Goldmine Recon Guide

The goal of this guide is to show users how to search for valuable information in Goldmine, to be used in a penetration test or OSINT investigation. note: this is a work in progess.

Email Enumeration

Gathering a list of email addresses is vital for any penetration test. The workflow for this is as follows:

Gather a list of domains
Query Goldmine for each domain
Combine results

Domain Enumeration

todo

Querying Goldmine

Kibana

todo

Command-Line Client

Example Config

index: "leak_*"
url: "https://elastic.goldmine.sh"
username: "bhis"
password: "lastpass"
domain: ""
email: ""
limit: 1000000
debug: false
verbose: true

Batch Processing of Domains

for i in $(cat domain_list.txt); do ./hoardd-client -c config.yml -d $i --csv-file goldmine_client_all.csv --json-file goldmine_client_all.json; done

Goldmine Recon Guide

Email Enumeration​

Domain Enumeration​

Querying Goldmine​

Kibana​

Command-Line Client​

Email Enumeration

Domain Enumeration

Querying Goldmine

Kibana

Command-Line Client