|
What is it? SpiderFoot is a free, open-source, domain footprinting tool. Given one or multiple domain names (and when I say domains, I'm referring to the DNS kind, not Windows domains), it will scrape the websites on that domain, as well as search Google, Netcraft, Whois and DNS to build up information like: SpiderFoot is 100% written in C# and is GPL licenced. Check out the Screenshots! Disclaimer: It should be noted that you should obtain permission from Netcraft and Whois before using these methods in SpiderFoot, as unlike Google, they don't provide an API for searching, and so SpiderFoot scrapes their websites instead. What you need First and foremost, you need to install the Microsoft .NET Framework. If you want to do the Google searches (and I recommend you do), you also should get a Google API Key. Download SpiderFoot is hosted at SourceForge, and can be downloaded HERE. All the source code is included in the package. How to use it It's all GUI driven, so hopefully it should all be pretty self explanatory. Basically, once you run SpiderFoot.exe, 1) Click on the Config tab and go through each of the sub-tabs to tune the settings to your liking, although the defaults should be fine for most scans. Running the mouse over each option should give a breif summary of what the setting does. 2) Then, go to the Control tab and input all the domains you want to footprint. 3) Finally, select the checkboxes of the methods you want to use for footprinting and click Start. The Results tab will show results in real-time, and you can click the Save button to save the data to a .CSV file (although the fields themselves are tab seperated). Double-clicking on the items listed in each result list will provide a bit more detail. One final note, SpiderFoot primarily relies on parsing HTML to get a lot of information. This means that if a site has totally insanely malformed HTML, or strange text, etc. in its page, then you'll probably get some strange results. This doesn't mean that SpiderFoot broken or something is horribly wrong, it just means that SpiderFoot did it's best to parse the content and it failed. History [2005-07-28] 0.01b - Initial Release Alternatives The guys at Sensepost have written a tool called BiDiBLAH, which has a lot of cool functionality like Metasploit and Nessus interaction. They also inspired some of the ideas behind SpiderFoot. If you want your footprinting tool listed here, drop me an email. Contact Send all comments/suggestions/flames to steve <at> binarypool <dot> com |