Mitaka
Mitaka is a browser extension that makes your OSINT (Open Source Intelligence) search & scan easier.
- Key features:
- Auto IoC (indicators of compromise) selection with refang.
- E.g.
example[.]comtoexample.com,test[at]example.comtotest@example.com,hxxp://example.comtohttp://example.com, etc.
- E.g.
- Supports 65+ services.
- Auto IoC (indicators of compromise) selection with refang.
Install
Features
Supported IoCs (indicators of compromise)
| Name | Desc. | E.g. |
|---|---|---|
| ANS | ASN | AS13335 |
| BTC | BTC address | 1A1zP1eP5QGefi2DMPTfTL5SLmv7DivfNa |
| CVE | CVE number | CVE-2018-11776 |
| Domain | Domain name | github.com |
| Email address | test@test.com |
|
| ETH | Ethereum address | 0x32be343b94f860124dc4fee278fdcbd38c102d88 |
| GaPubID | Google Adsense Publisher ID | pub-9383614236930773 |
| GaTrackID | Google Analytics Tracker ID | UA-67609351-1 |
| Hash | MD5, SHA1, SHA256 | 44d88612fea8a8f36de82e1278abb02f |
| IP | IPv4 address | 8.8.8.8 |
| URL | URL | https://github.com |
Supported search engines
| Name | URL | Supported types |
|---|---|---|
| AbuseIPDB | https://www.abuseipdb.com | IP |
| AnyRun | https://app.any.run | Hash |
| apklab | https://apklab.io | Hash (SHA256) |
| archive.org | https://archive.org | URL |
| archive.today | http://archive.fo | URL |
| BGPView | https://bgpview.io | IP, ASN |
| BinaryEdge | https://app.binaryedge.io | IP, domain |
| BitcoinAbuse | https://www.bitcoinabuse.com | BTC |
| BitcoinWhosWhos | https://bitcoinwhoswho.com | BTC |
| Blockchain.com | https://www.blockchain.com | BTC |
| Blockchair | https://blockchair.com | BTC, ETH |
| BlockCypher | https://live.blockcypher.com | BTC |
| Censys | https://censys.io | IP, domain, ASN, email |
| Checkphish | https://checkphish.ai | IP, domain |
| Coalition | https://ess.coalitioninc.com | CVE |
| crt.sh | https://crt.sh | Domain |
| DNSlytics | https://dnslytics.com | IP, domain |
| DomainTools | https://www.domaintools.com | IP, domain |
| EmailRep | https://emailrep.io | |
| FileScan.IO | https://filescan.io | Hash |
| FortiGuard | https://fortiguard.com | IP, URL, CVE |
| Google Safe Browsing | https://transparencyreport.google.com | Domain, URL |
| GreyNoise | https://viz.greynoise.io | IP, domain, ASN, CVE |
| Hashdd | https://hashdd.com | Hash |
| Hurricane Electric | https://bgp.he.net/ | IP, domain, ASN |
| HybridAnalysis | https://www.hybrid-analysis.com | IP, domain, hash |
| Intelligence X | https://intelx.io | IP, domain, URL, email, BTC |
| Intezer | https://analyze.intezer.com | Hash |
| IPinfo | https://ipinfo.io | IP, ASN |
| IPIP | https://en.ipip.net | IP, ASN |
| Joe Sandbox | https://www.joesandbox.com | Hash |
| MalShare | https://malshare.com | Hash |
| Maltiverse | https://www.maltiverse.com | Domain, hash |
| MalwareBazaar | https://bazaar.abuse.ch | Hash |
| Malwares | https://www.malwares.com | Hash |
| NVD | https://nvd.nist.gov | CVE |
| OOCPR | https://data.occrp.org | |
| ONYPHE | https://www.onyphe.io | IP |
| OpenTIP | https://opentip.kaspersky.com | Hash |
| OTX | https://otx.alienvault.com | IP, domain, CVE, URL, hash |
| Pulsedive | https://pulsedive.com | IP, domain, URL, hash |
| Radar | https://radar.cloudflare.com | IP, domain |
| RiskIQ | http://community.riskiq.com | IP, domain, email, Google Analytics Tracker ID |
| Robtex | https://www.robtex.com | IP, domain |
| Scumware | https://www.scumware.org | IP, domain, hash (MD5) |
| SecurityTrails | https://securitytrails.com | IP, domain |
| Shodan | https://www.shodan.io | IP, domain, ASN |
| Sploitus | https://sploitus.com | CVE |
| SpyOnWeb | http://spyonweb.com | IP, domain, Google Adsense Publisher ID, Google Analytics Tracker ID |
| Spyse | https://spyse.com | IP, domain, ASN, CVE, email |
| Talos | https://talosintelligence.com | IP, domain |
| ThreatBook | https://threatbook.io | IP, domain |
| ThreatConnect | https://app.threatconnect.com | IP, domain, email |
| ThreatMiner | https://www.threatminer.org | IP, domain, hash |
| TIP | https://threatintelligenceplatform.com | IP, domain |
| Triage | https://tria.ge | Hash, URL |
| URLhaus | https://urlhaus.abuse.ch | IP, domain |
| urlscan.io | https://urlscan.io | IP, domain, ASN, URL |
| URLVoid | https://www.urlvoid.com | Domain |
| ViewDNS | https://viewdns.info | IP, domain, email |
| VirusTotal | https://www.virustotal.com | IP, domain, URL, hash |
| VMRay | https://www.vmray.com | Hash |
| Vulmon | https://vulmon.com | CVE |
| X-Force Exchange | https://exchange.xforce.ibmcloud.com | IP, domain, hash |
| ZoomEye | https://www.zoomeye.org | IP |
Supported scan engines
| name | url | supported types |
|---|---|---|
| Browserling | https://www.browserling.com | URL |
| HybridAnalysis | https://www.hybrid-analysis.com | URL |
| urlscan.io | https://urlscan.io | IP, domain, URL |
| VirusTotal | https://www.virustotal.com | URL |
How to use
Note: Please set your API keys in the options for enabling HybridAnalysis, urlscan.io and VirusTotal scans.
Options
You can enable / disable a search engine on the options page based on your preference.
Permissions
Note
I don't (and will never) collect any information from the users. You can verify it by reviewing the source code.
Firefox
Please allow "Access your data for all websites" permission. Otherwise this extension does not work.
Privacy Policy
Common Questions
- Q. The context menu is not being shown.
- A. Sometimes it takes time to show the context menu in Chrome. Please wait for a second after selecting. Then the context menu will show.
Alternatives or Similar Tools
- CrowdScrape
- Gotanda
- SOC Multi-tool
- Sputnik
- ThreatConnect Integrated Chrome Extension
- ThreatPinch Lookup
- VTchromizer
Contribute
Read the contribution guide and join the contributors.