Twitter OSiNT (Ethical Hacking)

00:00

twitter hacking

00:02

kind of because if you think we're going

00:03

to be hacking into twitter or hacking

00:05

into someone's account we're not doing

00:07

that so if you're here for that get out

00:09

of here not the video for you but we

00:11

will be using this amazing python

00:13

hacking tool to gather information from

00:15

twitter this tool is crazy powerful no

00:17

rate limit no login no api the setup is

00:19

super fast it seriously takes seconds

00:21

and i'll show you how to use this tool

00:22

via cli and even how to import this into

00:24

your python code now real quick

00:26

disclaimer while the tool we're using is

00:29

not illegal and the way it searches

00:30

twitter is not illegal your intent does

00:32

matter please do not hack anyone without

00:35

their permission or use this tool with

00:37

any kind of ill intent so be careful use

00:39

it for educational purposes only the

00:41

hacking tool we're using is called twint

00:43

which stands for twitter intelligence

00:45

and seriously no joke i've never had

00:47

more fun playing with a hacking tool

00:49

like i spent way too much time playing

00:51

with this so i'm crazy excited to show

00:53

you this for real and it's super crazy

00:55

easy to set up all you'll need is about

00:57

five minutes you can use any linux

00:59

computer and of course i'll show you how

01:00

to get free access to google cloud

01:02

console which is my preferred way to do

01:03

all this completely free like you can

01:05

start using this tool right now in five

01:07

minutes

01:07

all you need is your web browser i love

01:09

that so much anyways and then last but

01:11

certainly not least i need some coffee

01:14

man you need some hacking fuel two cups

01:16

minimum networkchuck.coffee if you don't

01:18

already have some

01:19

let's get started oh wait hold on real

01:21

quick have you hacked the youtube

01:22

algorithm today make sure you do hit

01:24

that like button subscribe notification

01:26

bell comment let's hack youtube today

01:28

ethically of course now again i'll be

01:30

demoing this on the google cloud console

01:32

which is completely free and amazing you

01:34

can do it right now i've got a link

01:35

below in the description just click that

01:36

sucker and go now of course you can use

01:38

your own environment that's fine too the

01:39

steps will be the same so i'm gonna get

01:40

signed into my google cloud console and

01:43

get this party started i'm so excited

01:45

once you're logged in click on the cloud

01:46

console icon at the very top right here

01:48

and that'll launch your cloud shell and

01:50

it's so cool again i can't say it enough

01:52

thank you google for doing something

01:54

like this now real quick if you're not

01:55

using google cloud console like me you

01:57

will need a few things installed like

01:59

apt install git

02:01

do that apt install

02:03

python 3 do that and apt install python3

02:09

dash pip and that should be enough let's

02:12

keep going first command we're going to

02:13

use git to clone our tool now i will

02:16

have all these commands below in the

02:17

description feel free to copy and paste

02:18

but typing it in feels so much better

02:20

just do that anyways git clone

02:22

we'll do a dash dash depth equals one

02:25

and then the url to the project it'll be

02:27

https colon whack whack and the url and

02:30

hit enter

02:31

it's gonna clone that sucker done so

02:33

fast then we're gonna change directories

02:35

into the twent directory that we just

02:37

downloaded cd twin

02:39

there and then last command to get this

02:40

going we're gonna install our

02:41

requirements so pip three

02:44

install we'll do a space then a dot and

02:47

then a space dash r

02:49

requirements

02:50

dot txt and hit enter

02:53

coffee break

02:56

and while we're all sipping our coffee

02:58

i'd like to thank the sponsor of this

02:59

video skillshare skillshare is an online

03:01

learning community with a ton of classes

03:03

like over a thousand thousands now what

03:05

i love about skillshare is that it's not

03:06

necessarily about i.t it's more about

03:08

creative stuff like how to make coffee

03:11

yeah there's a course on that or how to

03:12

develop my already excellent drawing

03:14

skills i mean i think it's pretty

03:16

obvious that i don't need any more help

03:17

i'm already pretty dang good so i'll

03:18

check out that course and see if they

03:20

can teach me anything i doubt it so be

03:22

watching the channel see if i improve my

03:23

drawing skills but seriously i do think

03:25

it's important that i.t people like us

03:27

explore the soft skills side of our

03:29

skill sets learning things like hey how

03:31

do i talk in front of people public

03:33

speaking how do i teach and get an idea

03:35

across how do i stay productive like for

03:37

example i'm going through thomas frank's

03:39

productivity class for creatives it's

03:40

these x factor skills that make you

03:42

great in i.t and also i do think it's

03:44

important that you have hobbies and

03:45

interests outside of technology i know

03:47

it's kind of hard to because it's

03:48

awesome so explore your creative side a

03:50

bit learn how to make a cup of coffee

03:52

learn how to draw maybe learn how to

03:53

make a ui a user interface the pretty

03:55

part of it instead of just the back end

03:56

so check it out link below in the

03:58

description the first 1 000 people to

04:00

click that link will get a free trial of

04:01

the skillshare premium membership after

04:03

that it's only 10 bucks a month anyways

04:05

coffee break over let's keep going and

04:07

that's it it's installed ready to go

04:10

just like that and honestly it's so

04:11

simple and cool to use watch this i'm

04:13

gonna clear my screen so let's try this

04:15

first type in twent

04:17

then we'll do a dash u for a username

04:19

and we'll specify a user let's say just

04:21

myself network chuck

04:24

what this tool is doing is so cool no

04:26

api required it's not using the twitter

04:27

apis

04:29

no twitter login required it's simply

04:30

scraping twitter and it's crazy powerful

04:32

let's try it out right now ready set go

04:37

ah

04:38

i'm going to hit ctrl c to stop but look

04:40

at all that look at all my tweets that

04:42

is so stinking cool but this is just the

04:44

beginning here we go

04:46

let me clear my screen once more now

04:47

first real quick how do you get help if

04:49

you don't know what you're doing simply

04:50

type in twent and then dash h it'll tell

04:53

you all the switches you can use now

04:55

this way is cool using the cli we'll go

04:57

through a few more examples here in a

04:58

moment but the more powerful amazing way

05:00

to do this the more fun way

05:02

is through python modules

05:04

or the python module we can import twins

05:06

into our code and use it for some cool

05:08

stuff i'll show you here in a moment but

05:09

anyways the cli is powerful by itself

05:11

let's try a few things so let's do that

05:12

same search we just did twins

05:14

dash u for user name network chuck now

05:17

what if you don't want a million tweets

05:19

what if you only want my last 20 tweets

05:21

we can do that dash dash limit

05:23

to the last 20 tweets that's more

05:25

digestible let's try that out real quick

05:27

okay there we go not too bad you can

05:29

also search through tweets so i can do

05:31

twin

05:32

u for my username network chuck once

05:34

more and then we can do a dash s to

05:36

search and this can be any keyword for

05:38

example we may want to see all the

05:40

raspberry pi tweets i put out

05:42

so put raspberry pi between quotes and

05:44

let's take a look

05:46

it even has my first tweet about

05:48

raspberry pi's which was back in 2016.

05:51

oh my gosh oh my gosh this is when i put

05:54

a unified controller openvpn dynamic dns

05:57

all running on my pi 3. that was fun all

05:59

right let's keep going let's go deeper

06:01

let's get crazier we can also output

06:03

these results to a file so we can you

06:04

know store them and look at them later

06:06

twint will do the same thing network

06:07

chuck for my username

06:09

i'll search for it every time i've said

06:12

right now and then i'll do a dash o

06:15

to output it to a file

06:17

see right now

06:19

dot json and then i'll do a dash dash

06:22

json to make sure the data is formatted

06:23

to be json now let's check it out

06:26

now it'll still output to the terminal

06:27

but let's do an ls to see what's inside

06:29

my folder here there it is right

06:30

now.json let's look inside i'll do a

06:32

nano right now.json

06:35

and there they all are that is so cool

06:38

okay here we go even deeper more cool

06:40

things let's pick on david bomble so

06:42

twint dash u david bomble

06:45

if you don't know who david bomble is go

06:46

follow that guy he's amazing we've been

06:48

friends for years now i want to see all

06:49

david bomble's popular post i'll do dash

06:51

dash men dash likes

06:54

and i'll do 100 this will return all

06:57

tweets that have at least 100 likes if

06:59

it doesn't have 100 likes ain't gonna be

07:00

there let's try it out

07:02

yeah look at david so popular look at

07:04

all those

07:06

popular tweets let's see all the times

07:07

he's talked about me i'll search for

07:09

myself

07:12

yeah oh it's still going yeah we hang

07:14

out a lot we talk a lot

07:17

maybe i only want to see his tweets from

07:18

today let's try that i'll do dash dash

07:21

sense and i'll specify the date 2021

07:24

today's april 28th

07:27

let's see lil congrats to all these

07:29

winners of the contest so just one tweet

07:31

today we can also go back and look at

07:33

previous stuff like let's specify a year

07:35

2016 was david even on twitter yeah he

07:38

was wow

07:38

[Laughter]

