Pratique du Shadowing: How Hackers Find Anyone's Info From Just Their Instagram... - Apprendre l'anglais à l'oral avec YouTube

Watch this, I'm going to take this Instagram handle,

⏸ En pause

Vitesse :

241 phrases

Si les phrases sont trop courtes ou trop longues, cliquez sur Edit pour les ajuster.

Watch this, I'm going to take this Instagram handle,

just one username, and I'll get her real name,

the city she lives in,

her phone number, and every other account she's ever made online.

I got all of this through OSINT, Open Source Intelligence.

Basically all the public information that's out there about you online,

scattered across the internet.

And I'm going to be showing you exactly how it's done.

But before we go any further,

everything I'm about to show you on this video is done on my own accounts.

Don't do this with malicious intent.

OSINT by itself is legal but the second you start using it to stalk,

harass or even scam someone that's where you cross a line and it becomes illegal.

Let's begin.

The first one I want to show you guys here is called OSINT-Gram

and it's pretty popular it has 12,000 stars on GitHub and it does one thing very well.

You give it one single Instagram username and it pulls back everything Instagram is publicly leaking on that account.

Without wasting much time let's just scroll down and begin with the installation

and we We can either just clone the scribe

and paste in our terminal or we can go up here and click the big green button and copy the web url,

then go to our terminal and just type git clone and then paste in the web url we just copied.

And while this is cloning,

scroll down and hit the subscribe button,

I would really appreciate it.

Once done, we cd into the tool,

cd o and then tab to fill it up by itself,

press enter, let's clear this up first and then list the files.

And here inside the tool we can see a bunch of files and folders and one of them is requirements.txt.

This means we have a bunch of dependencies to install so the tool can run smoothly without any errors.

And also in the installation guide, we have a receipt.

We first need to make a virtual environment to install the dependencies,

so we copy this and we just paste it into our terminal, hit enter.

Now we load the virtual environment that we just created,

and to do that we go to the installation page again,

and in the fourth section, load the virtual environment.

If you're on Windows, you use this command right here,

this is how I'm on Kali Linux,

I use source to activate it.

I copy this section, then paste it into my terminal,

right click, paste to the clipboard,

this part right here you know it loaded successfully now all it's got to do is install the dependencies

install the requirements.txt to do

that we just copy right here pip install dash r requirements.txt we copy it paste on terminal send it

and it takes a bit to install after it's done we clean up the terminal

so it's nice and clean and now we're almost done

but there's one more thing we need to pull the data somehow from instagram

and then the sixth step right here we see it open

the credentials at ini file in the config folder let's go ahead and do that real quick there's the files

going inside config this files again now here we see credentials.ini nano credentials

and tab inside we have three fields username password

and hikerapi underscore token there's two ways we can pull the

data either we log in into our normal instagram account using our username and password

or use a hikerapi token in my opinion using your own instagram account is a very bad idea

because instagram is very aggressive and cracks down on bots and as soon as the tool starts pulling data,

the Instagram is going to think this account is a bot,

either going to lock it or ban it completely.

So we should go with the Hiker API token.

We get the token or the access key that we need directly from the website and it says in the paragraph here,

use Hiker API token from the website.

Right click open new tab.

First hundred requests are free after registration

and confirmation with your telegram let me show you

when you go to the site you get redirected to the tokens page

and I already did it and I'm not logged in

and here's my access key my token

that I need don't try to use it it's gonna be deleted after this video

but once you're here scroll down go to the telegram page

and just verify with the bot do start once you're verified come here

and you're gonna have your access key here

and in your terminal just go ahead

and paste in your token you just got and then save it

and exit let's just clear the whole thing up

and now we're set up and ready to go

and for the last step all we have to do is just run the main file main.py

so python3 main.py and target username the instagram username the target to spawn interactive prompt let's go ahead

and do that so python3 main.py and the target username the instagram account

that i definitely made up it's not one of my alternate account named miss.firewall

yeah

when i made this account i thought the news name would

be pretty funny now it's just kind of cringe i can't lie

but let's just end it uh it's in config folder let's just exit it

and then clear it again

and let's run it again python3 main.py miss firewall after it

ran we can see right here it connected to the hiker api first

and then it found the target miss firewall and then her instagram ID.

Scroll down, we first type list to show all the commands we can run,

so let's just do that,

list, and here we can see a bunch of commands,

starting from address, get all registered address by the target photos,

clear cache of the tool,

a bunch of stuff, but first let's just run info,

to get basic information on the target, info.

