CyberGuerrilla 2014
 Vol.4--No.2014 | 2 Users Online
Monday,Aug 26,2019 
By ro0ted avatar | May 12, 2014 - 23:50 | Posted in /b/ | Comments Off on #ro0ted #OpNewblood Pulling peoples data: The Scythe Framework

#ro0ted #OpNewblood Pulling peoples data: The Scythe Framework

Scythe was designed with a couple of purposes in mind:

  • The ability to test a range of email addresses (or account names) across a range of websites (e.g. social media, blogging platforms, etc…) to find where those “targets” have active accounts. This can be useful in social engineering tests where you have email or account names for a company and want to convert that into a list of external services where these users have used their work email for 3rd party web-based services.

  • The ability to quickly create custom test-case modules and use it to enumerate for a list of active accounts. Using either a list of known usernames, email addresses, or a dictionary of common account names. The framework can handle cookie collection and CSRF token work that would otherwise make a POC enumeration a pain in the ***.

The modules are XML-Based and allow for both simple and more complex functionality (depending on what the user needs). Currently modules for the following websites are included as a starting point:

  • Facebook

  • Twitter (Username and Email/Phone number)

  • GitHub (Email and Username)

  • BackTrack Forum (care of @digininja)

  • Tumblr (Email and Username)

  • WordPress

  • Xing


git clone

cd Scythe

type: python

Screenshot from 2014-05-12 12:19:30Screenshot from 2014-05-12 12:19:57

Edit targets

type: sudo nano /home/unkn0wn/Desktop/Scythe/accountfile.txt (<————- Note put wherever you installed it at)

Screenshot from 2014-05-12 12:25:54

Let’s see what comes up

type: python

Screenshot from 2014-05-12 12:28:56

Select Y & enter

Screenshot from 2014-05-12 12:31:37Screenshot from 2014-05-12 12:33:29Screenshot from 2014-05-12 12:41:08Screenshot from 2014-05-12 12:43:10

Scythe doesn’t post any harmful information on the target but it does tell you which website the victim has a profile, email, or phone at. It gives you phone numbers and email address that person used to save register/protect their account. Phone number isn’t always. #ro0ted




  • You can follow any responses to this entry through the RSS 2.0 feed.
  • Both comments and pings are currently closed.

nonymous. Whoever you are, we are ungovernable!
> =[]= This site is run by cyberguerrilla, your friendly anonymous autonomous tech collective since 2010 =[]= This the past that can NOT be changed! <