Chapter 1. Gathering Open Source Intelligence

In this chapter, we will cover the following topics:

Gathering information using the Shodan API
Scripting a Google+ API search
Downloading profile pictures using the Google+ API
Harvesting additional results using the Google+ API pagination
Getting screenshots of websites using QtWebKit
Screenshots based on port lists
Spidering websites

Introduction

Open Source Intelligence (OSINT) is the process of gathering information from Open (overt) sources. When it comes to testing a web application, that might seem a strange thing to do. However, a great deal of information can be learned about a particular website before even touching it. You might be able to find out what server-side language the website is written ...

Get Python Web Penetration Testing Cookbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Python Web Penetration Testing Cookbook by Cameron Buchanan, Terry Ip, Andrew Mabbitt, Benjamin May, Dave Mound

Chapter 1. Gathering Open Source Intelligence

Introduction

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly