Well it’s been a while since one of my favorite tools (LeakLooker-X) stopped being maintained and its third party service provider was sold (and killed off I think).
So I decided to put together my own. If you’re interested in OSINT, Data Leaks, Threat Intelligence, External Penetration Tests, or just cool stuff, you’ll really dig it.
LeakScope lets you search, triage, preview, and dump exposed services and code leaks using Shodan and ZoomEye with a provider aware UI and database.
It tracks how many entries you have, lets you dig deeper into them, build custom queries, dump them, export specific entries from the database. It tracks how many Shodan/Zoomeye tokens you’ve used and will warn you how many you’re going to before you hit search.
I have over 20? services supported so far, although expect some kinks as I work through and exercise it.
I see this being extremely useful to me so if you have a Shodan or ZoomEye membership with API access, get the value out of it by using LeakScope.
Don’t worry about accidently exploiting or attempting (or succeeding) to authenticate to any of the services as well, there’s no support for that, so you know that anything found is a data leak, unauthenticated and exposed on the internet.
More screenshots and information on the GitHub link below.
If you find something cool don’t hesitate to lmk.
Ofc, it’s open source and accessible HERE
END TRANSMISSION