MOSINT – OSINT Tool for Emails in Kali Linux

MOSINT is an advanced Open Source Intelligence (OSINT) tool specifically designed for email investigations within the Kali Linux environment. This powerful Python-based tool enables security professionals and ethical hackers to extract valuable insights from email addresses through passive reconnaissance, information gathering, and breach detection.

MOSINT leverages the robust foundation of Kali Linux's pre-installed security tools to facilitate comprehensive email intelligence gathering operations. The tool's simplicity and versatility make it an essential component for conducting effective email investigations and enhancing security measures.

Installing and Configuring MOSINT

MOSINT harnesses the power of Kali Linux, a renowned operating system specifically designed for penetration testing and ethical hacking. The installation process is straightforward and requires minimal configuration.

Follow these steps to set up MOSINT on your Kali Linux system:

First, launch the terminal and clone the MOSINT repository from GitHub

git clone https://github.com/alpkeskin/mosint.git

Navigate to the MOSINT directory

cd mosint

Install the necessary dependencies using pip3

pip3 install -r requirements.txt

Verify the successful installation by checking the help menu

python3 mosint.py --help

Output

usage: mosint.py [-h] [--domain DOMAIN] [--email EMAIL] [--passive] [--port PORT] [--source SOURCE]

optional arguments:
  -h, --help         show this help message and exit
  --domain DOMAIN    Set domain to use
  --email EMAIL      Set email to use
  --passive          Use passive recon
  --port PORT        Set port to use
  --source SOURCE    Source to search

Performing Passive Reconnaissance

Passive reconnaissance is a crucial phase in email investigations that allows information extraction without direct interaction with the target. MOSINT excels in this area by identifying email addresses associated with specific domains.

To perform passive reconnaissance on a domain, use the following command

python3 mosint.py --domain example.com --passive

Output

[+] Searching for email addresses associated with the domain: example.com
[+] The search yielded 3 email addresses linked to the domain:
- john.doe@example.com
- jane.doe@example.com
- info@example.com

This passive reconnaissance capability enables investigators to discover email addresses linked to target domains without alerting the target organization, making it an invaluable tool for initial intelligence gathering.

Gathering Information from Email Addresses

Once email addresses are identified, MOSINT can extract additional relevant information associated with those addresses. This feature provides comprehensive details about email account holders and their digital footprints.

To gather information from a specific email address

python3 mosint.py --email john.doe@example.com

Output

[+] Extracting information for the email address: john.doe@example.com
[+] The search yielded the following information:
- Name: John Doe
- Company: ABC Corporation
- Job Title: Software Engineer
- Social Media Profiles: Twitter, LinkedIn

This functionality reveals crucial details such as personal names, company affiliations, job titles, and social media presence, providing investigators with a comprehensive profile of the email account holder.

Searching for Email Address Breaches

Email address breaches present significant security risks, and MOSINT offers powerful capabilities for identifying compromised email addresses. The tool can search various breach databases to determine if an email address has been involved in data breaches.

To search for breaches related to a specific email address using the "Have I Been Pwned" database

python3 mosint.py --email john.doe@example.com --source haveibeenpwned

Output

[+] Searching for breaches related to the email address: john.doe@example.com
[+] The search revealed the following breaches:
- Adobe (2013)
- LinkedIn (2012)
- MySpace (2008)

This breach detection capability helps security professionals assess the risk level associated with specific email addresses and implement appropriate security measures.

Key Features

Conclusion

MOSINT is an exceptional OSINT tool that enhances email intelligence gathering capabilities within the Kali Linux ecosystem. Its comprehensive features for passive reconnaissance, information extraction, and breach detection make it invaluable for security professionals conducting email investigations and strengthening organizational security postures.