Skip to content

Information Security News

  • Home
  • Cyber Security
  • Cybercriminals
  • Data Leak
  • Google
    • Android
  • Information Security
  • Linux
  • Malware
  • Microsoft
    • Windows
  • Open Source Tool
  • Vulnerability
  • Technology

Information Security News

  • Home
  • Cyber Security
  • Cybercriminals
  • Data Leak
  • Google
    • Android
  • Information Security
  • Linux
  • Malware
  • Microsoft
    • Windows
  • Open Source Tool
  • Vulnerability
  • Technology
  • Open Source Tool

Digital Archeology: GotMeta Unearths Hidden Data from Target Domains

by Nam Phong · January 20, 2026

GotMeta

A Python tool for discovering, downloading, and extracting metadata from publicly available files on target domains. Useful for OSINT.

Features

  • File Finder – Find publicly available files on target domains
  • Metadata Extraction – Extract all metadata using exiftool
  • Multi-threaded Downloads – Fast concurrent file downloads (default 5 threads)
  • Proxy Support – Route through Burp Suite or other proxies to bypass anti-bot protection
  • URL List Mode – Skip API search and download from manual file list.

What Metadata Can Reveal

  • Usernames – Author, Creator, LastModifiedBy
  • Email addresses – Company
  • Software versions – Application, Producer
  • Internal file paths – SourceFile paths may reveal folder structure
  • Computer names – May appear in various fields
  • Creation dates – Document timeline
  • GPS coordinates – Photos/images (if targeting image files)

Google API Quota

  • Free tier: 100 queries/day
  • Each file type search uses ~1-10 queries depending on results

If you run out of quota, use --url-list mode with manually collected URLs

Installation

[pastacode lang=”markup” manual=”%23%20Clone%20the%20repository%0A%20%20%20git%20clone%20https%3A%2F%2Fgithub.com%2FMrTurvey%2FGotMeta.git%0A%20%20%20cd%20GotMeta%0A%0A%23%20Install%20dependencies%0A%20%20%20pip%20install%20requests%0A%0A%23%20Download%20exiftool%20for%20metadata%20extraction%0A%20%20%20Windows%3A%20https%3A%2F%2Fexiftool.org%2F%0A%20%20%20Linux%3A%20sudo%20apt-get%20install%20exiftool%0A%20%20%20Mac%3A%20brew%20install%20exiftool” message=”” highlight=”” provider=”manual”/]

Quick Start

Google API Setup

Step 1: Create Google Cloud Project

  • Go to Google Cloud Console (https://cloud.google.com/)
  • Login with a Google account
  • Click “Select a project” → “New Project”
  • Enter a project name (e.g., “GotMeta”)
  • Click “Create”

Step 2: Enable Custom Search API

  • In your project, go to “APIs & Services” → “Library”
  • Search for “Custom Search API”
  • Click on it and press “Enable”

Step 3: Create API Key

  • Go to “APIs & Services” → “Credentials”
  • Click “Create Credentials” → “API Key”
  • Copy your API key

Step 4: Create Custom Search Engine

  • Go to Google Programmable Search Engine (https://programmablesearchengine.google.com)
  • Click “Add a search engine” -Enter any name (e.g., “GotMeta Search”) -For “Sites to search”, select “Search the entire web”
  • Click “Create”
  • Copy your Search Engine ID (looks like: 94e6b2cd62344413c)

Basic Usage

[pastacode lang=”markup” manual=”%23%20Search%20and%20download%20files%20from%20a%20domain%20and%20extract%20all%20metadata%0Apython%20-u%20GotMeta.py%20-d%20example.com%20-k%20YOUR_API_KEY%20-s%20YOUR_SEARCH_ENGINE_ID%20–download%20–extract-all%20metadata.csv%0A%0A%23%20Bypass%20Anti-Bot%20Protection%20via%20Proxy%20(see%20README%20section%20below)%0Apython%20-u%20GotMeta.py%20-d%20example.com%20-k%20YOUR_API_KEY%20-s%20YOUR_SEARCH_ENGINE_ID%20–download%20–extract-all%20metadata.csv%20–proxy%20http%3A%2F%2F127.0.0.1%3A8080%0A%0A%23%20Use%20a%20pre-compiled%20URL%20list%20(no%20API%20required)%20to%20download%20and%20extract%20all%20metadata%0Apython%20-u%20GotMeta.py%20–url-list%20urls.txt%20–download%20–extract-all%20metadata.csv%0A%0A%23%20Extract%20metadata%20from%20already%20downloaded%20files%0Apython%20-u%20GotMeta.py%20–extract-only%20–files-dir%20.%2Fdownloads%20–extract-all%20metadata.csv” message=”” highlight=”” provider=”manual”/]

