This repository has the unified data required to perform user and username enumeration on various websites. Content is in a JSON file and can easily be used in other projects such as the ones below:
- Recon-ng - The Profiler Module grabs this JSON file and uses it. See https://webbreacher.com/2014/12/11/recon-ng-profiler-module/ for details.
- Spiderfoot uses this in the sfp_account module.
The format of the JSON is simple. There are 3 main elements:
- License - The license for this project and its data
- Authors - The people that have contributed to this project
- Sites - This is the main data
Within the "sites" elements, the format is as follows (with several parameters being optional):
...
{
"name" : "name of the site",
"check_uri" : "URI to check the site with the {account} string replaced by a username",
"pretty_uri" : "if the check_uri is for an API, this OPTIONAL element can show a human-readable page",
"account_existence_code" : "the HTTP response code for a good 'account is there' response",
"account_existence_string" : "the string in the response that we look for for a good response",
"account_missing_string" : "this OPTIONAL string will only be in the response if there is no account found ",
"account_missing_code" : "the HTTP response code for a bad 'account is not there' response",
"known_accounts" : ["a list of user accounts that can be used to test","for user enumeration"],
"category" : "a category for what the site is mainly used for",
"valid" : "this true or false boolean field is used to enable or disable this site element"
},
...Here is an example of a site element:
...
{
"name" : "GitHub",
"check_uri" : "https://api.github.com/users/{account}",
"pretty_uri" : "https://github.com/{account}",
"account_existence_code" : "200",
"account_existence_string" : "login:",
"account_missing_string" : ["Not Found"],
"account_missing_code" : "404",
"known_accounts" : ["test","webbreacher"],
"category" : "coding",
"valid" : true
},
...If you just want to run this script to check user names on sites and don't wish to use it in combination with another tool (like Recon-NG and/or Spiderfoot), then you can use the included Python 3 script as shown below:
$ python3 ./web_accounts_list_checker.py -u sdfsfsdfsdfs
- 161 sites found in file.
- Found user at http://www.break.com/user/sdfsfsdfsdfs
! ERROR: CONNECTION TIME OUT. Try increasing the timeout delay.
- Found user at https://klout.com/sdfsfsdfsdfs
- Found user at https://social.technet.microsoft.com/profile/sdfsfsdfsdfs/
- Found user at https://www.pinterest.com/sdfsfsdfsdfs/
- Found user at https://www.reddit.com/user/sdfsfsdfsdfs
- Found user at http://scratch.mit.edu/users/sdfsfsdfsdfs/
* Skipping Slashdot - Marked as not valid.
* Skipping SmiteGuru - Marked as not valid.
* Skipping SoundCloud - Marked as not valid.
- Found user at http://steamcommunity.com/id/sdfsfsdfsdfs
- Found user at http://www.tf2items.com/id/sdfsfsdfsdfs/
- Found user at https://twitter.com/sdfsfsdfsdfs
- Found user at http://videolike.org/video/sdfsfsdfsdfs
! ERROR: CONNECTION TIME OUT. Try increasing the timeout delay.
- Found user at http://www.xvideos.com/profiles/sdfsfsdfsdfs
There is a bash script whatsmyname.sh in the repository that uses Zenity to run the Python standalone checker.
I update this project as I have time and would LOVE to have interested people help maintain and grow it. Please reach to me webbreacher {at} protonmail {dot} com if you are interested.
@WebBreacher
@Munchko
@L0r3m1p5um
@lehuff
@arnydo
@janbinx
@bcoles
@Sector035
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
