Favicons are small icons in modern web applications that could be very useful for us in our day-to-day hunting activities, especially when we combine these icons with modern search engines to find assets on the internet.
This project aims to help a security professional find assets on the internet using favicon hashes on search engines such as FOFA, Shodan, Censys, Zoomeye, Criminal IP, and ODIN. The program returns a table with the custom queries of each search engine and their shortened URL with the query applied.
Cloning the project:
git clone https://github.com/eremit4/favihunter.git
Optional - Creating a virtualenv before installing the dependencies
Note: The use of virtual environments is optional, but recommended. In this way, we avoid possible conflicts in different versions of the project's dependencies. Learn how to install and use virtualenv according to your OS here
Installing the dependencies:
pip install -r requirements.txt
Discovering the project capabilities:
python favihunter.py --help
Analyzing a specific URL:
python favihunter.py --url <url address>
Analyzing a file with URLs:
python favihunter.py --urls-file <file path>
Analyzing a local favicon image:
python favihunter.py --favicon <file path>
Cleaning the favicon local directory:
python favihunter.py --remove-favicons