GHunt (v2) is an offensive Google framework, designed to evolve efficiently.
It's currently focused on OSINT, but any use related with Google is possible.
Features :
$ pip3 install pipx
$ pipx ensurepath
$ pipx install ghunt
It will automatically use venvs to avoid dependency conflicts with other projects.
First, launch the listener by doing ghunt login and choose between 1 of the 2 first methods :
$ ghunt login
[1] (Companion) Put GHunt on listening mode (currently not compatible with docker)
[2] (Companion) Paste base64-encoded cookies
[3] Enter manually all cookies
Choice =>
Then, use GHunt Companion to complete the login.
The extension is available on the following stores :
Then, profit :
Usage: ghunt [-h] {login,email,gaia,drive,geolocate} ...
Positional Arguments:
{login,email,gaia,drive,geolocate}
login Authenticate GHunt to Google.
email Get information on an email address.
gaia Get information on a Gaia ID.
drive Get information on a Drive file or folder.
geolocate Geolocate a BSSID.
Options:
-h, --help show this help message and exit
📄 You can also use --json with email, gaia, drive and geolocate modules to export in JSON ! Example :
$ ghunt email <email_address> --json user_data.json
Have fun 🥰💞
📕 I started writing some docs here and examples here, feel free to contribute !
To use GHunt as a lib, you can't use pipx because it uses a venv.
So you should install GHunt with pip :
$ pip3 install ghunt
And now, you should be able to import ghunt in your projects !
You can right now play with the examples.
This tool is for educational purposes only, I am not responsible for its use.
This project is under AGPL Licence, and you have to respect it.
Use it only in personal, criminal investigations, pentesting, or open-source projects.
Thanks to these awesome people for supporting me !
You like my work ?
Sponsor me on GitHub ! 🤗
FAQs
An offensive Google framework.
We found that ghunt demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.