|
|
|
## [Dehashed](https://www.dehashed.com/data)
|
|
|
|
Find leaked credentials of emails and even domains\
|
|
Commercial?
|
|
|
|
## [psbdmp](https://psbdmp.ws/)
|
|
|
|
Search pastebins where a email appeared. Commercial?
|
|
|
|
## [emailrep.io](https://emailrep.io/key)
|
|
|
|
Get reputation of a mail. Commercial?
|
|
|
|
## [ghostproject](https://ghostproject.fr/)
|
|
|
|
Get passwords from leaked emails. Commercial?
|
|
|
|
## [Binaryedge](https://www.binaryedge.io/)
|
|
|
|
Obtain interesting info from IPs
|
|
|
|
## [haveibeenpwned](https://haveibeenpwned.com/)
|
|
|
|
Search by domain and email and get if it was pwned and passwords. Commercial?
|
|
|
|
### [IP2Location.io](https://www.ip2location.io/)
|
|
|
|
It detects IP geolocation, data center, ASN and even VPN information. It offers free 30K queries per month.
|
|
|
|
|
|
|
|
[https://dnsdumpster.com/](https://dnsdumpster.com/)(in a commercial tool?)
|
|
|
|
[https://www.netcraft.com/](https://www.netcraft.com/) (in a commercial tool?)
|
|
|
|
[https://www.nmmapper.com/sys/tools/subdomainfinder/](https://www.nmmapper.com/) (in a commercial tool?)
|
|
|
|
{% hint style="success" %}
|
|
Learn & practice AWS Hacking:<img src="/.gitbook/assets/arte.png" alt="" data-size="line">[**HackTricks Training AWS Red Team Expert (ARTE)**](https://training.hacktricks.xyz/courses/arte)<img src="/.gitbook/assets/arte.png" alt="" data-size="line">\
|
|
Learn & practice GCP Hacking: <img src="/.gitbook/assets/grte.png" alt="" data-size="line">[**HackTricks Training GCP Red Team Expert (GRTE)**<img src="/.gitbook/assets/grte.png" alt="" data-size="line">](https://training.hacktricks.xyz/courses/grte)
|
|
|
|
<details>
|
|
|
|
<summary>Support HackTricks</summary>
|
|
|
|
* Check the [**subscription plans**](https://github.com/sponsors/carlospolop)!
|
|
* **Join the** 💬 [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** 🐦 [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
|
|
* **Share hacking tricks by submitting PRs to the** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.
|
|
|
|
</details>
|
|
{% endhint %}
|