PhishGen is a penetration testing and red teaming tool that automates the process of generating email addresses using names scraped from social media sites and scrapes email addresses from additional websites. This script was tested with Python 2.7
Main Features
- A domain and company to search for will need to be provided
- The format of the email addess can be provided or guessed by scraping a website
- The LinkedIn company ID can be provided or guessed by scraping a website
- Profiles will be searched for
- Additional profiles will be searched for using common first names, last names, job titles, and certifications
- Additional websites will be scraped for email addresses
- The results will be saved to a csv file
Installation
Clone the GitHub repository
git clone https://github.com/centralinfosec/Phishing-Email-Address-Generator /opt/Central-InfoSec/Phishing-Email-Address-Generator
Requirements
- A LinkedIn account
- Connections with multiple employees. (The more the better)
- The script will attempt to install the following requirements if they are not already installed. The following commands can be used to manually install the requirements:
pip install beautifulsoup4
pip install colorama
Usage
Generate email addresses by running the following command:
python /opt/Central-InfoSec/Phishing-Email-Address-Generator/PhishGen.py
Example Screenshots
Example of Usage (Screenshot Shortened)
Example of Output (Screenshot Shortened)
The Best Pen Test Company - Central InfoSec
Let’s Work Together
If you’d like to see why Global 100 named Central InfoSec as the Best Boutique Penetration Testing Company and why Corporate Vision selected Central InfoSec as the Best Penetration Testing Firm, let's have a chat to see how you could benefit from Central InfoSec security services. It’s simple and easy. We’ll even include a free customized quote. Let’s get started: Contact Us
Central InfoSec was named the best boutique pen test company and the best pen test firm because we offers some of the best pentest services to help you test, measure, and improve your overall security posture. Security services offered include red teaming, penetration testing, vulnerability assessments, cloud (AWS / Azure) penetration testing, web application pen testing, managed phishing, and other tailored security services to help you reduce risk to your organization.