Skip to content

theHarvester

theHarvester is a popular OSINT tool designed to help security researchers and penetration testers gather information about an organization. It collects emails, subdomains, hosts, IP addresses, and URLs using various public data sources.

Features

  • Queries multiple search engines like Google, Bing, Yahoo, and Shodan.
  • Gathers data from public sources like DNS servers and certificate transparency logs.
  • Outputs results in plain text or HTML format for easy analysis.
  • Lightweight and efficient.

Installation

To install theHarvester in Kali Linux, simply run:

apt update && apt -y install theharvester

Usage

Below is an example of using theHarvester to gather information on the domain example.com using Google and Bing as search engines:

root@kali:~# theharvester -d example.com -l 500 -b google,bing

*********************************************
* theHarvester 4.4.0                       *
* By Christian Martorella                  *
* https://github.com/laramies/theHarvester *
*********************************************

[-] Searching in Google...
[+] Emails found: 5
    - admin@example.com
    - support@example.com
    - john.doe@example.com
    - jane.doe@example.com
    - info@example.com

[-] Searching in Bing...
[+] Subdomains found: 3
    - blog.example.com
    - mail.example.com
    - dev.example.com

[-] Total results found: 8