[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"project-71069":3},{"id":4,"name":5,"fullName":6,"owner":7,"repo":5,"description":8,"homepage":9,"htmlUrl":10,"language":11,"languages":10,"totalLinesOfCode":10,"stars":12,"forks":13,"watchers":14,"openIssues":15,"contributorsCount":16,"subscribersCount":16,"size":16,"stars1d":17,"stars7d":17,"stars30d":18,"stars90d":16,"forks30d":16,"starsTrendScore":19,"compositeScore":20,"rankGlobal":10,"rankLanguage":10,"license":21,"archived":22,"fork":22,"defaultBranch":23,"hasWiki":24,"hasPages":22,"topics":25,"createdAt":10,"pushedAt":10,"updatedAt":38,"readmeContent":39,"aiSummary":40,"trendingCount":16,"starSnapshotCount":16,"syncStatus":41,"lastSyncTime":42,"discoverSource":43},71069,"pyWhat","bee-san\u002FpyWhat","bee-san","🐸   Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️","",null,"Python",7230,388,67,22,0,5,16,15,38.77,"MIT License",false,"main",true,[26,27,28,29,30,31,32,33,34,35,36,37],"cyber","cybersecurity","hacking","hacktoberfest","malware","malware-analysis","malware-research","pcap","python","re","security","tryhackme","2026-06-12 02:02:47","\u003Cp align='center'>\n\u003Cimg src='images\u002Flogo.png'>\n\u003Cp align=\"center\">➡️ \u003Ca href=\"http:\u002F\u002Fdiscord.skerritt.blog\">Discord\u003C\u002Fa> ⬅️\u003Cbr>\n\u003Ci>The easiest way to identify anything\u003C\u002Fi>\u003Cbr>\n\u003Ccode>pip3 install pywhat && pywhat --help\u003C\u002Fcode>\n\u003C\u002Fp>\n\n\u003Cp align=\"center\">\n  \u003Ca href=\"http:\u002F\u002Fdiscord.skerritt.blog\">\u003Cimg alt=\"Discord\" src=\"https:\u002F\u002Fimg.shields.io\u002Fdiscord\u002F754001738184392704\">\u003C\u002Fa> \u003Ca href=\"https:\u002F\u002Fpypi.org\u002Fproject\u002Fpywhat\u002F\">\u003Cimg alt=\"PyPI - Downloads\" src=\"https:\u002F\u002Fpepy.tech\u002Fbadge\u002Fpywhat\u002Fmonth\">\u003C\u002Fa>  \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fbee_sec_san\">\u003Cimg alt=\"Twitter Follow\" src=\"https:\u002F\u002Fimg.shields.io\u002Ftwitter\u002Ffollow\u002Fbee_sec_san?style=social\">\u003C\u002Fa> \u003Ca href=\"https:\u002F\u002Fpypi.org\u002Fproject\u002Fpywhat\u002F\">\u003Cimg alt=\"PyPI - Python Version\" src=\"https:\u002F\u002Fimg.shields.io\u002Fpypi\u002Fpyversions\u002Fpywhat\">\u003C\u002Fa> \u003Ca href=\"https:\u002F\u002Fpypi.org\u002Fproject\u002Fpywhat\u002F\">\u003Cimg alt=\"PyPI\" src=\"https:\u002F\u002Fimg.shields.io\u002Fpypi\u002Fv\u002Fpywhat\">\u003C\u002Fa>\n\u003C\u002Fp>\n\u003Chr>\n\n# 🤔 `What` is this?\n\n![](images\u002Fmain_demo.gif)\n\nImagine this: You come across some mysterious text 🧙‍♂️ `0x52908400098527886E0F7030069857D2E4169EE7` or `dQw4w9WgXcQ` and you wonder what it is. What do you do?\n\nWell, with `what` all you have to do is ask `what \"0x52908400098527886E0F7030069857D2E4169EE7\"` and `what` will tell you!\n\n`what`'s job is to **identify _what_ something is.** Whether it be a file or text! Or even the hex of a file! What about text _within_ files? We have that too! `what` is recursive, it will identify **everything** in text and more!\n\n# Installation\n\n## 🔨 Using pip\n\n```$ pip3 install pywhat```\n\nor\n\n```shell\n# installs optional dependencies that may improve the speed\n$ pip3 install pywhat[optimize] \n```\n\n## 🔨 On Mac?\n\n```$ brew install pywhat```\n\nOr for our MacPorts fans:\n\n```$ sudo port install pywhat```\n\n# ⚙ Use Cases\n\n## 🦠 Wannacry\n\n![](images\u002Fwannacry_demo.png)\n\nYou come across a new piece of malware called WantToCry. You think back to Wannacry and remember it was stopped because a researcher found a kill-switch in the code.\n\nWhen a domain, hardcoded into Wannacry, was registered the virus would stop.\n\nYou use `What` to identify all the domains in the malware, and use a domain registrar API to register all the domains.\n\n## 🦈 Faster Analysis of Pcap files\n\n![](images\u002Fpcap_demo.gif)\n\nSay you have a `.pcap` file from a network attack. `What` can identify this and quickly find you:\n\n- All URLs\n- Emails\n- Phone numbers\n- Credit card numbers\n- Cryptocurrency addresses\n- Social Security Numbers\n- and much more.