150+ hacker search engines and tools (part 1)

Hello to all Freaks!

The article consists of 8 volume sections:

1. Metasearch engines and search engines;
2. Tools for working with dorks;
3. Search by email and logins;
4. Search by phone numbers;
5. Search in the TOR network;
6. Search on the Internet of things, IP, domains and subdomains;
7. Search for data on vulnerabilities and indicators of compromise;
8. Search by source code.

This article contains tools that our team members use in their work. And yet, this collection will be useful not only for hackers, but also for developers, journalists, HR, marketers and anyone who searches the Internet a lot.

Metasearch engines and search engines

Online Services

• Hopain Tools , Inteltechniques , IntelligenceX , Aware OSINT Tools - are home pages for dozens of general and special purpose search engines. All of them are explicitly focused on OSINT.
• Fagan Finder - a panel with dozens of search engines for libraries, archives and databases.
• Dogpile , iZito , zapmeta are metasearch engines that aggregate results from Google, Yandex, Bing and other popular search engines and display them on one page.
• Metaosint is a search engine for search engines. Provides a user-friendly interface for finding other tools.
• Synapsint is a metasearch engine with the ability to search by IP, SSL, ASN, CVE, email and phone numbers.
• ThatsThem is a combined name, address, phone, email and IP search engine.
• Carrot2 is a search engine with a built-in text clustering algorithm. Automatically combines thematically related sources into groups.
• Isearchfrom - simulates search queries to Google from different countries. Helps to understand how regional restrictions affect search results.
• Answerthepublic is an English-language search engine that returns common search queries for a given phrase.

Utilities

• C - search from the command line in 106 sources.
• SpiderFoot is a tool for automating search queries and exporting results to CSV, JSON, GEXF. Tailored for red team tasks. Equipped with a built-in web interface.
• Query-Server is a tool to send search queries to Google, Yahoo, Bing, Ask, DuckDuckGo, Baidu, Exalead, Quora, Parsijoo, Dailymotion, Mojeek and Youtube and write the results to CSV, JSON or XML.
• Recon-ng is an open source intelligence framework. Allows you to search for almost everything from logins, phone numbers and addresses, to files with financial statements that have fallen into the public domain. Outwardly, it resembles the Metasploit Framework.
• Querytool is an OSINT tool based on google spreadsheets. Designed for advanced searches for people, email addresses, files, and more.
• Maltego Community Edition is a free version of the OSINT tool for collecting information from Whois, search engines, social networks and identifying correlations between people, email addresses, logins, companies, websites, domains, etc.
• sn0int is a framework for collecting and semi-automatically processing information about subdomains, IP addresses, compromised accounts, phone numbers and social media profiles.
• theHarvester is a console utility for collecting information for reddtiming. Allows you to perform active and passive reconnaissance using various search engines. Collects names, email addresses, IP addresses, subdomains and URLs.
• ReconSpider is a crawler for finding IP addresses, emails, websites, organizations and searching for information from various sources.
• Mr.Holmes is a tool for collecting information about user domains, names and phone numbers using public sources and Google Dorks.
• Datasploit is an OSINT tool found on Kali or BlackArch Linux . Designed to collect data for a specific domain, email, username or phone number and save reports in text files, HTML and JSON.
• YaCy is an open source decentralized search engine. Allows you to deploy your own search engine.

Tools for working with dorks

Online Services

• Google Hacking Database is a refillable dork directory with built-in search.
• Dorksearch is a search engine with a built-in dork builder.
• Bug Bounty Helper is another online google dorks builder for finding "delicate" pages.

Utilities

• pagodo - automates the search for potentially vulnerable web pages using dorks from the aforementioned Google Hacking Database.
• Grawler is a web-based PHP utility for automating the use of Google Dorks, cleaning and saving search results.
• DorkScout is another dork search automation tool. Written in Golang.
• oxDork is a utility for finding vulnerabilities and misconfigurations of web servers.
• ATSCAN SCANNER - designed for searching using dorks and mass scanning web resources for vulnerabilities.
• Fast Google Dorks Scan is an automated tool for collecting information about a specific website using dorks.
• SiteDorks is a ready-made set of search queries for Google, Bing, Ecosia, DuckDuckGo, Yandex, Yahoo and so on. Includes 527 websites.

Search by email and logins

Online Services

• Snusbase - indexes information from leaks and provides access to search for compromised email addresses, logins, names, IP addresses, phone numbers and password hashes.
• have i been pwned? - search engine for data leaks. Allows you to check which incidents involved a particular email address.
• Hunter and Skymem - search for corporate email addresses by URL.
• whatsmyname - search for accounts in various services by login. The service is based on public JSON.
• User Searcher is a free tool that will help you find a user by login on more than 2,000 websites.
• CheckUserNames , Instant Username Search , Namecheckr , peekyou , usersearch - online services for searching user accounts by login.

Utilities

• Infoga is a tool to collect email account information from public sources (search engines, PGP keyservers, Shodan) and check if email has been leaked using the haveibeenpwned.com API.
• Holehe OSINT - checks if email is linked to accounts on sites like twitter, instagram, imgur. Supports over 100 portals. Uses the password recovery feature.
• Mailcat - Looks up email addresses by nickname from 22 email providers.
• WhatBreach is an OSINT tool that simplifies the task of finding leaks involving a specific email address. Able to load public databases.
• h8mail and pwnedOrNot are tools for finding passwords from compromised email addresses in public databases.
• Sherlock is a tool for searching social media accounts by username.
• Snoop Project is a login search tool. According to the developer, it covers more than two and a half thousand sites.
• Maigret - collects a dossier on a person login, checking accounts on two and a half thousand sites and collecting all available information from web pages. API keys are not required. Fork Sherlock.
• Social Analyzer is an API, command line interface and web application for analyzing and searching human profiles on more than 1,000 websites.
• NExfil is a python utility for searching profiles by username on 350 websites.
• SPY is another fast account name search engine that works with 210 websites.
• Blackbird is a tool for searching accounts by login in social networks.
• Marple - simplifies login search through public search engines from Google to Torch and Qwant.
• GHunt is a modular tool for collecting data about google accounts.
• UserFinder is a tool for finding profiles by username.
• Hackfreaks Last but not the least.