git clone https://github.com/laramies/theHarvester
cd theHarvester
python3 -m pip install -r requirements/base.txt
python3 theHarvester.py -h 

theHarvester -d [domain] -l [depth] -b [search engine name]

-d: Domain to search or company name
-b: data source: baidu, bing, bingapi, dogpile, google, googleCSE,
                 googleplus, google-profiles, linkedin, pgp, twitter, vhost,
                 virustotal, threatcrowd, crtsh, netcraft, yahoo, all
-s: start in result number X (default: 0)
-v: verify host name via dns resolution and search for virtual hosts
-f: save the results into an HTML and XML file (both)
-n: perform a DNS reverse query on all ranges discovered
-c: perform a DNS brute force for the domain name
-t: perform a DNS TLD expansion discovery
-e: use this DNS server
-p: port scan the detected hosts and check for Takeovers (80,443,22,21,8080)
-l: limit the number of results to work with(bing goes from 50 to 50 results,
     google 100 to 100, and pgp doesn't use this option)
-h: use SHODAN database to query discovered hosts

theHarvester -d justin-p.me -l 500 -b google

theHarvester -d justin-p.me -l 500 -b google -f exportfile