Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/j3ers3/Searpy

🥀 Search Engine Tookit，URL采集、Favicon哈希值查找真实IP、子域名查找
https://github.com/j3ers3/Searpy

fofa google pentest shodan zoomeye

Last synced: 3 months ago
JSON representation

🥀 Search Engine Tookit，URL采集、Favicon哈希值查找真实IP、子域名查找

Host: GitHub
URL: https://github.com/j3ers3/Searpy
Owner: j3ers3
Created: 2018-04-17T05:00:47.000Z (over 6 years ago)
Default Branch: master
Last Pushed: 2023-05-17T09:59:18.000Z (over 1 year ago)
Last Synced: 2024-05-02T19:20:25.884Z (6 months ago)
Topics: fofa, google, pentest, shodan, zoomeye
Language: Python
Homepage:
Size: 1.39 MB
Stars: 201
Watchers: 7
Forks: 25
Open Issues: 2
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

awesome-hacking-lists - j3ers3/Searpy - 🥀 Search Engine Tookit，URL采集、Favicon哈希值查找真实IP、子域名查找 (Python)

README

        # 🥀 Searpy ![Stage](https://img.shields.io/badge/Release-STABLE-brightgreen.svg) [![Python 2.7](https://img.shields.io/badge/Python-2.7-yellow.svg)](http://www.python.org/download/) [![Python 3.7](https://img.shields.io/badge/Python-3.7-yellow.svg)](http://www.python.org/download/) ![Build Status](https://img.shields.io/badge/Version-2.3-red.svg)

🔧 批量搜索工具，可用于采集和溯源

> 支持py2和py3

![](media/16576896459839.jpg)

## 1. Install

```

git clone https://github.com/j3ers3/Searpy

pip install -r requirements.txt

配置API及账号 ./config.py

python Searpy -h

```

## 2. Help

```

Searpy Engine Tookit

optional arguments:

  -h, --help            show this help message and exit

ENGINE:

  --baidu               Using baidu Engine

  --google              Using google Engine

  --so                  Using 360so Engine

  --bing                Using bing Engine

  --shodan              Using shodan Engine

  --fofa                Using fofa Engine

  --zoomeye             Using zoomeye Engine

  --goo                 Using goo Engine

  --yahoo               Using yahoo Engine

  --quake               Using quake Engine

  --hunter              Using hunter Engine

SCRIPT:

  --shodan_icon SHODAN_ICON

                        Get ip list which using the same favicon.ico

  --fofa_icon FOFA_ICON

                        Get ip list which using the same favicon.ico

MISC:

  -s SEARCH             Speciy Keyword

  -o OUTPUT             Specify output file default output.txt

  -p PAGE               Search page (default 1)

  -l LIMIT              Maximum searching results (default:10) Only Shodan

  --proxy PROXY         HTTP Proxy, eg http://127.0.0.1:8080

```

### 2.1 示例

```

python3 Searpy.py --fofa -s "app=jboss" -p10

python3 Searpy.py --shodan -s "weblogic" -l10 

python3 Searpy.py --quake -s 'domain="baidu.com"'

python3 Searpy.py --hunter -s 'domain="baidu.com"'

python3 Searpy.py --bing -s 'site:baidu.com'

python3 Searpy.py --google -s "inurl:login.action" -p1 --proxy http://127.0.0.1:1080

```

![-w762](media/16001347790190.jpg)

###  2.2 其他功能

利用favicon.icon图标hash来寻找使用相同图标的网站，可用于溯源真实IP和资产发现

```

python3 Searpy.py --shodan_icon https://www.qq.com

python3 Searpy.py --fofa_icon https://www.qq.com

```

![截屏2020-09-15 09.44.36](media/%E6%88%AA%E5%B1%8F2020-09-15%2009.44.36.png)

## 3. 模块调用

```python

>>> from Searpy import Bing

>>> s = Bing('inurl:php?id=1', 2)

>>> s.search()

>>> for i in s.result:

>>>     print(i)

```

## 4. 支持搜索引擎

- [x] Shodan

- [x] Fofa

- [x] Zoomeye

- [ ] Censys

- [ ] Dnsdb

- [x] Google

- [x] Baidu

- [x] Bing

- [x] 360so

- [x] Goo

- [x] Yahoo

- [x] Quake

- [x] Hunter

## 5. ToDo

- [ ] 添加子域名搜索

## 6. ChangeLog

#### v2.3 

- fix some bugs

- add fofa_icon module

#### v2.2 

- fix some bugs

## 7. Donations

* XMR: `498AoZRwfC11Fa4LwAyVVp3wRD4Zyf1e1HziegczeWeSYVVTZ8gw8CoNPm5yhY91tkDqDMBg6A5KUfyowMtdkQDrDxE5aVN`

* BTC: `1ALWC7rGL4dHgbyy4R8uTVHmDugPDD7Rvt`