07:41

he's talking about sdn and open flow

07:42

like crazy now i want to see his

07:44

pictures from 2016 so i can actually

07:46

specify tweets only with images i'll do

07:48

dash dash images here we go oh he's got

07:50

one talking about raspberry pi's let's

07:52

go take a look at that

07:54

oh someone retweeted david and how he's

07:56

messing with

07:57

a raspberry pi zero that's fun now what

08:00

we're doing here might seem silly i'm

08:01

just looking at pictures and old tweets

08:03

but that's that's hacking gathering

08:05

information is a vital part of hacking

08:07

now just a few more cli commands before

08:09

we go crazy in python so here we go you

08:11

don't have to just search by username or

08:13

by one account

08:15

i can search simply by a search term so

08:17

maybe i want to find out all the people

08:18

talking about coffee

08:21

near where i live here in dallas i can

08:23

do that so i'll do dash dash near dallas

08:27

and i want to see it for today so i'll

08:28

do

08:29

sense 2021 blah blah today and these

08:32

things have to be popular so i want a

08:33

minimum likes

08:35

of at least 15 likes let's try it out

08:39

that is too cool

08:41

six hours straight of drinking coffee

08:42

while listening to edm probably not

08:44

healthy choice i don't know sounds great

08:46

to me maybe i'm in paris and i want to

08:47

hang out with people talking about

08:48

raspberry pies so let's see if anyone's

08:50

talking about raspberry pies today in

08:51

paris

08:53

and there certainly are let's go check

08:54

this guy out real quick raspberry pi

08:56

news looks pretty cool and you can also

08:57

be more precise so you don't have to do

08:59

near

09:00

you can actually search by coordinates

09:02

by geo coordinates so let's uh specify

09:04

some geo coordinates dash g

09:07

equals latitude and longitude

09:09

i'll do a comma after that and specify

09:11

the radius we'll say within like

09:14

20 kilometers no one this is austin

09:17

texas no one's talking about raspberry

09:18

pi's

09:20

i bet they're talking about coffee let's

09:21

test that out yeah look at all those

09:23

coffee people in austin texas

09:26

now the cli it's fun but the real power

09:29

comes in with python you ready let's do

09:32

this this is so cool seriously anyways

09:34

here we go i'm going to create a new

09:36

python file using nano leave me alone

09:38

nano and i'll name this hot topic

09:42

nothing to do with the store not

09:44

sponsored relax

09:45

dot pi

09:46

first thing we'll do here is make sure

09:48

we got

09:50

twint

09:51

involved we'll import twint

09:53

that's importing that python module so

09:55

we can use it in our script so for this

09:57

script i want it to be interactive so

09:58

here we go i want to be able to launch

10:00

this and say hey

10:01

this is what i'm searching for and what

10:03

city

10:04

i'm searching for it in to kind of get

10:06

hot topics like maybe raspberry pi's in

10:08

dallas coffee in berlin t in england

10:11

there you go david let's try it out i'll

10:13

name my first variable search

10:16

and i'll have that equal

10:18

an input it'll ask me for input it'll

10:21

ask me what are you searching for

10:23

another one i'll name city and equal

10:25

that

10:26

also an input i'll say where and then

10:28

let's get twent set up now this is all

10:30

foreign to you that's fine this is a

10:32

great opportunity for you to learn a

10:34

little bit of python and if you already

10:35

know python do you go crazy with this

10:37

and have a ton of fun seriously this is

10:39

so cool anyways

10:40

okay have i said that enough yet so i'll

10:42

say c another variable i'll have that

10:44

equal

10:46

twint.config case being very important

10:48

here i'll say c dot search

10:52

equals my variable search c dot

10:56

near

10:57

equals

10:58

my variable city i do want to limit my

11:00

search so i'll say limit it to 20 tweets

11:03

and i only want to see popular tweets

11:05

now i can say number of likes like it

11:07

has to have 100 likes or i can do

11:09

popular

11:11

tweets

11:13

this is boolean so how they equal

11:15

true i believe that is yeah oh wait the

11:18

t needs to be lower case

11:20

case is important

11:21

and yeah you know i think that's good so

11:23

now we're going to launch the command

11:24

it'll be twint.run.search

11:28

and then my variable c which

11:30

encapsulates all that business right

11:31

here that should be good i'm going to

11:33

control x

11:35

to get out of there why do you see it

11:37

want to save it

11:38

easy for me to say and hit enter

11:40

cool time to run my script by doing

11:43

python3 and then what i name it oh hot

11:46

topic hot topic dot pi let's see what

11:48

happens

11:50

what am i searching for hmm

11:53

let's see let's do coffee in berlin

11:55

coffee

11:56

berlin

11:59

how cool is that that's so cool

12:02

something about coffee and space i want

12:04

to see that tweet let's check it out ooh

12:06

a new coffee machine love it okay one

12:08

more python thing i want to show you

12:09

just to kind of show you the power of

12:11

what you can actually do yourself

12:13

so on twitter i tweeted two things i

12:15

said retweet this and then uh reply to

12:18

this that was for right now so i've got

12:20

a script let me show you what i'm doing

12:22

so here it is let's jump in there real

12:23

quick

12:24

i called it my people

12:28

dot pi and here's the script i'm pulling

12:30

in date time to get today's date

12:33

now now i'm saying whoever tweets at me

12:36

today i want to pull all those tweets

12:38

it's going to run that search and then

12:39

throw that into a a list a python list

12:42

if you don't know what that is we'll

12:43

cover some of that stuff later in a new

12:44

series i then create a new list just

12:47

called my people and that new list with

12:49

this command will only have all of your

12:50

usernames everyone who replied to me or

12:53

or sent me stuff i've got all your

12:55

usernames in a nice little list it's

12:56

going to print that list

12:58

and then it's going to go through all of

13:00

your accounts

13:01

and pull your last 20 tweets and 20

13:04

tweets 10 times fast and then print that

13:06

on the terminal

13:08

pretty cool right i mean it's kind of

13:09

pointless

13:10

but if you think about what you can do

13:12

for an actual ocean investigation when

13:14

you're hacking whatever

13:16

so check it out let's try it python3

13:21

my people

13:26

dot pi here we go ready for this here we

13:28

go

13:29

there you all are thank you

13:31

and then here comes all your tweets

13:34

how cool is that

13:36

twit a python hacking tool for twitter

13:39

it's awesome i can seriously spend hours

13:41

just playing with this and creating

13:42

scripts in fact i would love to see what

13:44

you guys create so let me know below

13:46

comment below with what you have that's

13:48

awesome anyways let me know you think of

13:49

the video in the comments below make

13:51

sure you hack youtube today ethically of

13:53

course the algorithm so like the video

13:55

comment notification bell all that

13:57

youtubey stuff and yeah that's all i

13:59

have today

14:00

i'll catch you next time

14:03

[Music]

14:16

[Music]