And here we have some information again,

basic ones like the ID of the Instagram,

full name, Ms. Firewall, her bio,

hello my name is Ms. Firewall,

miss I must have misspelled it

and this is my personal blog follow the zero it has

four followers two photos two photos posted business account it is

100

a business account since it's a personal blog verified account false

101

and here we have her HD profile picture a full HD profile picture of her profile

102

and we have it her profile picture it's a girl with

103

a firewall face anyways let's just move on the next one

104

let's do something like address get all registered addresses by a target photos addrs

105

and here woohoo we found one addresses one post with an address

106

and the address right here but she probably didn't give her full address on the post

107

and we can see right here let me go out to

108

the profile instagram missed our firewall i'm already logged in

109

so i can show you guys and here we have the post

110

and in the location it says anthony texas but why does it say a full address in our terminal.

111

What most people don't know is that these locations right here,

112

users create them, normal users like you and me.

113

And then when they create them,

114

they first have to drop a pin on an exact location.

115

Then they can name that location whatever, like Anthony Texas.

116

When a user goes to create a post,

117

Instagram suggests the closest pin near that person.

118

It might say Anthony Texas,

119

but behind that is an exact location,

120

an exact address, a pin.

121

So when the user was choosing a location

122

and saw anthony texas she was like yeah that's where i'm at right now i'm gonna choose

123

that without knowing that in the background she actually doxxed herself

124

and gave out her full location and then we can go ahead

125

and actually copy this location and then go to our google maps

126

so i can show you google.com slash maps and then we go ahead

127

and paste in our location we just copied

128

and then we see the pin right here this address is showing to this location right here rv jones colina and

129

when we go back to the instagram page here we see a sign welcome to texas let's just search for

130

that sign to see exactly where it is our address

131

that we extracted is right here let's go look up for

132

the sign welcome to texas sign our pin is right here

133

and the welcome texas sign is right here

134

so she took her picture here then went on instagram to

135

post it search for location instagram saw the nearest pin to

136

her was named anthony texas suggested it to her she thought

137

yeah that's where i'm at anthony texas i'm gonna choose it without thinking much

138

but in the background she actually talks herself now let's try

139

something else let's try something like following email she doesn't have

140

followers let's try following email this gets all the emails of users followed by the target let's copy

141

that and then paste it right in

142

and here we got three out of four emails from our following list from hack the box network chuck

143

and david bumble these were the first people that came to mind

144

when i first made the account

145

but that's beside the point what we got here is super importing during an information gathering

146

because now we have leverage we have something we can pivot to

147

when we hit a roadblock or a wall now we can always send nice personalized emails

148

or dms pretending to be miss firewall to our friends let's imagine these are our friends

149

and now we can do for example hash tags

150

and get some hashtags on her posts for example farm girl family texas road trips

151

so now we know she likes road trips she's a farm girl she lives in anthony texas

152

and we can make nice personalized dms

153

or emails to her friends pretending to be her

154

so we can gather even more information on her now since

155

we mapped out where she's been her friends her hobbies the

156

most obvious thing would be to look for different accounts

157

so we can extract more information and the tool for

158

that is sharelock i've already covered it in one of my other oc videos

159

but i'm going to cover it again and what it does is

160

that simple you give it a single username

161

and it looks through over 400 websites to check if

162

that username exists you can also give it multiple usernames you can specify

163

which sites you wanted to go through you can even give it a txc file full of usernames

164

that you wanted to search

165

and to top it all off you can even search through nsfw websites

166

and to install it we can either just copy this pip x install sharelock project

167

or we can just go to our calendar terminal

168

and type pip install sharelock for me it says the requirements already satisfied

169

because i already installed it

170

but first let's just see the usage let's see what we

171

can do with sharelock just type sharelock dash dash help

172

and let's just scroll up to see what we can do usage sharelock we have to type sharelock

173

and everything here in square brackets is optional it's optional parameters

174

we don't have to give them except one the username we have always had I forget the username

175

so you can search for something.

