IP Address Investigation and WHOIS Intelligence
• Multi Source Intelligence
• Multi Platform
• Forensic Analysis
• Privacy Protection
• Multiple Output Formats
• Enterprise Ready
IPSherlock
├── assets/
│ └── ipsherlocklogo.png
├── docs/
│ ├── CHANGELOG.md
│ ├── COMMANDS.md
│ ├── CONTRIBUTING.md
│ ├── DISCLAIMER.md
│ └── PREREQUISITES.md
├── sherlock/
│ ├── ipsherlock.py
│ ├── ipsherlockfunc.py
│ ├── ipsherlockgraphic.py
│ ├── requirements.txt
│ └── sherlockey.env
├── .gitignore
├── LICENSE
├── README.md
└── 1.5
Windows
python3 -m venv sherlockwindows
sherlockwindows\Scripts\activate.batLinux
python3 -m venv sherlocklinux
source sherlocklinux/bin/activateMacOS
python3 -m venv sherlockmacos
source sherlockmacos/bin/activategit clone https://github.com/5a1r0x/IPSherlock.git
cd IPSherlock
cd sherlock
pip install -r requirements.txt
python3 ipsherlock.py -husage: ipsherlock [-h] [-ip IPADDRESS] [-d DELAY] [-c] [-m] [-n] [-g] [-s] [-w] [-wd] [-ab] [-cp] [-vt] [-gn] [-ir]
[-gd] [-fk] [-j] [-f]
ip address investigation and whois intelligence
options:
-h, --help show this help message and exit
-ip, --ipaddress IPADDRESS
get information from an ip address
-d, --delay DELAY delay before sending requests to apis
-c, --category divide the information by category
-m, --myip get personal ip addresses
-n, --network get network information
-g, --geolocation get geolocation information
-s, --security get security information
-w, --whois get whois information
-wd, --whoisdb get information from whois database
-ab, --abuseipdb get information from abuseipdb api
-cp, --criminalip get information from criminalip api
-vt, --virustotal get information from virustotal api
-gn, --greynoise get information from greynoise api
-ir, --ipregistry get information from ipregistry api
-gd, --googledorks get information from googledorks
-fk, --fakeip get fake and random ip addresses
-j, --json save the output in json format
-f, --file save the output in a file
use ethically and responsibly