قالب وردپرس درنا توس
Home / Tips and Tricks / How to find OSINT data on license plates with Skiptracer «Null Byte :: WonderHowTo

How to find OSINT data on license plates with Skiptracer «Null Byte :: WonderHowTo



During an OSINT exam, it is important to be able to retrieve information based on the evidence you have discovered. In particular, license plate information can be displayed anywhere, from photos to live data to your own street. You can use this data to determine the chassis number, determine whether a tinder date has hit someone, find out who is blocking your driveway, and so on. Skiptracer can help get the ball rolling.

To get started, Python 2 must be installed and updated on your system. The developer of Skiptracer, xillwillx, is in the process of updating the tool to Python 3, since Python 2 is no longer supported, but is not yet completely finished. So we need Python 2 now. To determine if Python 2 is installed, use:

  ~ $ python 2 --version

Python 2.7.1
8

Python 2.7.18 is the latest version. So you're good at it. If you don't already have it, install or update it with:

  ~ $ sudo apt install python2
[sudo] Password for Kali:

Read package lists ... Done
Create dependency tree
Read status information ... Done
python2 is already the latest version (2.7.17-2).
python2 set to manually installed.
0 updated, 0 newly installed, 0 removed and 122 not updated. 

As soon as you have the registration number and the status of the vehicle for which you want to conduct an OSINT examination, you can embed the data online in websites. Still, most of them will try to charge you high fees for accessing information. For this reason, Skiptracer is an excellent tool as it queries a number of APIs to determine if free information can be found from the best sources available.

Get started with Skiptracer now that you know you already have Python 2 installed and up to date, you need to download the tool from xillwillx GitHub. Installation is fairly easy since you only need to clone the repository using:

  ~ $ git clone https://github.com/xillwillx/skiptracer.git

Loning in "Skiptracer" ...
remote: enumerate objects: 3, done.
remote: count objects: 100% (3/3), done.
remote: compress objects: 100% (3/3), done.
Remote: Total 1098 (Delta 0), reused 0 (Delta 0), pack reused 1095
Receiving objects: 100% (1098/1098), 388.83 KiB | 1.85 MiB / s, done.
Dissolving deltas: 100% (654/654), done. 

To see what's in the downloaded repository, you can use CD in Skiptracer and then ls . to list his files.

  ~ $ cd skiptracer
~ / skiptracer $ ls

Changelog Dockerfile LICENSE plugins README.md require.txt skiptracer.py storage 

If you have ever installed a Python program before, it may be fairly obvious what needs to be done next. For those of you who don't know or don't know, you need to install the require.text file, which contains a list of all the different modules that Skiptracer needs to work. Use the command pip install -r to install it.

