Top 283 osint open source projects

Enumerate information from NTLM authentication enabled web endpoints 🔎
Extracting URLs of a specific target based on the results of ""
I See You
ISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary reconnaissance which will help them in performing further targeted attacks.
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation and geolocation lookup tool / Traceroute server
A helper to run OSINT queries & manage results continuously
LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering credentials belonging to their target.
Moriarty Project
This tool gives information about the phone number that you entered.
OSINT username checker. Collect a dossier on a person by username from a huge number of sites.
OSINT Tool For Scraping Dark Websites
An automatic SQL Injection tool which takes advantage of ~DorkNet~ Googler, Ddgr, WhatWaf and sqlmap.
LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping
Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.
Git Vuln Finder
Finding potential software vulnerabilities from git commit messages
✭ 221
An OSINT tool to find contacts in order to report security vulnerabilities.
Commit Stream
#OSINT tool for finding Github repositories by extracting commit logs in real time from the Github event API
Burp Extender plugin that generates a sitemap of a website using Wayback Machine
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
Misp Modules
Modules for expansion services, import and export in MISP
A portable OSINT Swiss Army Knife for DFIR/OSINT professionals 🕵️ 🕵️ 🕵️
A Github organization reconnaissance tool.
OSINT Tool to find Breached Credit Cards Information
Discover internet-wide misconfigurations while drinking coffee
Misp Training
MISP trainings, threat intel and information sharing training materials with source code
Twitter Intelligence
Twitter Intelligence OSINT project performs tracking and analysis of the Twitter
⚠️WARNING: This project now become part of project
✭ 178
Burpsuite Asset discover
Burp Suite extension to discover assets from HTTP response.
Network recon framework, published by @cea-sec & @ANSSI-FR. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!
Yar is a tool for plunderin' organizations, users and/or repositories.
Python library and CLI for the Bug Bounty Recon API
Venmo Data
Venmo trasaction dataset for data analysis/visualization/anything
Osint Tools
👀 Some of my favorite OSINT tools.
The Simplistic Information Gathering Engine | Find Advanced Information on a Username, Website, Phone Number, etc.
Find leaked emails with your passwords
Sherlock Js
Find usernames across over 170 social networks - Fast & flexible remake of sdushantha/sherlock
Tlosint Live
Trace Labs OSINT Linux Distribution based on Kali.
Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.
Tool to automate common OSINT tasks
Offensive Dockerfiles
Offensive tools as Dockerfiles. Lightweight & Ready to go
Detection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.
A service that can track data breaches like "Have I Been Pwned", but it is specific for Taiwan.
Burpsuite Xkeys
A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
OnionSearch is a script that scrapes urls on different .onion search engines.
Paskto - Passive Web Scanner
Netstalking Catalogue
Каталог нетсталкерских ресурсов, команд, инструментов, источников контента.
✭ 134
Userrecon Py
Username recognition on various websites.
✭ 131
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
1-60 of 283 osint projects