tinfoleak – Get Detailed Info About Any Twitter User


tinfoleak is basically an OSINT tool for Twitter, there’s not a lot of stuff like this around – the only one that comes to mind in fact is creepy – Geolocation Information Aggregator.

tinfoleak is a simple Python script that allow to obtain:

  • basic information about a Twitter user (name, picture, location, followers, etc.)
  • devices and operating systems used by the Twitter user
  • applications and social networks used by the Twitter user
  • place and geolocation coordinates to generate a tracking map of locations visited
  • show user tweets in Google Earth!
  • download all pics from a Twitter user
  • hashtags used by the Twitter user and when are used (date and time)
  • user mentions by the the Twitter user and when are occurred (date and time)
  • topics used by the Twitter user

tinfoleak

You can filter all the information by:

  • start date / time
  • end date / time
  • keywords

You can download tinfoleak here:

tinfoleak-1.2.tar.gz

Or you can read more here.

Posted in: Hacking Tools, Privacy

, ,


Latest Posts:


zBang - Privileged Account Threat Detection Tool zBang – Privileged Account Threat Detection Tool
zBang is a risk assessment tool for Privileged Account Threat Detection on a scanned network, organizations & red teams can use it to identify attack vectors
Memhunter - Automated Memory Resident Malware Detection Memhunter – Automated Memory Resident Malware Detection
Memhunter is an Automated Memory Resident Malware Detection tool for the hunting of memory resident malware at scale, improving threat hunter analysis process.
Sandcastle - AWS S3 Bucket Enumeration Tool Sandcastle – AWS S3 Bucket Enumeration Tool
Sandcastle is an Amazon AWS S3 Bucket Enumeration Tool, formerly known as bucketCrawler. The script takes a target's name as the stem argument (e.g. shopify).
Astra - API Automated Security Testing For REST Astra – API Automated Security Testing For REST
Astra is a Python-based tool for API Automated Security Testing, REST API penetration testing is complex due to continuous changes in existing APIs.
Judas DNS - Nameserver DNS Poisoning Attack Tool Judas DNS – Nameserver DNS Poisoning Attack Tool
Judas DNS is a Nameserver DNS Poisoning Attack Tool which functions as a DNS proxy server built to be deployed in place of a taken over nameserver to perform targeted exploitation.
dsniff Download - Tools for Network Auditing & Password Sniffing dsniff Download – Tools for Network Auditing & Password Sniffing
Dsniff download is a collection of tools for network auditing & penetration testing. Dsniff, filesnarf, mailsnarf, msgsnarf, URLsnarf, and WebSpy passively monitor a network


5 Responses to tinfoleak – Get Detailed Info About Any Twitter User

  1. Vicente Aguilera Diaz September 21, 2014 at 3:39 am #

    Thanks for this post about my Tinfoleak tool.

    Here you have a video with a demo:
    youtube.com/watch?v=6TNiVOkCZQ0

    On November 1, I will present a much more powerful versión of Tinfoleak at No cON Name conference.

    Best regards,
    — Vicente

    • Darknet September 21, 2014 at 3:19 pm #

      Thanks for dropping by Vicente :)

  2. Darvein September 24, 2014 at 5:02 am #

    pretty nice, but earthquake works nice too ;)

  3. HhH September 25, 2014 at 5:13 am #

    it gives bad authentication error code 215

    • Vicente Aguilera Diaz September 29, 2014 at 2:52 am #

      Hi HhH,

      It’s necessary to assign a value to the following variables to authenticate with Twitter:
      CONSUMER_KEY
      CONSUMER_SECRET
      ACCESS_TOKEN
      ACCESS_TOKEN_SECRET

      More info:
      # OAuth Settings
      # How to obtain the API key:
      # Go to https://dev.twitter.com/apps/new
      # Copy the consumer key (API key), consumer secret, access token and access token secret

      Regards,
      — Vicente