netWhisper is a passive reconnaissance framework that aggregates open-source intelligence from multiple public APIs and databases without sending a single packet to the target. It enumerates subdomains, exposed services, certificate transparency logs, DNS records, and historical WHOIS data.
The tool is designed for the initial reconnaissance phase of a penetration test, providing a comprehensive attack surface map before any active scanning begins.
- [+] Subdomain enumeration via certificate transparency logs
- [+] Service fingerprinting from Shodan/Censys datasets
- [+] Historical DNS resolution tracking
- [+] GitHub/GitLab repository reconnaissance
- [+] Employee OSINT via social media aggregation
- [+] JSON and Markdown report generation
[*] Querying certificate transparency logs...
[+] Found 47 subdomains
[*] Querying Shodan API...
[+] Found 12 exposed services
[*] Querying Censys...
[+] Found 8 additional hosts
[+] Report saved to: report.json