Due 16 February 2021 via NoStarch Press.
Be sure to join our Discord server as well!
Use the directions below to get API Keys that you will use for OSINT and Social Engineering.
This can also be found:
While I will be making every effort to keep this Wiki up to date, there may be times that I fall behind. Please email me and in the interim, please refer to the vendor website.
The HaveIBeenPwned API key is $3.50 per month. With this key, you can use Recon-ng or Spiderfoot to pull from HIBP. Alternatively, you can write your own tool.
Sign up for a free account (allows 100 queries per month) here.
(Note: you cannot register with a free email account)
To find your key, click on your name/picture in the top right corner and select
API. Copy your key.
Navigate here and register for an account.
Note: If you wait until Black Friday, Shodan typically offers a lifetime membership and API key for $10-50 via their Twitter.
Once you have created your Shodan account, select
My Account in the top right corner (or navigate here then make note of API Key.
Create a [free account](free account).
Once you are logged in, you will need to click on your icon in the top right corner (should be your initials), then select
My Account then select
API. You will need both your
API ID and
Once logged in, select
API Access and make note of Your API Key.
Google requires 2 API keys, the regular API and the Custom Search Engine (CSE).
For Twitter, we want to use the search API. Although I have never used it, there may be value in using the Engagement API.
To suggest any changes or additions, please email us