loading
loading
Scanners
Crawl a website and find broken social media links that can be hijacked.
overview
socialhunter crawls the pages you point it at, collects every Twitter, Facebook, Instagram, and TikTok link they reference, and checks whether each linked account still exists. When a page links to a handle that was deleted or never registered, anyone can claim that handle and inherit the trust visitors place in the linking site. socialhunter surfaces those broken links so you can fix or reclaim them first.
The tool stays deliberately small. Point it at a text file of URLs with -f, set how many workers crawl in parallel with -w, and it walks each page, extracts social links, and prints every hijackable one as a 'Possible Takeover' line. None of the platforms it checks require an API key.
Wire it into a workflow behind asset discovery so an organization's live URLs get scanned on a schedule. Broken social links are a cheap, high-trust foothold that manual review routinely misses, which makes them worth catching continuously rather than once.
use cases
Crawl a site for links to deleted or unregistered Twitter, Facebook, Instagram, and TikTok accounts that an attacker could claim and operate under the site's reputation.
Run socialhunter across a list of company URLs to catch broken social links that manual page-by-page review tends to miss.
Feed the 'Possible Takeover' results to the team that owns each property so dead handles get reclaimed or the links get removed before someone else grabs them.
Schedule the crawl behind asset discovery so freshly published pages get checked for hijackable links automatically instead of on a one-off basis.
reference
| Name | Type | Flag | Description |
|---|---|---|---|
| urls | FILE | -f | Path of the text file containing target URLs to crawl, one per line. |
| workers | STRING | -w | Number of concurrent workers to run while crawling (default 5). |
Showing key inputs. socialhunter exposes 2 inputs in total.
example
# crawl a list of company URLs with 10 workerssocialhunter -f urls.txt -w 10Total URLs: 6Checking: https://example.com/Possible Takeover: https://twitter.com/example_support at https://example.com/contactChecking: https://blog.example.com/Possible Takeover: https://facebook.com/example.press at https://blog.example.com/aboutPossible Takeover: https://tiktok.com/@example.dev at https://blog.example.com/careersFinished Checking: https://blog.example.com/Remaining URLs: 2Scan Completedguidance
Use socialhunter to crawl a site and find broken social media links pointing at hijackable accounts. It checks links on a page, not identities or files. For username enumeration use sherlock, and for exposed files use snallygaster.
Enumerates where a username exists across networks. socialhunter instead checks links on a site for hijackability.
Checks email and username availability directly. A related identity check, not a site crawl.
Finds exposed files on servers. Another low-effort exposure check on the same web properties.
faq
related
Find reflected XSS during recon by checking payload reflection.
Fast and customizable subdomain wordlist generator using patterns.
Scans software bills of materials for security vulnerabilities.
Find broken links, missing images, and other dead references within your HTML.
A command-line scanner that finds exposed services, files, and folders through the web root.
A CMS detection and exploitation suite.
A file of site URLs feeds socialhunter, which crawls them for broken social links and writes the hijackable ones as a queryable output.
Facts on this page come from the live Trickest tool library.