  ~ / skiptracer $ pip install -r require.txt

Collect Python docx
Download python-docx-0.8.10.tar.gz (5.5 MB)
| ████████████████████████████████ | 5.5 MB 880 kB / s
Requirement already fulfilled: urllib3 in / usr / lib / python3 / dist-packages (from -r requirements.txt (line 2)) (1.25.8)
Collect BS4
Download of bs4-0.0.1.tar.gz (1.1 kB)
Requirement already fulfilled: lxml in / usr / lib / python3 / dist-packages (from -r requirements.txt (line 4)) (4.5.0)
Requirement already met: Requirements in / usr / lib / python3 / dist packages (from -r requirements.txt (line 5)) (2.23.0)
Collect IPdb
Download ipdb-0.13.2.tar.gz (14 kB)
Collect prints
Download pprint-0.1.tar.gz (860 bytes)
Requirement already fulfilled: Click in / usr / lib / python3 / dist-packages (from -r Requirements.txt (line 8)) (7.0).
Collect cfscrape
Download of cfscrape-2.1.1-py3-none-any.whl (12 kB)
Requirement already fulfilled: numpy in / usr / lib / python3 / dist-packages (from -r Requirements.txt (line 10)) (1.17.4)
Requirement already fulfilled: simplejson in / usr / lib / python3 / dist-packages (from -r requirements.txt (line 11)) (3.17.0)
Requirement already fulfilled: tqdm in / usr / lib / python3 / dist-packages (from -r requirements.txt (line 12)) (4.43.0)
Requirement already fulfilled: beautifulsoup4 in / usr / lib / python3 / dist-packages (from bs4 -> - r require.txt (line 3)) (4.9.0)
Requirement already fulfilled: setuptools in / usr / lib / python3 / dist-packages (from ipdb -> - r require.txt (line 6)) (46.1.3)
Requirement already fulfilled: ipython> = 5.1.0 in / usr / lib / python3 / dist packages (from ipdb -> - r anforderungs.txt (line 6)) (7.13.0)
Prerequisite already fulfilled: pexpect in / usr / lib / python3 / dist-packages (from ipython> = 5.1.0-> ipdb -> - r anforderungs.txt (line 6)) (4.6.0)
Build construction bikes for collected packages: python-docx, bs4, ipdb, pprint
Build wheel for Python Docx (setup.py) ... done
Created wheel for python-docx: file name = python_docx-0.8.10-py3-none-any.whl size = 184489 sha256 = 32c641b12abc6ff6aee1d56a517a41bfef0f0141f16b8a56959a17e160b6eae1
Stored in the directory: /home/kali/.cache/pip/wheels/97/4c/2e/68066cbf12b9b2e66403da8982aaf4f656d9f5cb5dc3179e82
Build wheel for bs4 (setup.py) ... done
Created wheel for bs4: Filename = bs4-0.0.1-py3-none-any.whl size = 1272 sha256 = 38acc084f674266787666f8155ea215bcb5b396e0c10abda215e7eb6c2606b01
Stored in the directory: /home/kali/.cache/pip/wheels/75/78/21/68b124549c9bdc94f822c02fb9aa3578a669843f9767776bca
Build a wheel for ipdb (setup.py) ... done
Created wheel for ipdb: filename = ipdb-0.13.2-py3-none-any.whl size = 10520 sha256 = 80973c70adb010a911087952c8eb2b65df2c2c39200d55bf5142fcc4bd5809c1
Stored in the directory: /home/kali/.cache/pip/wheels/31/f3/58/accdf45cba573136dff3bc0e8aad1848899255f5fc3266a9fc
Build wheel for pprint (setup.py) ... done
Created wheel for pprint: file name = pprint-0.1-py3-none-any.whl size = 1250 sha256 = d925426ad1cb6c7b20b03248fcacffb846477c9b4fa4939417a14b651a65cf2e
Stored in the directory: /home/kali/.cache/pip/wheels/db/43/1c/d58ea998a94cba18fba3d83fb3f574dcefe66b825f039cd932
Successfully created python-docx bs4 ipdb pprint
Install collected packages: python-docx, bs4, ipdb, pprint, cfscrape
Successfully installed bs4-0.0.1 cfscrape-2.1.1 ipdb-0.13.2 pprint-0.1 python-docx-0.8.10 

Then we run the current file skiptracer.py . When we run it, we should see a fantastic banner and a list of different things we can do.

  ~ / skiptracer $ python skiptracer.py

.▄▄ · • ▪ ▄▄▄ · ▄▄▄▄▄▄▄▄ ▄▄ · ▄▄ · ▄▄▄ .▄▄▄
▐█ ▀. █▌▄▌↔██ ██ ▄█ • ██ ▀▄ █ · ▐█ ▀█ ▐█ ▀▄↔▀▄.▀ · ▀▄ █ ·
▄▀▀▀█▄▐▀▀▄ · ▐█ · ██▀ · ▐█.uellen▐▀▀▄ ▄█▀▀█ ██ ▄▄▐▀▀↔▄▐▀▀▄
• ▐█▄ • █▌▐█▌▐█ • █▌▐█ • █▌▐█ • █▌
, .- ~ * ´¨¯¨` * · ~ -.¸- (from) -, .- ~ * ´¨¯¨` * · ~ -.¸

▀ █ █ █▀▄▀█ █▀▀█ █▀▀█
█ █ █ █ ▀ ▀ █ █ █
▀ ▀ ▀ ▀ ▀ ▀▀▀▀ ▀▀▀
https://illmob.org

.▄▄ · • ▪ ▄▄▄ · ▄▄▄▄▄▄▄▄ ▄▄ · ▄▄ · ▄▄▄ .▄▄▄
▐█ ▀. █▌▄▌↔██ ██ ▄█ • ██ ▀▄ █ · ▐█ ▀█ ▐█ ▀▄↔▀▄.▀ · ▀▄ █ ·
▄▀▀▀█▄▐▀▀▄ · ▐█ · ██▀ · ▐█.uellen▐▀▀▄ ▄█▀▀█ ██ ▄▄▐▀▀↔▄▐▀▀▄
• ▐█▄ • █▌▐█▌▐█ • █▌▐█ • █▌▐█ • █▌
, .- ~ * ´¨¯¨` * · ~ -.¸- (from) -, .- ~ * ´¨¯¨` * · ~ -.¸

▀ █ █ █▀▄▀█ █▀▀█ █▀▀█
█ █ █ █ ▀ ▀ █ █ █
▀ ▀ ▀ ▀ ▀ ▀▀▀▀ ▀▀▀
https://illmob.org

[!] Search menu:
[1] Email - Search destinations by email address
[2] Last name - search targets by first name combination
[3] Telephone - Search destinations by telephone number
[4] ScreenName - Search targets by known alias
[5] Platte - Search for targets by number plate
[6] Domain - Search targets by domain
[7] Help - Details the use cases
[88] Report - Generates a docx report from queries
[99] Exit - Exit the application
[!] Please select a number to continue: 

The most obvious choice here is "Platte". Many of the other options you see are in other tools such as Sherlock ("ScreenName"), but we only focus on plate search. To do this, select number 5.

