Digging Up Email Addresses With TheHarvester

by | Dec 8, 2014 | Infosec, Kali Linux | 0 comments

If your looking to locate contact information for someone within a company or attempting to gather information for a targeted attack (legally and with permission) then TheHarvester may be a useful tool for you to look into. TheHarvester is a tool included with Kali linux that searches through various public resources and pulls out email addresses. A great way to guesstimate usernames is by looking at email addresses. Usually corporate email addresses consist of the users first, last, and middle name. There is a lot of information to gain by just looking at an email address.

The objective of this program is to gather emails, subdomains, hosts, employee names, open ports and banners from different public sources like search engines, PGP key servers and SHODAN computer database.


As you can see, to set the domain you use option -d, the data source with -b, and you can limit your results to search through with -l. There are other options but these will get you started. So an example may look like:

Notice how running this tool against my own domain returns no results. Not that this was intentional, just a coincidence. Now notice on the image below how I searched for email addresses associated with cvcc.edu – Catawba Valley Community College.

If you were looking for an email address to contact Georgia Weidman …

Or Kevin Mitnick