GHunt – Investigate Google Accounts With Emai

GHunt is an OSINT resource to extract a ton of informations of someone’s Google Account email.

It can now extract :

• Owner’s title
• Final time the profile was edited
• Google ID
• If the account is an Hangouts Bot
• Activated Google providers (Youtube, Photographs, Maps, Information360, Hangouts, etcetera.)
• Attainable Youtube channel
• Probable other usernames
• General public pictures
• Phones products
• Telephones firmwares
• Set up softwares
• Google Maps reviews
• Doable bodily place

Screenshots

Warning

• 02/10/2020 : Considering that couple times ago, Google return a 404 when we consider to access someone’s Google Photographs general public albums, we can only access it if we have a connection of a person of his albums.
  Either this is a bug and this will be fastened, either it is really a protection that we will need to obtain how to bypass.
  So, currently, the shots & metadata module will normally return “No albums” even if there is 1.
• 02/10/2020 : I identified a bypass, I am working on the patch proper now.
• 03/10/2020 : Effectively bypassed.
  

  (dedicate 01dc016)

Installation

• Python 3.6.1+ would be okay. (I formulated it with Python 3.8.1)
• These Python modules are expected (we will put in them right after):

geopy
httpx
selenium-wire
selenium
imagehash
pillow
python-dateutil

1. Chromedriver & Google Chrome

This job utilizes Selenium, so you may need to have to download the chromedriver below : https://chromedriver.chromium.org/downloads
And put it in the GHunt folder. Be guaranteed it truly is termed “chromedriver.exe” or “chromedriver”.
Also, be confident to have Google Chrome put in.

2. Needs

In the GHunt folder, do this:

python -m pip install -r prerequisites.txt

Adapt the command with your functioning program if essential.

Use

For the initial use and from time to time just after, you can need to test the validity of your cookies.
To do this, start examine_and_gen.py.
If you never have cookies stored (ex: initial start) it will request you the 4 wanted cookies, enter them and if they are legitimate, it will generate the Authentification token, and the Google Docs & Hangouts tokens.

Then, you can operate the software like this :

python hunt.py myemail@gmail.com

Every time you re-login to the Google Account utilised for the cookies, it will split their validity, so I extremely counsel you to make an vacant account just for that, or use an account exactly where you under no circumstances login.
Okay but where by I find these 4 cookies?

1. Login to accounts.google.com
2. After linked, open the Dev Instruments window and goes to the Storage tab (Change + F9 on Firefox) (appears to be like it is identified as “Application” on Chrome)
   If you really don’t know how to open up it, just ideal-click on somewhere and “Inspect Ingredient”
3. Then you may discover each and every cookie you have to have, together with the 4 types.

Thanks

This instrument is based mostly on the Sector’s researches on the Google IDs : https://sector035.nl/article content/finding-a-grasp-on-google-ids
And accomplished by my personal researches.
If I have the inspiration to publish a website article about it, I am going to increase the url right here!

Graphic and Posting Resource hyperlink

Examine A lot more on Pentesting Resources