Skip to content
This repository has been archived by the owner on Sep 22, 2022. It is now read-only.
/ upi-recon Public archive

A command line tool for UPI payment address discovery and reconnaissance

License

GPL-3.0 license
75 stars 13 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

qurbat/upi-recon

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

68 Commits
data
data
 
 
.gitignore
.gitignore
 
 
.gitpod.yml
.gitpod.yml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
requirements.txt
requirements.txt
 
 
upi-recon.py
upi-recon.py
 
 

Repository files navigation

upi-recon

Update as of May 28, 2022: As of now, Juspay has stripped the functionality of their API. The tool is currently not functional. This will be addressed in the next release.

Update as of May 22, 2022: The tool has limited functionality at the moment. This will be addressed in the next release. (#22)

screenshot of upi-recon

upi-recon is a command line tool for UPI payment address discovery and reconnaissance. The project was primarily created for demonstrating the range of correlated information that can be extracted from and along with Unified Payments Interface ("UPI") Virtual Payment Addresses.

The tool has support for several input types which can be used to obtain (and otherwise extrapolate) information associated with UPI virtual payment addresses.

Requirements

pip install -r requirements.txt

Usage

Query all possible UPI addresses for the provided phone number

upi-recon.py -p <phone_number>

Query all possible UPI addresses for the provided phone number using a specified number of threads

upi-recon.py -p <phone_number> -t 5

Query a single UPI address for the provided VPA

upi-recon.py -v <single_vpa>

Query all possible UPI addresses for the provided Gmail address

upi-recon.py -g <gmail_username>

Query all possible FASTag addresses for a vehicle registration number

upi-recon.py -f <vehicle_number>

Query all possible UPI addresses for a given term

upi-recon.py -w <word>

Contributions

Contributions are welcome. Feature wishlist:

  • Introduce support for more API providers
  • Introduce support for wordlist based address discovery
  • Refactor for release as Python module

Acknowledgements

  • Srikanth L (added FASTag and Google support)
  • Aseem Shrey (authored Golang port of upi-recon)
  • Anant Shrivastava (QoL improvements)

Disclaimer

Note: Unified Payment Interface ("UPI") Virtual Payment Addresses ("VPAs") do not carry a data security classification by virtue of their usage in practice, and should as such be considered to be public information, similar to how email addresses may be considered to be public information.

This tool allows users to 1) check the existence of UPI payment addresses, and 2) fetch associated information about the account holder, in an automated manner based on provided input. This functionality is already available (however, not in an automated fashion) through most UPI payment applications available on the Android and/or iOS platforms.

This tool is provided "AS IS" without any warranty of any kind, either expressed, implied, or statutory, to the extent permitted by applicable law.

About

A command line tool for UPI payment address discovery and reconnaissance

Topics

osint upi reconnaissance

Resources

Readme

License

GPL-3.0 license
Activity

Stars

75 stars

Watchers

3 watching

Forks

13 forks
Report repository

Releases 7

v0.1.7 Latest
May 19, 2022
+ 6 releases

Contributors 6

Languages