SpiderFoot guideSpiderFoot 指南 · 2026-06-21

SpiderFoot safe first runSpiderFoot 安全首次运行

Run a narrow authorized scan on a domain you own. This guide shows the setup, first steps, module choice and what to avoid.对自有域名运行窄范围授权扫描。本指南包含安装、第一步、模块选择和要避免的事项。

1. Quick setup for a first run1. 首次运行快速安装

# clone and install
git clone https://github.com/smicallef/spiderfoot.git
cd spiderfoot
pip3 install -r requirements.txt

# start web UI (local only)
python3 sf.py -l 127.0.0.1:5001

# or use Docker
docker build -t spiderfoot .
docker run -p 5001:5001 spiderfoot

Python 3.7+ required. For Kali: spiderfoot is in the default repo.需要 Python 3.7+。Kali 用户：spiderfoot 在默认仓库里。

2. Write your scope before launching2. 启动前先写范围

Scope template范围模板

Target: <your-owned-domain.com>目标：<你的自有域名>
IP ranges: none (yet)IP 范围：暂无
Start date: <today>开始日期：<今天>
Modules: passive-only first pass模块：首次仅被动模块
Authorization: self-owned asset授权：自有资产

3. Choose conservative modules3. 选择保守模块

For a first run, start with modules that only read public registries, DNS and web surface without active probing:首次运行可从只读模块开始，仅读取公开注册库、DNS 和网页表层，不主动探测：

Safe first-module picks安全首选模块

sfp_dns
sfp_crt
sfp_webanalyt
sfp_whois

Skip on first run首次运行跳过

sfp_spider (crawls deeply)sfp_spider（深度爬取）
sfp_isc (Shodan-style probing)sfp_isc（类 Shodan 探测）
sfp_sslcert (aggressive cert fetching)sfp_sslcert（激进证书获取）

4. Run, review, and stop early4. 运行、复核、提前停止

Let the scan run for a short time, then review the findings in the web UI. Stop the scan if you see results outside your scope.让扫描运行一小段时间，然后在 Web UI 中查看结果。如果发现有超出范围的结果，立即停止。

Do not use SpiderFoot for不要用于

Unauthorized scanning or probing of third-party systems.未授权扫描或探测第三方系统。
Credential collection, bypass attempts, or account abuse.凭据收集、绕过尝试或账户滥用。
Publishing private personal data without a lawful basis.未依法发布私人个人数据。
Running on production targets before understanding module behavior.理解模块行为前直接在正式目标上运行。