This Python script performs WHOIS lookups for a list of IP addresses and displays relevant information such as the organization name, country, and a link to check the IP on external platforms (AbuseIPDB and VirusTotal). It also supports whitelisting organizations like Google, Amazon, and others, with the ability to mark their organizations with a special color.
- WHOIS Lookup: Retrieves WHOIS data for IP addresses.
- Whitelist Organizations: Displays specific organizations (e.g., Google, Amazon) in a special color.
- Country Mapping: Converts country codes into full country names.
- Check IP: Provides links to external platforms like AbuseIPDB and VirusTotal for each IP.
- Python 3.x
tabulatelibrary (for pretty table output)whoiscommand-line tool installed
You can install the required Python package by running:
pip install tabulate
Prepare a file with a list of IP addresses. Each IP address should be on a new line (e.g., ip_list.txt).
Run the script with the path to your wordlist file as an argument:
./get_ip_info ip_list.txt
View the results: The script will display the following information for each IP in the list:
IP: The IP address
Organization: The organization associated with the IP (if available)
Country: The country associated with the IP (if available)
Check IP: Links to external platforms (AbuseIPDB and VirusTotal) for further investigation
##Example Output:
The script uses the system's whois command to fetch WHOIS information for each IP. It identifies the organization and country from the WHOIS data and checks against a list of whitelisted organizations. If the organization is whitelisted (like Google or Amazon), the organization name is highlighted in a soft yellow color. The country code (e.g., "US" for United States) is mapped to a country name using a dictionary.
This script is open source and available under the MIT License.