Found an interesting tool called wtfis.
wtfis is a commandline tool that gathers information about a domain, FQDN or IP address using various OSINT services.
This tool assumes that you are using free tier / community level accounts, and so makes as few API calls as possible to minimize hitting quotas and rate limits.
Setup
wtfis uses these environment variables:
- VT_API_KEY (required) - Virustotal API key
- PT_API_KEY (optional) - Passivetotal API key
- PT_API_USER (optional) - Passivetotal API user
- SHODAN_API_KEY (optional) - Shodan API key
Installation
$ pip install wtfis
Usage:
$ wtfis -h
usage: wtfis [-h] [-m N] [-s] [-n] [-1] [-V] entity
positional arguments:
entity Hostname, domain or IP
options:
-h, --help show this help message and exit
-m N, --max-resolutions N
Maximum number of resolutions to show (default: 3)
-s, --use-shodan Use Shodan to enrich IPs
-n, --no-color Show output without colors
-1, --one-column Display results in one column
-V, --version Print version number
Links: