Merge pull request #225 from kaifcodec/add/email-osint-modules

add: 5 new email_scan modules and new category travel

Author: json-hunter07

user_scanner/email_scan/other/deviantart.py

@@ -0,0 +1,78 @@
+import httpx
+import re
+from user_scanner.core.result import Result
+
+async def _check(email: str) -> Result:
+    show_url = "https://www.deviantart.com"
+    join_page = "https://www.deviantart.com/join/"
+    verify_url = "https://www.deviantart.com/_sisu/do/signup2"
+
+    headers = {
+        'User-Agent': "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Mobile Safari/537.36",
+        'Accept': "text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8",
+        'Accept-Encoding': "identity",
+        'sec-ch-ua-platform': '"Android"',
+        'upgrade-insecure-requests': "1"
+    }
+
+    try:
+        async with httpx.AsyncClient(timeout=10.0, follow_redirects=True) as client:
+            r_home = await client.get(show_url, headers=headers)
+            if r_home.status_code == 403:
+                return Result.error("Caught by WAF or IP Block (403) during Handshake 1")
+
+            r_join = await client.get(join_page, headers=headers)
+            if r_join.status_code == 403:
+                return Result.error("Caught by WAF or IP Block (403) during Handshake 2")
+
+            csrf_match = re.search(r"window\.__CSRF_TOKEN__\s*=\s*'([^']+)'", r_join.text)
+            if not csrf_match:
+                return Result.error("Failed to extract CSRF token from window variable")
+            
+            csrf_token = csrf_match.group(1)
+
+            payload = {
+                'referer': "https://www.deviantart.com/",
+                'referer_type': "",
+                'csrf_token': csrf_token,
+                'join_mode': "email",
+                'oauth': "0",
+                'email': email,
+                'password': "",
+                'username': "scanner_test_99",
+                'dobMonth': "6",
+                'dobDay': "6",
+                'dobYear': "1998"
+            }
+
+            headers.update({
+                'origin': "https://www.deviantart.com",
+                'referer': "https://www.deviantart.com/join/"
+            })
+
+            response = await client.post(verify_url, data=payload, headers=headers)
+            status = response.status_code
+
+            if status == 403:
+                return Result.error("Caught by WAF or IP Block (403) during Validation")
+
+            resp_text = response.text
+
+            if 'id="email-error">That email address is already in use.' in resp_text:
+                return Result.taken(url=show_url)
+            
+            if 'id="email-error"' not in resp_text:
+                return Result.available(url=show_url)
+
+            if status == 429:
+                return Result.error("Rate limited by DeviantArt")
+
+            return Result.error(f"Unexpected response content or status: {status}")
+
+    except httpx.ConnectTimeout:
+        return Result.error("Connection timed out! maybe region blocks")
+    except Exception as e:
+        return Result.error(e)
+
+async def validate_deviantart(email: str) -> Result:
+    return await _check(email)

user_scanner/email_scan/sports/nba.py

@@ -0,0 +1,53 @@
+import httpx
+import json
+from user_scanner.core.result import Result
+
+async def _check(email: str) -> Result:
+    show_url = "https://www.nba.com"
+    url = "https://identity.nba.com/api/v1/profile/registrationStatus"
+
+    payload = {
+        "email": email
+    }
+
+    headers = {
+        'User-Agent': "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Mobile Safari/537.36",
+        'Accept-Encoding': "identity",
+        'Content-Type': "application/json",
+        'sec-ch-ua-platform': '"Android"',
+        'x-client-platform': "web",
+        'origin': "https://www.nba.com",
+        'referer': "https://www.nba.com/",
+        'accept-language': "en-US,en;q=0.9"
+    }
+
+    try:
+        async with httpx.AsyncClient(timeout=10.0) as client:
+            response = await client.post(url, content=json.dumps(payload), headers=headers)
+            status = response.status_code
+
+            if status == 403:
+                return Result.error("Caught by WAF or IP Block (403)")
+
+            if status == 200:
+                data = response.json()
+                if data.get("status") == "success" and data.get("data", {}).get("isFull") is True:
+                    return Result.taken(url=show_url)
+
+            if status == 400:
+                data = response.json()
+                if "INVALID_PROFILE_STATUS" in data.get("errorCodes", []) or "Profile not found" in data.get("data", {}).get("message", ""):
+                    return Result.available(url=show_url)
+
+            if status == 429:
+                return Result.error("Rate limited by NBA")
+
+            return Result.error(f"Unexpected status code: {status}")
+
+    except httpx.ConnectTimeout:
+        return Result.error("Connection timed out! maybe region blocks")
+    except Exception as e:
+        return Result.error(e)
+
+async def validate_nba(email: str) -> Result:
+    return await _check(email)

