This short post is about a simple tool named cignotrack, which comes close on the heels of my older posts about tools such as Belati, DataSploit and PowerMeta. This open source script helps you test a domains privacy settings and track their social media presence.
What is cignotrack?
Cignotrack is an open source bash script that helps you get whois information, metadata from documents and social media presence of the targeted domain. The script starts by running a whois query for the domain while saving it to the drive and then grepping output such as the domain registrant name, email, city, address and phone number. It then launches a Google site search for .pdf files and while saving that data in textual format in the “analysis” directory. This document is then processed with the exiftool to get information such as the camera model name, make, serial number, make, latitude and longitude data, software, etc. This text data is then converted to PDF using the pdftotext tool for finding email addresses and IP address information. Another wget request is sent this time for image files, which are then processed for the metadata they hold leveraging the links2 tool. This data is then grepped for links to sites such as Twitter, Facebook, LinkedIn, etc. and if any related data is found another Google request is fired to find social media accounts related to the domain.
There is a lot that can be done to develop this tool further as in my analysis, the tool went into a loop searching for images. Secondly the EXIF information functionality does not work. Hope the author implements a “depth” functionality and improves this simple script!
Installing cignotrack:
Since this is a bash script, it works only on *NIX systems. Installation is pretty simple and can be begun by installing the tool dependencies mentioned above –
sudo apt-get install links2 whois libimage-exiftool-perl poppler-utils
Post this step, all that remains is getting cignotrack v1.0.2 from the GIT repository from here to run:
bash cignotrack.sh
List of Adversary Emulation Tools
cFire: IP Discovery for Domains behind Cloudflare
How to: Uninstall MBRFilter?
Automated Penetration Testing Toolkit UPDATE: APT2 v1.0-20170613!