[*]
An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.
Setup
This tool is compactible with:
- Any Linux Operating System (Debian, Ubuntu, CentOS)
- Termux
Linux Setup
git clone https://github.com/radioactivetobi/geo-recon.gitcd geo-reconchmod +x geo-recon.pypip install -r requirements.txt
Termux Setup
git clone https://github.com/radioactivetobi/geo-recon.gitcd geo-reconchmod +x geo-recon.pypip install -r requirements.txt
Sample Syntax Linux
root@kali:~/geo-recon# python geo-recon.py 138.121.128.19░██████╗░███████╗░█████╗░ ██████╗░███████╗░█████╗░░█████╗░███╗░░██╗██╔════╝░██╔════╝██╔══██╗ ██╔══██╗██╔════╝██╔══██╗██╔══██╗████╗░██║██║░░██╗░█████╗░░██║░░██║ ██████╔╝█████╗░░██║░░╚═╝██║░░██║██╔██╗██║██║░░╚██╗██╔══╝░░██║░░██║ ██╔══██╗██╔══╝░░██║░░██╗██║░░██║██║╚████║╚██████╔╝███████╗╚█████╔╝ ██║░░██║███████╗╚█████╔╝╚█████╔╝██║░╚███║░╚═════╝░╚══════╝░╚════╝░ ╚═╝░░╚═╝╚══════╝░╚════╝░░╚════╝░╚═╝░░╚══╝ By d3xt3r_182 Github: https://github.com/radioactivetobi | Twitter: @d3xt3r_182 Usage: python geo-recon.py <IPADDRESS> [*] Running Geo-location Check Against 138.121.128.19Country: BrazilRegion: PiauiCity: TeresinaOrganization: Itech TelecomISP: Itech Telecom[*] Geo-IP Lookup Complete!!![*] Running Reputation Check Against 138.121.128.19Domain: "redeitechtelecom.com.br"Hostname: []Usage Type: "Fixed Line ISP"Confidence of Abuse: 100Number Times of Reported: 982Last Reported: "2020-08-21T16:43:12+00:00"Whitelisted: falseThe IP Address 138.121.128.19 Is Malicious and well known for SSH Bruteforce Attacks[*] IP Reputation Look up Complete!!!
Sample Syntax Termux
$ python2 geo-recon.py 138.121.128.19░██████╗░███████╗░█████╗░ ██████╗░███████╗░█████╗░░█████╗░███╗░░██╗██╔════╝░██╔════╝██╔══██╗ ██╔══██╗██╔════╝██╔══██╗██╔══██╗████╗░██║██║░░██╗░█████╗░░██║░░██║ ██████╔╝█████╗░░██║░░╚═╝██║░░██║██╔██╗██║██║░░╚██╗██╔══╝░░██║░░██║ ██╔══██╗██╔══╝░░██║░░██╗██║░░██║██║╚████║╚██████╔╝███████╗╚█████╔╝ ██║░░██║███████╗╚█████╔╝╚█████╔╝██║░╚███║░╚═════╝░╚══════╝░╚════╝░ ╚═╝░░╚═╝╚══════╝░╚════╝░░╚════╝░╚═╝░░╚══╝ By d3xt3r_182 Github: https://github.com/radioactivetobi | Twitter: @d3xt3r_182 Usage: python geo-recon.py <IPADDRESS> [*] Running Geo-location Check Against 138.121.128.19Country: BrazilRegion: PiauiCity: TeresinaOrganization: Itech TelecomISP: Itech Telecom[*] Geo-IP Lookup Complete!!![*] Running Reputation Check Against 138.121.128.19Domain: "redeitechtelecom.com.br"Hostname: []Usage Type: "Fixed Line ISP"Confidence of Abuse: 100Number Times of Reported: 982Last Reported: "2020-08-21T16:43:12+00:00"Whitelisted: falseThe IP Address 138.121.128.19 Is Malicious and well known for SSH Bruteforce Attacks[*] IP Reputation Look up Complete!!!
To Do List
- Include Longitude & Latitude For Geo-IP Lookup
- Fix API