user_scanner/email_scan/travel/__init__.py

@@ -0,0 +1,66 @@
+import httpx
+import json
+from user_scanner.core.result import Result
+
+
+async def _check(email: str) -> Result:
+    show_url = "https://emirates.com"
+    url = "https://www.emirates.com/service/ekl/validate-email"
+
+    params = {
+        'data': "null"
+    }
+
+    payload = {
+        "emailAddress": email
+    }
+
+    headers = {
+        'User-Agent': "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Mobile Safari/537.36",
+        'Accept': "application/json, text/plain, */*",
+        'Accept-Encoding': "identity",
+        'Content-Type': "application/json",
+        'sec-ch-ua-platform': '"Android"',
+        'sec-ch-ua': '"Not:A-Brand";v="99", "Google Chrome";v="145\", \"Chromium\";v=\"145"',
+        'sec-ch-ua-mobile': "?1",
+        'origin': "https://www.emirates.com",
+        'sec-fetch-site': "same-origin",
+        'sec-fetch-mode': "cors",
+        'sec-fetch-dest': "empty",
+        'accept-language': "en-US,en;q=0.9"
+    }
+
+    try:
+        async with httpx.AsyncClient(timeout=10.0) as client:
+            response = await client.post(url, params=params, content=json.dumps(payload), headers=headers)
+            status = response.status_code
+
+            if status == 403:
+                return Result.error("Caught by WAF or IP Block (403)")
+
+            if status == 200:
+                data = response.json()
+                body = data.get("body", {})
+                errors = body.get("errors", [])
+
+                if any(err.get("code") == "program.member.EmailExistsForAnotherMember" for err in errors):
+                    return Result.taken(url=show_url)
+
+                if data.get("status") is True:
+                    return Result.available(url=show_url)
+
+                return Result.available(url=show_url)
+
+            if status == 429:
+                return Result.error("Rate limited by Emirates")
+
+            return Result.error(f"Unexpected status code: {status}")
+
+    except httpx.ConnectTimeout:
+        return Result.error("Connection timed out! maybe region blocks")
+    except Exception as e:
+        return Result.error(e)
+
+
+async def validate_emirates(email: str) -> Result:
+    return await _check(email)

user_scanner/email_scan/travel/emirates.py

@@ -0,0 +1,63 @@
+import httpx
+import json
+from user_scanner.core.result import Result
+
+
+async def _check(email: str) -> Result:
+    show_url = "https://www.komoot.com"
+    url = "https://www.komoot.com/v1/signin"
+
+    payload = {
+        "email": email,
+        "reason": "header",
+        "new_tab": False
+    }
+
+    headers = {
+        'User-Agent': "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Mobile Safari/537.36",
+        'Accept': "application/json, text/plain, */*",
+        'Accept-Encoding': "identity",
+        'Content-Type': "application/json",
+        'sec-ch-ua-platform': '"Android"',
+        'sec-ch-ua': '"Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"',
+        'sec-ch-ua-mobile': "?1",
+        'origin': "https://www.komoot.com",
+        'sec-fetch-site': "same-origin",
+        'sec-fetch-mode': "cors",
+        'sec-fetch-dest': "empty",
+        'referer': "https://www.komoot.com/signin?referrer=www.google.com&reason=header",
+        'accept-language': "en-US,en;q=0.9",
+        'priority': "u=1, i"
+    }
+
+    try:
+        async with httpx.AsyncClient(timeout=10.0) as client:
+            response = await client.post(url, content=json.dumps(payload), headers=headers)
+            status = response.status_code
+
+            if status == 403:
+                return Result.error("Caught by WAF or IP Block (403)")
+
+            if status == 200:
+                data = response.json()
+                response_type = data.get("type")
+
+                if response_type == "login":
+                    return Result.taken(url=show_url)
+
+                if response_type == "register":
+                    return Result.available(url=show_url)
+
+            if status == 429:
+                return Result.error("Rate limited by Komoot")
+
+            return Result.error(f"Unexpected status code: {status}")
+
+    except httpx.ConnectTimeout:
+        return Result.error("Connection timed out! maybe region blocks")
+    except Exception as e:
+        return Result.error(e)
+
+
+async def validate_komoot(email: str) -> Result:
+    return await _check(email)

user_scanner/email_scan/travel/komoot.py

@@ -0,0 +1,58 @@
+import httpx
+from user_scanner.core.result import Result
+
+
+async def _check(email: str) -> Result:
+    show_url = "https://polarsteps.com"
+    url = "https://www.polarsteps.com/send_password_reset"
+
+    payload = {
+        'email': email
+    }
+
+    headers = {
+        'User-Agent': "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Mobile Safari/537.36",
+        'Accept-Encoding': "identity",
+        'sec-ch-ua-platform': '"Android"',
+        'sec-ch-ua': '"Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"',
+        'sec-ch-ua-mobile': "?1",
+        'origin': "https://www.polarsteps.com",
+        'sec-fetch-site': "same-origin",
+        'sec-fetch-mode': "cors",
+        'sec-fetch-dest': "empty",
+        'referer': "https://www.polarsteps.com/forgot_password",
+        'accept-language': "en-US,en;q=0.9",
+        'priority': "u=1, i"
+    }
+
+    try:
+        async with httpx.AsyncClient(timeout=10.0) as client:
+            response = await client.post(url, data=payload, headers=headers)
+            status = response.status_code
+
+            if status == 403:
+                return Result.error("Caught by WAF or IP Block (403)")
+
+            if status == 200:
+                data = response.json()
+
+                if data.get("success") == "OK":
+                    return Result.taken(url=show_url)
+
+                error_msg = data.get("error", {}).get("email", "")
+                if "don't have any user" in error_msg:
+                    return Result.available(url=show_url)
+
+            if status == 429:
+                return Result.error("Rate limited by Polarsteps")
+
+            return Result.error(f"Unexpected status code: {status}")
+
+    except httpx.ConnectTimeout:
+        return Result.error("Connection timed out! maybe region blocks")
+    except Exception as e:
+        return Result.error(e)
+
+
+async def validate_polarsteps(email: str) -> Result:
+    return await _check(email)