#osint

LeakLooker-X
featured
LeakLooker-X

Discover, browse and monitor database/source code leaks.

ScrapedIn
ScrapedIn

Scrape LinkedIn without API restrictions for data reconnaissance.

Porch-Pirate
Porch-Pirate

The most comprehensive Postman recon / OSINT client and framework.

Mosint
Mosint

An automated e-mail OSINT tool.

postleaks
postleaks

Search for sensitive data in Postman public library.

harpoon
harpoon

CLI tool for open source and threat intelligence.

OSINT-Framework
OSINT-Framework

OSINT Framework.

nexfil
nexfil

OSINT tool for finding profiles by username.

OpenCTI
OpenCTI

Open Cyber Threat Intelligence Platform.

trape
trape

People tracker on the Internet: OSINT analysis and research tool.

holehe
holehe

Check if the mail is used on different sites and retrieve informations on sites.

EagleEye
EagleEye

Stalk your friends on social media using image recognition and reverse image search.

SocialFish
SocialFish

Phishing tool & information collector.

twint
twint

Twitter scraping & OSINT tool allowing you to scrape a user's followers, following, tweets and more.

tinfoleak
tinfoleak

The most complete open-source tool for Twitter intelligence analysis.

Osintgram
Osintgram

An interactive shell to perform analysis on Instagram account of any users by its nickname.

osintname
osintname

Generate emails and usernames.

exiv2
exiv2

Image metadata library and tools.

wtfis
wtfis

Passive hostname, domain and IP lookup tool for non-robots.

Social Mapper
Social Mapper

A social media enumeration & correlation tool.

octosuite
octosuite

An all-in-one GitHub open-source intelligence framework.

SynapsInt
SynapsInt

Consulting different intelligence services, search engines and datasets for OSINT.

WhatBreach
WhatBreach

OSINT tool to find breached emails, databases, pastes, and relevant information.

WeakestLink
WeakestLink

Browser extension that extracts users from LinkedIn company pages.

GatherContacts
GatherContacts

Burp Suite extension to pull employee names from Google and Bing LinkedIn search results.

karma v2
karma v2

Passive open source intelligence automated reconnaissance.

bbot
bbot

OSINT automation for hackers.

CrossLinked
CrossLinked

LinkedIn enumeration tool to get employee names from an organization using scraping.

Infoga
Infoga

Email OSINT.

OSINT-SPY
OSINT-SPY

Perform OSINT scan on email/domain/ip address/organization.

postmaniac
postmaniac

Postman OSINT tool to extract creds, token, username, email & more from Postman Public Workspaces.

Poastal
Poastal

The Email OSINT tool.

Gowhois
Gowhois

Whois command implemented by golang with awesome whois servers list.

PowerMeta
PowerMeta

Searches for publicly available files hosted on various websites for a particular domain.

Pymeta
Pymeta

Search the web for files on a domain to download and extract metadata.

The Time Machine
The Time Machine

Weaponizing WaybackUrls for recon, bug bounties, OSINT, sensitive endpoints and what not.

webpalm
webpalm

A tool that traverses a website and generates a tree of all the webpages and their links.

dorky
dorky

Quickly do keyword searches over GitLab and GitHub for OSINT & bug bounty recon.

GhostTrack
GhostTrack

Useful tool to track location or mobile number.

LinkedInDumper
LinkedInDumper

Script that dumps employee data from the LinkedIn social networking platform.

Comperio
Comperio

OSINT tool to find usernames across 80+ social media and social networking sites.

WebScrape
WebScrape

A web scraper to scrape email's and phone numbers from websites.

SocialPwned
SocialPwned

Allows to get the emails from a target published in social networks to find possible credentials.

OSINTui
OSINTui

OSINT from your favorite services in a friendly terminal user interface.

SimplyEmail
SimplyEmail

Email recon made fast and easy, with a framework to build on.

PhoneInfoga
PhoneInfoga

Information gathering framework for phone numbers.

Metabigor
Metabigor

Intelligence tool to do OSINT tasks and more but without any API key.

infoooze
infoooze

User-friendly OSINT tool that allows you to quickly and easily gather informations.

Oculus
Oculus

OSINT tool used to discover environments, directories, and subdomains of a particular domain.

Slack Watchman
Slack Watchman

Monitoring your Slack workspaces for sensitive informations.

Photon
Photon

Incredibly fast crawler designed for OSINT.

Sniff-Paste
Sniff-Paste

Pastebin OSINT harvester.

Yoga
Yoga

Your OSINT Graphical Analyzer.

leakScraper
leakScraper

Set of tools to process and visualize huge text files containing credentials.

WhatsMyName
WhatsMyName

Enumerate usernames across many websites.

Namechk
Namechk

Check usernames on more than 100 websites, forums and social networks.

GitFive
GitFive

An OSINT tool to investigate GitHub profiles.

ExifTool
ExifTool

ExifTool meta information reader/writer.

AttackSurfaceMapper
AttackSurfaceMapper

AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

FOCA
FOCA

Tool to find metadata and hidden information in the documents.

Maigret
Maigret

Collect a dossier on a person by username from thousands of sites.

espionage
espionage

Collects informations related to domains whois, history, dns records and more.

Hackingtool
Hackingtool

ALL IN ONE Hacking Tool For Hackers.

BlackWidow
BlackWidow

Web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Gitrob
Gitrob

Reconnaissance tool for GitHub organizations.

MSDorkDump
MSDorkDump

Google Dork File Finder.

Oh365UserFinder
Oh365UserFinder

O365 user enumeration and password spraying tool.

ScrapeIn
ScrapeIn

Harvest employee email addresses from a specific company through LinkedIn.

GHunt
GHunt

Offensive Google framework.

Sub3 Suite
Sub3 Suite

A free, open source, cross platform Intelligence gathering tool.

Maryam
Maryam

Open-source Intelligence Framework.

The Social-Engineer Toolkit
The Social-Engineer Toolkit

Open-source penetration testing framework designed for social engineering.

Sherlock
Sherlock

Hunt down social media accounts by username across social networks.

Maltego
Maltego

Open source intelligence and forensics application.

Recon-ng
Recon-ng

OSINT tool aimed at reducing the time spent harvesting information from open sources.

Metagoofil
Metagoofil

Search Google and download specific file types.

cloud_enum
cloud_enum

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

Rengine
Rengine

Automated reconnaissance framework for webapps, highly configurable streamlined recon process.

Th3inspector
Th3inspector

All in one tool for Information Gathering.

theHarvester
theHarvester

E-mails, subdomains and names Harvester.

SpiderFoot
SpiderFoot

Automates OSINT for threat intelligence and mapping your attack surface.

commit-stream
commit-stream

OSINT tool for finding Github repositories by extracting commit logs in real time.