Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/utkusen/socialhunter

crawls the website and finds broken social media links that can be hijacked
https://github.com/utkusen/socialhunter

bug-bounty bugbounty osint redteam redteaming

Last synced: 20 days ago
JSON representation

crawls the website and finds broken social media links that can be hijacked

Host: GitHub
URL: https://github.com/utkusen/socialhunter
Owner: utkusen
License: mit
Created: 2022-04-09T11:18:08.000Z (almost 3 years ago)
Default Branch: main
Last Pushed: 2022-09-24T22:45:32.000Z (over 2 years ago)
Last Synced: 2025-01-18T10:09:20.476Z (27 days ago)
Topics: bug-bounty, bugbounty, osint, redteam, redteaming
Language: Go
Homepage:
Size: 20.5 KB
Stars: 716
Watchers: 14
Forks: 73
Open Issues: 5
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

awesome-hacking-lists - utkusen/socialhunter - crawls the website and finds broken social media links that can be hijacked (Go)

README

# socialhunter

> [!IMPORTANT]
> This tool is no longer working, and we won't be able to fix it as it has become difficult to bypass social media protections.

Crawls the given URL and finds broken social media links that can be hijacked. Broken social links may allow an attacker to conduct phishing attacks. It also can cost a loss of the company's reputation. Broken social media hijack issues are usually accepted on the bug bounty programs.

Currently, it supports Twitter, Facebook, Instagram and Tiktok without any API keys.

[![asciicast](https://asciinema.org/a/wYMVXIHCxxOB3QPWq4Fe8Advn.svg)](https://asciinema.org/a/wYMVXIHCxxOB3QPWq4Fe8Advn)

# Installation

## From Binary

You can download the pre-built binaries from the [releases](https://github.com/utkusen/socialhunter/releases) page and run. For example:

`wget https://github.com/utkusen/socialhunter/releases/download/v0.1.1/socialhunter_0.1.1_Linux_amd64.tar.gz`

`tar xzvf socialhunter_0.1.1_Linux_amd64.tar.gz`

`./socialhunter --help`

## From Source

1. Install Go on your system
2. Run: `go install github.com/utkusen/socialhunter@latest`

# Usage

socialhunter requires 2 parameters to run:

`-f` : Path of the text file that contains URLs line by line. The crawl function is path-aware. For example, if the URL is `https://utkusen.com/blog`, it only crawls the pages under `/blog` path

`-w` : The number of workers to run (e.g `-w 10`). The default value is 5. You can increase or decrease this by testing out the capability of your system.

# Donation

Loved the project? You can buy me a coffee