👀 Some of my favorite OSINT tools.
If you want me to add something, just make a pull request.
If you want a list of resources rather than tools, you should check out this repository.
- Maltego - Open source graphical link analysis tool for gathering and connecting OSINT.
- Metagoofil - Extract metadata from popular file types.
- Recon-ng - For lots of web based recon.
- theHarvester - (in my opinion) A Better version of recon-ng.
- cree.py - A geolocation OSINT tool for social media.
- SpiderFoot - Open source footprinting and intelligence-gathering tool.
- XRay - Tool for mapping and OSINT gathering from public networks.
- trape - A cool people tracker written in python.
- Goohak - Automatically launch Google hacking queries against a target domain.
- The Infected Drake - A web-penetration testing toolkit, presently suited for reconnaissance purposes.
- Email2PhoneNumber - A script for attempting to find a phone number associated with an e-mail.
- ReconDog - A reconnaissance multi tool with a wide array of features.
- OWASP Amass - Get information from: DNS, web scraping, APIs, and web archives.
- iKy - Collects information on an e-mail address and displays it in a fancy UI.
- Moriarty - Collects information from phone numbers
- GHunt - GHunt is an OSINT tool to extract a lot of informations of someone's Google Account email.
- Spyse - OSINT gathering platform that collects valuable data and stores it in its own database to provide info without scanning. Info clusters: IPv4 hosts, domains/whois/site info, ports/banners/protocols, technologies, maintain biggest SSL/TLS db, AS, OS etc...
- Check Usernames
- No Name Username Scanner
- Gaddr
- KnowEm (Searches a lot of things)