Skip to content
A OSINT tool to obtain a target's phone number just by having his email address
Python
Branch: master
Clone or download
martinvigo Merge pull request #4 from juanvelascogomez/master
Updates main and requirements, now with logging and supporting python3
Latest commit 28c277e Sep 16, 2019
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
LICENSE Initial commit Mar 17, 2019
README.md Fix wrong dependency Aug 16, 2019
email2phonenumber.py Solves requested changes for pull requests Sep 16, 2019
requirements.txt Updates main and requirements, now with logging and supporting python3 Sep 3, 2019

README.md

email2phonenumber

email2phonenumber is an OSINT tool that allows you to obtain a target's phone number just by having his email address.

For full details check: https://www.martinvigo.com/email2phonenumber

Demo: https://www.youtube.com/watch?v=dfvqhDUn81s

Basic info

This tool helps automate discovering someone's phone number by abusing password reset design weaknesses and publicly available data. It supports 3 main functions:

  • "scrape" - scrapes websites for phone number digits by initiating password reset using the target's email address
  • "generate" - creates a list of valid phone numbers based on the country's Phone Numbering Plan publicly available information
  • "bruteforce" - iterates over a list of phone numbers and initiates password reset on different websites to obtain associated masked emails and correlate it to the victim's one

Setup

email2phonenumber was developed on Python 2.x

You will need couple 3rd party libraries: BeautifulSoup and requests. These can be easely installed with pip

pip install beautifulsoup4 requests

Usage

Scrape websites for phone number digits

python email2phonenumber.py scrape -e target@email.com

Generate a dictionary of valid phone numbers based on a phone number mask

python email2phonenumber.py generate -m 555XXX1234 -o /tmp/dic.txt

Find target's phone number by resetting passwords on websites that do not alert the target using a phone number mask and proxies to avoid captchas and other abuse protections

python email2phonenumber.py bruteforce -m 555XXX1234 -e target@email.com -p /tmp/proxies.txt -q

Authors

Martin Vigo - @martin_vigo - martinvigo.com

You can’t perform that action at this time.