We lack of heat.
OSINT Repos List, Repository with gathered from GitHub utilities for OSINT, Development and DevOps. The number of artifacts in the repository exceeded 2800: https://github.com/bormaxi8080/osint-repos-list
A list of OSINT resources and tools that may be useful to you when conducting investigations related to the Republic of Azerbaijan: https://github.com/paulpogoda/OSINT-Tools-Azerbaijan
A list of OSINT resources and tools that may be useful when conducting investigations related to Lithuania: https://github.com/paulpogoda/OSINT-Tools-Lithuania
Qatar OSINT Tools. Open Data & Government Portals, Company Registries, Land Records / Property Ownership, People Search, Court, Procurement & Tenders, Maps and Geolocation Resources: https://unishka.substack.com/p/osint-of-qatar
Nigeria OSINT Tools. Open Data Portals, Company Registries, Land & Property Records, Maps, Vehicle Information, People Search / Personal Identifiers, Court, Procurement & Contracts, WHOIS and Domain Info: https://unishka.substack.com/p/osint-of-nigeria
Registry Amnesia: How Russian Data on Sanctioned Companies is disappearing - and how we put it back.
Since Russia's full-scale invasion of Ukraine in 2022, the dictatorship has increasingly hidden and falsified data in its trade registry. We’ve churned through 100GB of compressed XML files, so that we can now present both: the current, memory-impaired version as well as the pre-war data.
https://www.opensanctions.org/articles/2025-05-30-egrul-amnesia/
Investigation Economic Crime Like a Pro: Tools, Tradecraft and Methods for OSINT Analysis
Article by Brett M:
- Shell Companies: What And why?
- Red Flags for OSINT Analysts
- OSINT Methodology for Investigating Economic Crime
- Corporate Registries
- Sanctions Databases
- Offshore Data
- General Search Tools
- Use visualization tools to map out connections
- Essential Tools for OSINT Investigators
- Tradecraft Skills for Economic Crime Investigators
OSINT Tools, Services and Investigations:
The Disinformation Laundromat. An OSINT tool to expose mirror and proxy websites: https://github.com/ASD-at-GMF/disinfo-laundromat
Open Measures is a platform for finding content on various ‘low-popularity’ social networks. Some of which have no censorship or are very free (4chan, BlueSky, Fideverse). There is a search on social networks popular in the former USSR countries (VK, OK, Rutube), as well as on archives of now defunct social networks (Parler). OpenMeasures allows to search for content by keywords, get statistics on the use of these words in posts and see which domains are most often mentioned when discussing a certain topic (and many other different features): https://public.openmeasures.io/timeline
Check-up is a project aimed at analyzing the presence of misinformation in health ads that are promoted on major news websites in Brazil: https://github.com/aosfatos/check-up
Blockchain OSINT. A collection of tools and resources useful for OSINT investigations in the cryptocurrency: https://github.com/codeluu/blockchain-osint
Fakjs is a fast, lightweight, and extensible tool written in Go, designed to extract potentially sensitive information from publicly accessible JavaScript files. It plays a crucial role in reconnaissance during security assessments, allowing you to discover information that might aid in understanding the inner workings of a web application or reveal unintended data exposures: https://github.com/thd3r/fakjs
JSFScan.sh. Automation for javascript recon in bug bounty: https://github.com/KathanP19/JSFScan.sh
Domain Scanner. A powerful and flexible domain name availability checker written in Go. This tool helps you find available domain names based on various patterns and filters: https://github.com/xuemian168/domain-scanner
DDos Ripper a Distributable Denied-of-Service (DDOS) attack server that cuts off targets or surrounding infrastructure in a flood of Internet traffic: https://github.com/palahsu/DDoS-Ripper
Universal Search & AI:
Terminator. Computer use SDK for building agents that learn from human screen recordings. Cross-platform (Windows/macOS/Linux), deterministic, and ready for L5 desktop automation: https://github.com/mediar-ai/terminator
Software Development & APIs:
tailspin works by reading through a log file line by line, running a series of regexes against each line. The regexes recognize patterns you expect to find in a logfile, like dates, numbers, severity keywords and more: https://github.com/bensadeh/tailspin
HasID Identify the different types of hashes used to encrypt data and especially passwords: https://github.com/psypanda/hashID
Linux & DevOps:
DevOps Bash Tools. 1000+ DevOps Bash Scripts - AWS, GCP, Kubernetes, Docker, CI/CD, APIs, SQL, PostgreSQL, MySQL, Hive, Impala, Kafka, Hadoop, Jenkins, GitHub, GitLab, BitBucket, Azure DevOps, TeamCity, Spotify, MP3, LDAP, Code/Build Linting, pkg mgmt for Linux, Mac, Python, Perl, Ruby, NodeJS, Golang, Advanced dotfiles: .bashrc, .vimrc, .gitconfig, .screenrc, tmux: https://github.com/HariSekhon/DevOps-Bash-tools
BadDNS. Python cli tool for detecting domain/subdomain takeovers (all kinds). Check for dangling CNAME records, NS records, MX records. Enumerate subdomains by NSEC-walking. Check HTML content + TXT record content: https://github.com/blacklanternsecurity/baddns
Flipper Zero & Other Devices:
Flipper JVM Protobuf. JVM library using git submodule from repository to simplify implementation: https://github.com/flipperdevices/flipperzero-protobuf-jvm
New from CyberDetective:
WEATHER2GEO. Python tool that filters cities by the weather that was in them on a certain date and time (MSN API). The list of cities can be customised by changing the text file: https://github.com/elliott-diy/Weather2Geo
Rhino User Checker is a command line in a web interface (which is funny in itself). The tool searches for a nickname on a number of sites: https://usercheck.oscarzulu.org/
New from GitHub Community:
Cosmos Server. The Most Secure and Easy Selfhosted Home Server. Take control of your data and privacy without sacrificing security and stability (Authentication, anti-DDOS, anti-bot): https://github.com/azukaar/Cosmos-Server
LinkedIn: OSINTech's Featured Timeline
SubStack: OSINTech's Substack
WARNING! All tools, programs and techniques published in this article and repository are used for informational, educational purposes or for information security purposes. The authors are not responsible for the activities that users of these tools and techniques may carry out, and urge them not to use them to carry out harmful or destructive activities directed against other users or groups on the Internet.