Information Gathering

FAVICORN : A Comprehensive Tool For Favicon-Based Website Searches

Favicorn is an innovative tool designed to search websites by their favicons, offering a unique approach to online exploration and cybersecurity research.

By leveraging favicon data, Favicorn provides search result links across multiple platforms, making it a powerful resource for OSINT (Open Source Intelligence) investigations.

How Favicorn Works

Favicorn operates by taking a favicon (a small icon associated with a website) and generating search results across 10 platforms. Users can interact with Favicorn in three primary ways:

  1. Direct Favicon URL Search: Use the --uri or -u option to input a specific favicon URL.
   ./favicorn.py -u https://emojipedia.org/images/favicon-32x32.png
  1. File-Based Search: Upload a favicon file using the --file or -f option.
   ./favicorn.py -f test-favicon.png
  1. Domain-Based Search: Enter a domain name, and Favicorn will resolve its IPs and identify potential favicons using the --domain or -d option.
   ./favicorn.py -d google.com

Favicorn includes several advanced options to enhance functionality:

  • Verbose Mode: Displays favicon hashes during searches (--verbose).
  • Extended Search: Retrieves additional favicon versions via search engines (--add-from-search-engines).
  • Save Results: Exports links to a file (--save-links-filename).
  • TinyURL Integration: Converts full platform links into TinyURLs (--tinyurl).
  • Customizable Output: Disable result previews (--no-fetch) or animations (--no-logo).

Favicorn supports various platforms, including:

  • ZoomEye (login required)
  • Shodan (API key required)
  • Fofa, VirusTotal, BinaryEdge, Netlas, and more.

Favicorn is particularly useful for:

  • Identifying phishing domains for brand protection.
  • Expanding the scope of penetration testing.
  • Detecting command-and-control (C2) servers used by hackers.
  • Conducting broader research in cybersecurity and OSINT.

Favicorn is an open-source project supported by an active OSINT community. Contributions, bug fixes, and feature suggestions are encouraged.

By dropping a star on the GitHub repository, users can help prioritize new features like automated scraping.

Favicorn is not just another tool—it’s a gateway to deeper web insights through the lens of favicons.

Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Leave a Comment
Share
Published by
Varshini
Tags: cybersecurityFAVICORNinformationsecuritykalilinuxkalilinuxtools
8 months ago

Recent Posts

cp Command: Copy Files and Directories in Linux

The cp command, short for "copy," is the main Linux utility for duplicating files and directories. Whether…

7 days ago

Image OSINT

Introduction In digital investigations, images often hold more information than meets the eye. With the…

7 days ago

cat Command: Read and Combine File Contents in Linux

The cat command short for concatenate, It is a fast and versatile tool for viewing and merging…

7 days ago

Port In Networking

What is a Port? A port in networking acts like a gateway that directs data…

1 week ago

ls Command: List Directory Contents in Linux

The ls command is fundamental for anyone working with Linux. It’s used to display the files and…

1 week ago

pwd Command: Find Your Location in Linux

The pwd (Print Working Directory) command is essential for navigating the Linux filesystem. It instantly shows your…

1 week ago