nuclei-templates/http/osint/user-enumeration/README.md

48 lines
1.7 KiB
Markdown
Raw Permalink Normal View History

2023-02-20 18:42:46 +00:00
## Description
OSINT templates are available for conducting user enumeration across many websites. By utilizing the flag to input a user, Nuclei can verify the user's existence across all websites listed in the templates and report any instances of success.
## Usage
The templates within the `u` directory are **self-contained** and do NOT require URLs as input because the OSINT templates have pre-defined static URLs. Each template in this directory expects the user(name), email, or phone number or list of it to be supplied as input using the `V`/`var` flag through the Nuclei engine.
2023-02-20 18:42:46 +00:00
```bash
# Running OSINT templates against a single user to test
2023-04-08 06:37:48 +00:00
nuclei -tags osint -var user=elon
```
2023-04-21 10:02:47 +00:00
**OSINT** templates can be also ran against list of usernames as well.
2023-04-08 06:37:48 +00:00
```console
$ cat user_names.txt
user_1
user_2
user_3
user_4
user_5
```
```bash
# Running OSINT templates against a list of users to test
nuclei -tags osint -var user=user_names.txt
2023-02-20 18:42:46 +00:00
```
### Categories
The OSINT templates are classified into categories such as `archived`, `art`, `blog`, `business`, `coding`, `dating`, `finance`, `gaming`, `health`, `hobby`, `images`, `misc`, `music`, `news`, `political`, `search`, `shopping`, `social`, `tech`, `video`, `porn`.
To execute OSINT templates within a particular category, you can apply a filter using the `tags` flag and set the prefix value to `osint-`.
```bash
# Running OSINT templates against the social category
2023-02-20 23:40:16 +00:00
nuclei -t osint/ -tags osint-social -var user=some-user
2023-02-20 18:42:46 +00:00
# Running OSINT templates against the multiple categories
2023-02-20 23:40:16 +00:00
nuclei -t osint/ -tags osint-social,osint-finance -var user=some-user
2023-02-20 18:42:46 +00:00
```
## Acknowledgment
2023-04-21 10:02:47 +00:00
These OSINT templates were inspired by the [WebBreacher/WhatsMyName](https://github.com/WebBreacher/WhatsMyName) repository.