\n\nWith `what`, you can identify the important things in the pcap in seconds, not minutes.\n\n## 🐞 Bug Bounties\n\nYou can use PyWhat to scan for things that'll make you money via bug bounties like:\n* API Keys\n* Webhooks\n* Credentials\n* and more\n\nRun PyWhat with:\n\n```\npywhat --include \"Bug Bounty\" TEXT\n```\n\nTo do this.\n\nHere are some examples 👇\n\n### 🐙 GitHub Repository API Key Leaks\n\n1. Download all GitHub repositories of an organisation\n2. Search for anything that you can submit as a bounty, like API keys\n\n```shell\n# Download all repositories\nGHUSER=CHANGEME; curl \"https:\u002F\u002Fapi.github.com\u002Fusers\u002F$GHUSER\u002Frepos?per_page=1000\" | grep -o 'git@[^\"]*' | xargs -L1 git clone\n\n# Will print when it finds things.\n# Loops over all files in current directory.\nfind . -type f -execdir pywhat --include 'Bug Bounty' {} \\;\n```\n\n### 🕷 Scan all web pages for bounties\n\n```shell\n# Recursively download all web pages of a site\nwget -r -np -k https:\u002F\u002Fskerritt.blog\n\n# Will print when it finds things.\n# Loops over all files in current directory.\nfind . -type f -execdir pywhat --include 'Bug Bounty' {} \\;\n```\n\n**PS**: We support more filters than just bug bounties! Run `pywhat --tags`\n\n## 🌌 Other Features\n\nAnytime you have a file and you want to find structured data in it that's useful, `What` is for you.\n\nOr if you come across some piece of text and you don't know what it is, `What` will tell you.\n\n### 📁 File & Directory Handling\n\n**File Opening** You can pass in a file path by `what 'this\u002Fis\u002Fa\u002Ffile\u002Fpath'`. `What` is smart enough to figure out it's a file!\n\nWhat about a whole **directory**? `What` can handle that too! It will **recursively** search for files and output everything you need!\n\n### 🔍 Filtering your output\n\nSometimes, you only care about seeing things which are related to AWS. Or bug bounties, or cryptocurrencies!\n\nYou can filter output by using `what --rarity 0.2:0.8 --include Identifiers,URL https:\u002F\u002Fskerritt.blog`. Use `what --help` to get more information.\n\nTo see all filters, run `pywhat --tags`! You can also combine them, for example to see all cryptocurrency wallets minus Ripple you can do:\n\n```console\npywhat --include \"Cryptocurrency Wallet\" --exclude \"Ripple Wallet\" 1KFHE7w8BhaENAswwryaoccDb6qcT6DbYY\n```\n\n### 👽 Sorting, Exporting, and more!\n\n**Sorting** You can sort the output by using `what -k rarity --reverse TEXT`. Use `what --help` to get more information.\n\n**Exporting** You can export to json using `what --json` and results can be sent directly to a file using `what --json > file.json`.\n\n**Boundaryless mode** `What` has a special mode to match identifiable information within strings. By default, it is enabled in CLI but disabled in API. Use `what --help` or refer to [API Documentation](https:\u002F\u002Fgithub.com\u002Fbee-san\u002FpyWhat\u002Fwiki\u002FAPI) for more information.\n\n\n# 🍕 API\n\nPyWhat has an API! Click here [https:\u002F\u002Fgithub.com\u002Fbee-san\u002FpyWhat\u002Fwiki\u002FAPI](https:\u002F\u002Fgithub.com\u002Fbee-san\u002FpyWhat\u002Fwiki\u002FAPI) to read about it.\n\n# 👾 Contributing\n\n`what` not only thrives on contributors, but can't exist without them! If you want to add a new regex to check for things, you can read our documentation [here](https:\u002F\u002Fgithub.com\u002Fbee-san\u002Fwhat\u002Fwiki\u002FAdding-your-own-Regex)\n\nWe ask contributors to join the Discord for quicker discussions, but it's not needed:\n\u003Ca href=\"http:\u002F\u002Fdiscord.skerritt.blog\">\u003Cimg alt=\"Discord\" src=\"https:\u002F\u002Fimg.shields.io\u002Fdiscord\u002F754001738184392704\">\u003C\u002Fa>\n\n# 🙏 Thanks\n\nWe would like to thank [Dora](https:\u002F\u002Fgithub.com\u002Fsdushantha\u002Fdora) for their work on a bug bounty specific regex database which we have used.","pyWhat 是一个用于识别文本或文件中各种信息（如电子邮件、IP地址等）的工具。它支持解析.pcap文件，能够快速识别URL、电子邮件、电话号码、信用卡号、加密货币地址等多种敏感信息。采用Python编写，具有易用性高、识别速度快的特点，并且可以通过pip轻松安装。适用于网络安全分析、恶意软件研究、漏洞赏金狩猎等多个场景，帮助用户高效地从大量数据中提取关键信息。",2,"2026-06-11 03:35:46","high_star"]