TwoFi

Welcome to another tutorial! This time we’re taking a look at another OSINT tool called TwoFi, or Twitter Words of Interest.

TwoFi was written by Robin Wood at DigiNinja, and is a tool you can use to scrape the contents of a user’s, or company’s Twitter feed. Using these results, you can create custom wordlists for cracking passwords.

Before you can use TwoFi, there are a couple of requirements. The first is, you need a Twitter account, and the Twitter API keys. Secondly, once you get these API keys, you have to input them into a config file for TwoFi.

Get Twitter API Keys
http://apps.twitter.com/

Config File for TwoFi
/etc/twofi/twofi.yml

twofi-config

Let’s take a quick look at the available options for using TwoFi:

twofi-help

Not many options to go through here, and they’re all pretty self-explanatory. I won’t cover each one in this tutorial, but you can play around with them, and see the different result sets you can get back.

We’ll look at a scan here using the “-c” option, and the “-u” option. We’re also going to create a file to save our results by redirecting them to a text file, and storing it in a folder I created on the desktop.

twofi-userscan

The scan finished quickly, and if you take a look at the text file it generated, you can see the type of results you’ll get back.

twofi-savefile

You’ll see each word with a number out from it. That shows the number of times that particular word was found in that person’s Twitter feed. You may want to use that as a guide in narrowing down your wordlist.

You may want to run this scan without the “-c” option, thus giving you just a list containing only the words. You can then use that file with a password cracking program like John.

There is one caveat with using this tool. There is a limit set on the usage of the API keys, which limits the number of queries you can perform in a certain amount of time. Twitter has this set to 15 minute blocks, so if you exceed that query count, you’ll have to wait on that window to expire, and the new window to start before you run the tool again. Kind of a pain, but nothing you can really do about it with TwoFi.

I hope this was informative for you! Check out some of the other tutorials!

Be awesome!

Jason