Information Gathering

FAVICORN : A Comprehensive Tool For Favicon-Based Website Searches

Favicorn is an innovative tool designed to search websites by their favicons, offering a unique approach to online exploration and cybersecurity research.

By leveraging favicon data, Favicorn provides search result links across multiple platforms, making it a powerful resource for OSINT (Open Source Intelligence) investigations.

How Favicorn Works

Favicorn operates by taking a favicon (a small icon associated with a website) and generating search results across 10 platforms. Users can interact with Favicorn in three primary ways:

  1. Direct Favicon URL Search: Use the --uri or -u option to input a specific favicon URL.
   ./favicorn.py -u https://emojipedia.org/images/favicon-32x32.png
  1. File-Based Search: Upload a favicon file using the --file or -f option.
   ./favicorn.py -f test-favicon.png
  1. Domain-Based Search: Enter a domain name, and Favicorn will resolve its IPs and identify potential favicons using the --domain or -d option.
   ./favicorn.py -d google.com

Favicorn includes several advanced options to enhance functionality:

  • Verbose Mode: Displays favicon hashes during searches (--verbose).
  • Extended Search: Retrieves additional favicon versions via search engines (--add-from-search-engines).
  • Save Results: Exports links to a file (--save-links-filename).
  • TinyURL Integration: Converts full platform links into TinyURLs (--tinyurl).
  • Customizable Output: Disable result previews (--no-fetch) or animations (--no-logo).

Favicorn supports various platforms, including:

  • ZoomEye (login required)
  • Shodan (API key required)
  • Fofa, VirusTotal, BinaryEdge, Netlas, and more.

Favicorn is particularly useful for:

  • Identifying phishing domains for brand protection.
  • Expanding the scope of penetration testing.
  • Detecting command-and-control (C2) servers used by hackers.
  • Conducting broader research in cybersecurity and OSINT.

Favicorn is an open-source project supported by an active OSINT community. Contributions, bug fixes, and feature suggestions are encouraged.

By dropping a star on the GitHub repository, users can help prioritize new features like automated scraping.

Favicorn is not just another tool—it’s a gateway to deeper web insights through the lens of favicons.

Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Leave a Comment
Share
Published by
Varshini
Tags: cybersecurityFAVICORNinformationsecuritykalilinuxkalilinuxtools
1 month ago

Recent Posts

MassVulScan : A Comprehensive Network Scanning Tool

MassVulScan is a powerful network scanning tool designed for pentesters and system administrators to identify…

2 minutes ago

The-XSS-Rat : A Comprehensive Guide To Cross-Site Scripting Tools And Strategies

The-XSS-Rat, an experienced ethical hacker, provides valuable insights into the world of cross-site scripting (XSS)…

5 minutes ago

NimPlant C2 : A Position Independent Code (PIC) Beacon

NimPlant C2 is a minimal Proof-of-Concept (PoC) beacon written in C, designed to operate as…

3 days ago

EUD : Exploring Qualcomm’s Embedded USB Debugger

The Embedded USB Debugger (EUD) is a sophisticated tool developed by Qualcomm to enhance the…

3 days ago

Unleashed Recompiled : A Technical Deep Dive Into Sonic’s PC Transformation

Unleashed Recompiled is an unofficial PC port of Sonic Unleashed, created through the process of…

3 days ago

XenonRecomp : A Tool For Recompiling Xbox 360 Executables

XenonRecomp is a powerful tool designed to convert Xbox 360 executables into C++ code, allowing…

3 days ago