Due 6 May 2022 via NoStarch Press.
Be sure to join our Discord server as well!
Use the directions below to get API Keys that you will use for OSINT and Social Engineering.
NOTES:
This can also be found:
While I will be making every effort to keep this Wiki up to date, there may be times that I fall behind. Please email me and in the interim, please refer to the vendor website.
The HaveIBeenPwned API key is $3.50 per month. With this key, you can use Recon-ng or Spiderfoot to pull from HIBP. Alternatively, you can write your own tool.
Sign up for a free account (allows 100 queries per month) here.
(Note: you cannot register with a free email account)
To find your key, click on your name/picture in the top right corner and select API. Copy your key.
Navigate here and register for an account.
Note: If you wait until Black Friday, Shodan typically offers a lifetime membership and API key for $10-50 via their Twitter.
Once you have created your Shodan account, select My Account in the top right corner (or navigate here then make note of API Key.
Create a [free account](free account).
Once you are logged in, you will need to click on your icon in the top right corner (should be your initials), then select My Account then select API. You will need both your API ID and Secret.
Once logged in, select Tools then API Access and make note of Your API Key.
Google requires 2 API keys, the regular API and the Custom Search Engine (CSE).
For Twitter, we want to use the search API. Although I have never used it, there may be value in using the Engagement API.
GoPhish is an automated phishing utility written in the Go language. In order to use it, you’ll need to have an SMTP server to send the mail through and a web server at which victims will land. Although you can create both of these within GoPhish, doing so might increase your chances of detection. I suggest setting up these three firewall rules to prevent detection or collateral damage:
efore installing GoPhish, you need to install GoLang. Instructions for doing so are located here).
From the GoPhish documentation, installation is as simple as:
To install GoPhish, simply run:
'go get github.com/gophish/gophish`
This downloads GoPhish into your $GOPATH
Next, navigate to:
$GOPATH/src/github.com/gophish/gophish
and run the command:
go build
This builds a GoPhish binary in the current directory.
Let’s Encrypt is a free, automated, and open certificate authority (CA), run for the public’s benefit. It is a service provided by the Internet Security Research Group (ISRG) and is an excellent method for implementing HTTPS (for free!).
From the Let'sEncrypt documentation, instructions for installation are provided here.
DigitalOcean is a low-cost VPS provider that is mostly cool with security activities and research. They allowed me to run a honeynet of over 20 machines (called Droplets) without batting an eye.
The pricing model for DigitalOcean is simple. Droplets are billed by the hour, whether the machine is turned off or on. The only way billing does not occur is if the droplet is destroyed. Droplets start at $5 per month. You can add additional storage, backups, managed databases, and optimized servers (memory and CPU) for additional monthly fees. DigitalOcean also supports Kubernetes clusters starting at $10 per node per month.
DigitalOcean does not offer professional services.
You can choose from a variety of Linux flavors such as:
There is also a marketplace for prebuilt systems located here
Linode is a low-cost VPS provider that competes with DigitalOcean. Instead of Droplets, they refer to VPS instances as Nodes.
The pricing model for Linode is near identical to DigitalOcean. Nodes are billed by the hour, whether the node is turned off or on. The only way billing does not occur is if the node is destroyed. The nodes start at $5 per month. You can add additional storage, backups, managed databases, and optimized servers (memory and CPU) for additional monthly fees. Although currently in Beta, Linode also plans to support Kubernetes clusters.
You can choose from a variety of Linux flavors such as:
Linode does offer professional services.
Although not as robust as DigitalOcean, Linode also has a marketplace for prebuilt systems. Linode has a Beginner's Guide Available here
Anything below this line is considered commercial. I do not have experience phishing from these services and in the absence of being able to provide your statement of work (SOW), you may find yourself in legal hot water and/or banned from the platform. Consider this when deciding to use such a platform, especially over a long period of time.
Amazon offers a very wide array of services. I will admit that the pricing model is not entirely clear. At the surface, there is a free tier that is limited to Linux (Amazon Linux) or Windows for 750 hours. Aside from this, it seems as if the cheapest EC2 (Elastic Computing Cloud) instance is around $18 per month.
AWS does offer professional services.
You can choose from a variety of operating systems such as:
Linux and Windows can be configured as standalone or with one of the following three configurations:
Setting up AWS for the first time is outlined here
Of all the vendor websites that I looked through for this guide, Microsoft's was the least user-friendly. It was challenging to find clearcut pricing and the terminology made it hard to find a plain VPS. As one would expect Microsoft's Azure offers Windows. In addition to Windows, Azure also offers a proprietary Microsoft Linux build. Pricing seems to start around $4.75 per month.
Azure has several ready to go applications that can be installed with a single click, but most of them are overkill for what this guide is designed for.
Google's cloud solution, GCP, seems to be on parity with the other vendors. Pricing is a little higher but more straightforward than Microsoft's. The starting price for a low-end host with no other bells or whistles is $7.30 per month. GCP supports Windows and Linux VPS instances.