176

So let's just try the most simplest option share lock

177

and the username share lock

178

and then for us miss firewall share lock slowly goes through multiple websites and check if it's available

179

after it's finished here we can see it gave us 46 results back it searched through hundreds of sites

180

and it found 46 results 46 social media platforms or platform platforms in general

181

that have miss.firewall in here we can see sites like seven cops airliners discord reddit youtube try

182

and hack me which is kind of cool

183

and then we can also do a full file of usernames

184

because maybe they have we want to search their friends

185

or their family and i already made a file

186

so i can show you guys firewall fam.txt

187

and i hear i have a bunch of usernames miss firewall

188

mr firewall firewall.fam firewall father firewall kid you get the point

189

to search up multiple usernames in a file we type share lock followed by dollar sign

190

and then in brackets we type cat firewall fam.txt

191

and we type dash dash site i'm not going to go through all the websites all the usernames

192

because it's going to be a lot a lot of works less it's going to take a long time

193

so i'm going to do that site i'm going to specify youtube

194

because if i go through all it's going to take a a long time it's gonna be too much

195

and once it's done we got 16 results back

196

and we got all the links of their accounts

197

but obviously share log just looks up their usernames on different sites

198

and doesn't really give us any information on those sites

199

but the good news we have a tool just for

200

that called a migrate let me show you guys

201

and here it is migrate and here it is

202

and here it is migrate

203

when you scroll down we see how it is first it starts up the username on the site

204

and then gathers information on those sites to install it is super easy we just do pip install

205

and migrate So let's go ahead and copy that,

206

go to our terminal, open a new one,

207

clear this up, make it bigger,

208

and then just run that,

209

pin install migrate, then clear it up once again once it's installed,

210

go back to the side,

211

and the usage is super simple,

212

we just type migrate and the username,

213

so migrate, and I'm going to use whoamitang,

214

not miss firewall, because someone else might have miss firewall,

215

and I don't want to show their information here on the video,

216

so I'm going to use my username,

217

but you don't get the idea,

218

whoamitang, after it's done, here we can see it went through.

219

500 sites and it looks pretty similar to a share log

220

but the difference is

221

that this is way more information rich for example here in

222

the github based on my github not only did it find

223

my follower count 67 my following count full name it also found my location my Germany I live in Germany

224

and this is super important for your investigations

225

because you don't have to go through each website

226

and look at the information yourself you can just use minecraft

227

and it distracts all the information itself okay so now you've seen exactly how easy this is to do,

228

how can you make sure it doesn't happen to you?

229

My number one tip is that you just go on Google,

230

type in your name, see what results come up,

231

look at the ones you don't like,

232

if it's one of your social media accounts or your website,

233

just change it or private your social media account.

234

If it's something you don't own,

235

like you won a tournament on a school three years ago,

236

you don't want your name being there,

237

just email them or DM them,

238

I'm sure they'll gladly remove it.

239

With that being said, I hope you enjoyed the video,

240

don't forget to subscribe, enjoy the discord,

241

we'll link in the description.

TRENDING

Populaires

Qu'est-ce que la technique du Shadowing ?

Le Shadowing est une technique d'apprentissage des langues fondée sur la science, développée à l'origine pour la formation des interprètes professionnels. Le principe est simple mais puissant : vous écoutez de l'anglais natif et le répétez immédiatement à voix haute — comme une ombre suivant le locuteur avec un décalage de 1 à 2 secondes. Les recherches montrent une amélioration significative de la précision de la prononciation, de l'intonation, du rythme, des liaisons, de la compréhension orale et de la fluidité.

☕ Offrez-nous un café

ShadowingEnglish reste 100% gratuit grâce à votre soutien. Les coûts des serveurs et de l'IA sont élevés — votre café nous aide à continuer ! 🙏

Faire un don via PayPal

ShadowingEnglish.com – Pratique du Shadowing en Anglais

Parlez anglais couramment grâce au Shadowing. Écoutez des vidéos YouTube de locuteurs natifs, répétez phrase par phrase et développez une vraie prononciation et fluidité — utilisé par les candidats IELTS du monde entier.

Pratique du Shadowing: How Hackers Find Anyone's Info From Just Their Instagram... - Apprendre l'anglais à l'oral avec YouTube

Populaires

About This Lesson

Key Vocabulary & Phrases

Practice Tips

Qu'est-ce que la technique du Shadowing ?

Pratique du Shadowing: How Hackers Find Anyone's Info From Just Their Instagram... - Apprendre l'anglais à l'oral avec YouTube

Télécharger l'application

About This Lesson

Key Vocabulary & Phrases

Practice Tips

Qu'est-ce que la technique du Shadowing ?