Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/devanshbatham/favfreak

Making Favicon.ico based Recon Great again !
https://github.com/devanshbatham/favfreak

bugbounty bughunting hacking information-gathering osint recon reconnaissance web-security webappsec

Last synced: 14 days ago
JSON representation

Making Favicon.ico based Recon Great again !

Host: GitHub
URL: https://github.com/devanshbatham/favfreak
Owner: devanshbatham
License: mit
Created: 2020-07-03T11:52:29.000Z (over 4 years ago)
Default Branch: master
Last Pushed: 2023-08-29T16:38:07.000Z (about 1 year ago)
Last Synced: 2024-10-16T05:41:25.361Z (28 days ago)
Topics: bugbounty, bughunting, hacking, information-gathering, osint, recon, reconnaissance, web-security, webappsec
Language: Python
Homepage:
Size: 109 KB
Stars: 1,118
Watchers: 20
Forks: 170
Open Issues: 5
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

## FavFreak - Weaponizing favicon.ico for BugBounties , OSINT and what not

![FacFreak](https://raw.githubusercontent.com/devanshbatham/FavFreak/master/static/logo.PNG)

### Detailed Description about this can be found here :
Read Blog here : https://medium.com/@Asm0d3us/weaponizing-favicon-ico-for-bugbounties-osint-and-what-not-ace3c214e139

### Introduction

I have created this tool for making my work easier when it comes to recon using Favicon hashes, it takes a list of urls (with https or http protocol) from stdin ,then it fetches favicon.ico and calculates its hash value. It sorts the domains/subdomains/IPs according to their favicon hashes and the most interesting part is , It matches calculated favicon hashes with the favicon hashes present in the fingerprint dictionary , If matched then it will show you the results in the output, there is option to generate shodan dorks as well (that is pretty basic and you can do it manually as well)

### How to install and use

Note : Tested with python3.6.9 on Ubuntu/Kali

```
$ git clone https://github.com/devanshbatham/FavFreak
$ cd FavFreak
$ virtualenv -p python3 env
$ source env/bin/activate
$ python3 -m pip install mmh3
$ cat urls.txt | python3 favfreak.py

```

Example Run :

Note : URLs must begin with either http or https

```
$ cat urls.txt
https://example.com
https://test-example.com
http://hack-example.com
.. .. .. ..
.. .. .. ..
AND SO ON
```

`$ cat urls.txt | python3 favfreak.py -o output`

**Fetching /favicon.ico and generating hashes :**

![enter image description here](https://raw.githubusercontent.com/devanshbatham/FavFreak/master/static/favfreak.PNG)

**Subdomains/IPs Sorted according to their Favicon hashes :**

![favicon hashes](https://cdn-images-1.medium.com/max/1200/1*sqv1KLo5BBaLKSGSUwFUfw.png)

**FingerPrint Based favicon Hash detection :**

![enter image description here](https://cdn-images-1.medium.com/max/1200/1*2ncy9qEy9_-6CMDYLUa9XA.png)

**Fingerprint dictionary looks like this :**
![enter image description here](https://cdn-images-1.medium.com/max/1200/1*Tnn02JMqeZmIE-XSeSSFvw.png)

### Add your own fingerprints

```
Edit favfreak.py , you will find a dictionary named 'fingerprint' ,
Add your fingerprints in that dictionary !

```

### Contact

Shoot my DM : [@0xAsm0d3us](https://twitter.com/0xAsm0d3us)