Primary Use Case

Metabigor is designed for security researchers, penetration testers, and threat intelligence analysts to discover detailed information about IPs, ASNs, organizations, and related domains using various OSINT techniques. It also efficiently wraps network scanning tools like rustscan, masscan, and nmap to streamline vulnerability and network monitoring tasks without relying on third-party API keys.

Key Features

Search information about IP Address, ASN, and Organization

Find related domains using certificate, whois, Google Analytics, and other OSINT techniques

Wrapper for efficient execution of rustscan, masscan, and nmap on IP/CIDR ranges

Static and dynamic IP discovery modes

Summary reports about IP addresses

No API key required for intelligence gathering

Insights & Recommendations

Metabigor requires installation of external tools like rustscan, masscan, and nmap for full scanning capabilities. Some OSINT results, especially related domains, may not be 100% accurate and should be manually verified before use in further analysis or scanning. No API keys are needed, which simplifies setup and usage but may limit access to some data sources.

Usage

echo "company" | metabigor net --org -o /tmp/result.txt

Discover IP addresses associated with a company or organization (static database results).

echo "ASN1111" | metabigor net --asn -o /tmp/result.txt

Discover IP addresses associated with a specific ASN (static database results).

echo "ASN1111" | metabigor netd --asn -o /tmp/result.txt

Discover IP addresses associated with a specific ASN using dynamic third-party sources.

echo 'example Inc' | metabigor related -s 'cert'

Find related domains by searching certificate information on crt.sh.

echo 'example.com' | metabigor related -s 'whois'

Find related domains using Reverse Whois lookup.

echo '1.2.3.4/24' | metabigor scan -o result.txt

Run rustscan on the specified IP range with full ports.

echo '1.2.3.4:21' | metabigor scan -s

Run detailed nmap scan based on pre-scan data for specified IP and port.

cat list_of_ip_with_port.txt | metabigor scan -c 10 --8 -s -o result.txt

Run concurrent nmap scans with specified concurrency and options on a list of IPs with ports.

echo '1.2.3.4/24' | metabigor scan --pipe | metabigor scan -R

Run rustscan with full ports and then run nmap detailed scan based on rustscan pre-scan results.

Smart Usage Notes

Integrate Metabigor with automated penetration testing frameworks to streamline reconnaissance and scanning phases.Use Metabigor's no-API-key approach to perform stealthy OSINT and network scans in environments with restricted API access.Leverage the tool's ability to aggregate data from certificates, whois, and analytics for enriched threat intelligence reports.Incorporate Metabigor into purple team exercises to simulate attacker reconnaissance and improve defender detection capabilities.Automate periodic scans with Metabigor to maintain up-to-date asset and vulnerability inventories for continuous security monitoring.

OpenSec Atlas

metabigor

About This Tool

Primary Use Case

Key Features

Insights & Recommendations

Installation

Usage

Smart Usage Notes

Security Capability Profile

Tags

You Might Also Like