[!]   Select a number to continue: 5

.▄▄ · • ▪ ▄▄▄ · ▄▄▄▄▄▄▄▄ ▄▄ · ▄▄ · ▄▄▄ .▄▄▄
▐█ ▀. █▌▄▌↔██ ██ ▄█ • ██ ▀▄ █ · ▐█ ▀█ ▐█ ▀▄↔▀▄.▀ · ▀▄ █ ·
▄▀▀▀█▄▐▀▀▄ · ▐█ · ██▀ · ▐█.uellen▐▀▀▄ ▄█▀▀█ ██ ▄▄▐▀▀↔▄▐▀▀▄
• ▐█▄ • █▌▐█▌▐█ • █▌▐█ • █▌▐█ • █▌
, .- ~ * ´¨¯¨` * · ~ -.¸- (from) -, .- ~ * ´¨¯¨` * · ~ -.¸

▀ █ █ █▀▄▀█ █▀▀█ █▀▀█
█ █ █ █ ▀ ▀ █ █ █
▀ ▀ ▀ ▀ ▀ ▀▀▀▀ ▀▀▀
https://illmob.org

[!] ScreenName search menu: Destination Info - None
[1] All - Run all modules that are assigned to the email module group
[2] Plate search - Execute known vehicle signs for a database
[3] Reset Destination - Reset the phone to the new destination address
[4] Back - Back to the main menu
[!] Please select a number to continue: 

Now we choose number 2 for "Disk Search". You will then be asked for the license plate. Enter this at this time.

  [!] Select a number to continue: 2
[?] What are the characteristics of the target? [ex: (XYZ123|0U812)]: 5FZXXXX 

After you have entered this, you will be asked for the state abbreviation of the license plate.

  [?] FaxVin
[!] Please enter an abbreviated 2-letter status - example: (AL = Alabama | CO = Colorado) CA.
[X] No results were found ... 

If everything went well, you should see results. If you get a "No results" warning like me, press . Enter to continue, then dial number 1 for "All". It is for all modules that are assigned to the email module group, which as far as I know makes no sense, but it works. Then re-enter the government ID.

  [!] ScreenName search menu: Destination Info - 5FZXXXX
[1] All - Run all modules that are assigned to the email module group
[2] Plate search - Execute known vehicle signs for a database
[3] Reset Destination - Reset the phone to the new destination address
[4] Back - Back to the main menu
[!] Select a number to continue: 1

[?] FaxVin
[!] Please enter an abbreviated 2-letter status - example: (AL = Alabama | CO = Colorado) CA.

[+] Plate: 5FZXXXX
[+] State: CA.
[+] Chassis number: WDBUF70JX4A4XXXXX
[+] Brand: Mercedes-Benz
[+] Model: E-Class
[+] Year: 2004
[+] Cut: E500
[+] Style: SEDAN 4-DR
[+] Engine: 5.0 l V8 SOHC 24 V.
[+] Plant: Sindelfingen, Germany
[+] Age: 16 year (s)

Now press ENTER to continue. 

From this we were able to extract some information about the vehicle. We just started with the number plate, but now we have the car's chassis number, which we can use to get all sorts of other information. This data could include when it was registered and with whom it was registered. If you are an OSINT investigator, you know that the more clues you get about a particular goal, the easier it will be to connect it to other sources and learn a little more bit by bit.

If yes If you are looking for other information, there are other useful modules in Skiptracer. For example, if you have a specific screen name that you are looking for, you can simply use the ScreenName module and run it for "All". It does the work for you and searches online for accounts that use this screen name. So if you need to create a quick profile for someone or have a license plate to scan, one of these modules works fine.

Skiptracer is not a complete solution to an OSINT exam, but it is a great way to find clues quickly, provided you have Python 2 installed on your system. If you need further help with Skiptracer, read the following comments or ask on Twitter @NullByte .

Don't miss: How To Find Social Media Accounts By Username Using Sherlock [19659027]]

Source link