How to Collect Email Addresses from Websites

by Cyber Hack February 08, 2016 0 Comments

Collect Email Addresses from

Websites

TheHarvester has been developed in Python by Cyber Hack In The World (J2). It is a tool which provides us information of about e-mail accounts, usernames and hostnames/subdomains from different public sources like search engines and PGP key server.

This tool is designed to help the penetration tester on an earlier stage; it is an effective, simple and easy to use. The sources supported are:

Google – emails, subdomains/hostnames
Google profiles – Employee names
Bing search – emails, subdomains/hostnames, virtual hosts
Pgp servers – emails, subdomains/hostnames
LinkedIn – Employee names
Exalead – emails, subdomains/hostnames
New features:
Time delays between requests
XML results export
Search a domain in all sources
Virtual host verifier
Getting Started:

If you are using kali linux, go the terminal and use the command theharvester.
In case, if it is not available in your distribution, than you can easily download it from https://drive.google.com/drive/u/0/folders/0B93bMyMhBbrYNjhYWFBlbWxsTkE , simply download it and extract it.
Provide execute permission to the theHarvester.py by [chmod 755 theHavester.py]
After getting in to that, simply run. /theharvester, it will display version and other option that can be used with this tool with detailed description.

#theHarvester -d [url] -l 300 -b [search engine name]
#theHarvester -d sixthstartech.com -l 300 -b google
-d [url] will be the remote site from which you wants to fetch the juicy information.
-l will limit the search for specified number.
-b is used to specify search engine name.
From above information of email address w

e can identify pattern of the email addresses assigned to the employees of the organization.

#theHarvester -d sixthstartech.com -l 300 -b all