Anti-Bot Protection

Some sites block automated downloads, such as those that use Cloudflare. To prevent this, use a Proxy

  1. Open a proxied browser using BurpSuite / ZAP / whatever and browse to the target URL.

  2. Manually get through the WAF / Cloudflare / Other Bot protections.

  3. Use proxied commands:

    [pastacode lang=”markup” manual=”%23%20Route%20through%20Burp%20Suite%20with%20authenticated%20session%0Apython%20-u%20GotMeta.py%20-d%20example.com%20-k%20YOUR_API_KEY%20-s%20YOUR_SEARCH_ENGINE_ID%20–download%20–extract-all%20metadata.csv%20–proxy%20http%3A%2F%2F127.0.0.1%3A8080″ message=”” highlight=”” provider=”manual”/]

 

Related coverage

  • BAADTokenBroker Abuses Microsoft Entra ID Device-Bound Keys for PRT Hijacking
  • Meet Xalgorix: The World’s Most Powerful Open-Source Autonomous AI Pentesting Agent
  • Ghost in the Firewall: Mastering Stealth Audits with EvilWAF’s Transparent MITM and Multi-Layer Scanner
  • Living Off The Registry: Master AD CS Enumeration with the Native LOLBAS Toolkit
  • Beyond Static Analysis: Hunt, Filter, and Confirm Hijacks with DLLHijackHunter

Support Our Threat Intelligence

If you find our technology report and cybersecurity news helpful, consider supporting our work.

Buy Me a Coffee Logo Buy Me a Coffee PayPal
Crypto QR Code
USDT (TRC20):
TN8BdV8cp4T1Cd28gK9qTAnZknzzuwyUtm
USDT (ERC20):
0x3725e1a7d3bc5765499fa6aaafe307fabcd75bce

Tags: Burp Suitecybersecurity toolsExifToolGotMetaInformation GatheringMetadata ExtractionOSINTpythonreconnaissancered teaming

Follow:

  • Next story The Dragon’s Hub: Researchers Unmask 18,000 Malicious C2 Servers Inside China
  • Previous story The Jackpotting Ring: Venezuelan Malware Syndicate Admits to Multi-State ATM Heist

  • Recent Posts
  • Popular Posts
  • Tags
  • Progress Software ShareFile Storage Zone Controller shut down over external threat CVE-2026-2699

    Vulnerability

    Progress Software Shuts Down ShareFile Over External Threat

    July 14, 2026

  • Diagram illustrating the jscrambler supply chain attack and IronWorm malware infection process

    Malware

    Jscrambler Supply Chain Attack Analysis

    July 14, 2026

  • GhostCommit AI vulnerability diagram illustrating prompt injection against AI coding assistants

    Vulnerability

    The GhostCommit Vulnerability: AI Assistants Weaponized via Images

    July 14, 2026

  • Critical Joomla extension vulnerabilities diagram, iCagenda and Balbooa Forms exploit overview

    Malware

    Critical Joomla Extension Vulnerabilities Actively Exploited

    July 14, 2026

  • Debian 13.6 point release updates with UEFI Secure Boot and Linux kernel patches

    Linux

    Debian 13.6 Released: Crucial Security and UEFI Fixes

    July 14, 2026

  • Apache Camel vulnerabilities enabling server-side request forgery and authentication bypass in JMS and WebSocket connectors

    Vulnerability

    Apache Camel Patches Five High-Severity Vulnerabilities

    July 9, 2026

  • OpenSUSE Leap 15.4 Beta releases, Linux distributions

    Linux

    OpenSUSE Leap 15.4 Beta releases, Linux distributions

    May 30, 2020

  • Ubuntu 16.04.6 LTS released: fix security vulnerabilities

    Linux

    Ubuntu 16.04.6 LTS released: fix security vulnerabilities

    March 1, 2019

  • GhostBSD 23.10.1 released, FreeBSD distribution

    Linux

    GhostBSD 23.10.1 released, FreeBSD distribution

    May 1, 2020

  • Solus 4.4 Fortitude releases, Linux distribution

    Linux

    Solus 4.4 Fortitude releases, Linux distribution

    January 26, 2020

  • AI AI security Android Apple APT BOTNET China CISA cloud security cryptocurrency cyberattack cybercrime Cyber Espionage cybersecurity Cybersecurity 2026 data breach Github google hacking Infosec InfoSec 2026 Infostealer Linux Linux Kernel malware Microsoft network security open source Penetration Testing phishing privacy privilege escalation Prompt Injection ransomware RCE remote code execution security Social Engineering supply chain attack Tech News 2026 threat intelligence vulnerability windows Windows 11 zero-day
  • Home
  • About Us
  • Contact Us
  • DMCA NOTICE
  • Privacy Policy

Information Security News © 2026. All Rights Reserved.

Powered by  - Designed with Hueman Pro