Favfreak
| Project Name | Stars | Downloads | Repos Using This | Packages Using This | Most Recent Commit | Total Releases | Latest Release | Open Issues | License | Language |
|---|---|---|---|---|---|---|---|---|---|---|
| Arl | 3,749 | 24 days ago | 77 | other | Python | |||||
| ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。 | ||||||||||
| Favfreak | 723 | a year ago | 4 | mit | Python | |||||
| Making Favicon.ico based Recon Great again ! | ||||||||||
| Wordlists | 551 | 4 months ago | Python | |||||||
| Infosec Wordlists and more. | ||||||||||
| Infosec | 5 | 4 years ago | Shell | |||||||
| infosec stuff | ||||||||||
| Breakdnssec | 4 | 9 years ago | 1 | Python | ||||||
| DNS recon / enumeration tool capable of attacking DNSSEC | ||||||||||
| Recon Stats | 3 | 5 years ago | 3 | Python | ||||||
| Parse stats outputs from recon-all | ||||||||||
FavFreak - Weaponizing favicon.ico for BugBounties , OSINT and what not
Detailed Description about this can be found here :
Read Blog here : https://medium.com/@Asm0d3us/weaponizing-favicon-ico-for-bugbounties-osint-and-what-not-ace3c214e139
Introduction
I have created this tool for making my work easier when it comes to recon using Favicon hashes, it takes a list of urls (with https or http protocol) from stdin ,then it fetches favicon.ico and calculates its hash value. It sorts the domains/subdomains/IPs according to their favicon hashes and the most interesting part is , It matches calculated favicon hashes with the favicon hashes present in the fingerprint dictionary , If matched then it will show you the results in the output, there is option to generate shodan dorks as well (that is pretty basic and you can do it manually as well)
How to install and use
Note : Tested with python3.6.9 on Ubuntu/Kali
$ git clone https://github.com/devanshbatham/FavFreak
$ cd FavFreak
$ virtualenv -p python3 env
$ source env/bin/activate
$ python3 -m pip install mmh3
$ cat urls.txt | python3 favfreak.py
Example Run :
Note : URLs must begin with either http or https
$ cat urls.txt
https://example.com
https://test-example.com
http://hack-example.com
.. .. .. ..
.. .. .. ..
AND SO ON
$ cat urls.txt | python3 favfreak.py -o output
Fetching /favicon.ico and generating hashes :
Subdomains/IPs Sorted according to their Favicon hashes :
FingerPrint Based favicon Hash detection :
Fingerprint dictionary looks like this :
Add your own fingerprints
Edit favfreak.py , you will find a dictionary named 'fingerprint' ,
Add your fingerprints in that dictionary !
Contact
Shoot my DM : @0xAsm0d3us
Want to support my work?
If you think my work has added some value to your existing knowledge, then you can Buy me a Coffee here (and who doesn't loves a good cup of coffee?')
