Skip to content

Latest commit

 

History

History
64 lines (41 loc) · 3.3 KB

README.md

File metadata and controls

64 lines (41 loc) · 3.3 KB

The script should work again for now. Thank you @karopass for the pointers. We'll find out for how long when WhatsApp decides to change their API...

Donations are still welcome :)

If you make some money with it, I'd like to have a little slice of the cake as well :)

Bitcoin address: 1DTqXrfnQrUutj7bGtKuhc5hP2DhZLXMC8

paypal

WhatsAllApp

Chrome Extension that creates a UI overlay for WhatsApp Web to enumerate phone numbers, profile pics and about texts

Checkout the background information at https://www.lorankloeze.nl/2017/05/07/collecting-huge-amounts-of-data-with-whatsapp/

This is a Proof of Concept packed in a Chrome Extension. It's not bug free and you may run into errors. If there was a stage before alpha it would be in that stage. Use it wisely!

Extension in action

New functionality

Download to zip-file

You can now download the numbers + their corresponding profile pictures and statuses to a zip-file. The file contains the profile pictures in jpeg format and a csv-file with numbers and statuses. Give it a try, it seems to be still a little buggy.

Show only active accounts

I've implemented a checkbox to disable displaying inactive or non-existing accounts.

Enter custom numbers

You can now enter a comma separated list of numbers to iterate over instead of a hard range.

Warning

This extension has the permission to read from your WhatsApp Web screen. As you can see in the source code, that permission is not used in a bad way. But, take care if you download this extension from anywhere else but this repo!

Installation

  1. Click 'clone or download' and choose to download the ZIP file
  2. Extract the folder from the ZIP file
  3. Open up chrome://extensions/
  4. Enable developer mode at the top of the screen by clicking the checkbox
  5. Click 'load unpacked extension'
  6. Select the folder from step 2
  7. The extension should appear at the top of the list

Usage

  1. Go to WhatsApp Web, a green button should appear, click it to open the UI
  2. Enter a range of phonenumbers you want to enumerate, more than 500 numbers is probably a little much
  3. After a few seconds you'll see a table of phonenumbers, profile pics, about texts

FAQ

  • Can you update the script so it becomes a mass surveillance tool?

    No, it has its privacy concerns already as it is. Ask your local secret service for more info.

  • Can you update the script so it includes feature X?

    Maybe: tell me ([email protected]) what feature you'd like to have included and I'll make you a nice offer :) No, at this moment I don't have the time.

  • How about rate limiting?

    There is some kind of rate limiting in place but what exactly the limits are and their penalties for exceeding them, I don't know yet. Sometimes I get a '427 Too many requests' but a few minutes later I can continue using the API calls.

  • Why is this extension not available in the Chrome Web Store?

    Because it's a PoC and because I'll have to pay $5. Since I'm Dutch I don't want to pay unless I have absolutely no other choice. So there you go :)