Father Frost
Tesari is an OSINT Copilot built to help the community and become the first step in any investigation into organized crime, trafficking, corruption, and other global risks
OSINT Repos List, Repository with gathered from GitHub utilities for OSINT, Development and DevOps. The number of artifacts in the repository exceeded 3200: https://github.com/bormaxi8080/osint-repos-list
AI-Assisted Analysis of War-Related Content on Grey Zone Domains.
Since the beginning of the illegal Russian invasion of Ukraine, Rolf Fredheim, Elsa Isaksson & James Pamment have been tracking how videos of atrocities make it from fringe channels, via aggregators, to mainstream social media.
To aid with this work, we created a simple LLM web-scraper and analytical tool designed to shield the researcher from the content. This working paper describes the murky online environment that this type of content is seeded to, explains how the tool works, and runs tests to show how reliable we could make it. Potential applications in the world of content moderation, policing, and intelligence analysis are obvious - but what we really wanted to demonstrate here is how cheap, quick, and (relatively) easy it can be to create such tools:
https://lucris.lub.lu.se/ws/portalfiles/portal/235901757/398001_Web_version_WP2025_2.pdf
OSINT Tools, Services and Investigations:
Nixintel's OSINT Resource List: https://start.me/p/rx6Qj8/nixintel-s-osint-resource-list
Async Parser for Telegra.ph: https://github.com/Ladvix/telegraph-parser
mkfd. RSS feed builder created with Bun and Hono - builds from webpages, email folders, and REST API calls: https://github.com/TBosak/mkfd
Capsaicin. Next-generation intelligent Web Fuzzer & Directory Scanner written in Go. Features WAF detection, secret scanning, auto-calibration, and smart 403 bypass: https://github.com/hawtsauceTR/capsaicin
Mail OSINT Tools. Discover OSINT tools that uncover information tied to any email address, like leaks, social media accounts, and phone numbers: https://github.com/johnacelazatin/mail-osint-tools
JS Key Hunter. Discover and extract AWS, Azure, Stripe, Firebase, JWT, and high-entropy keys from any app in just 10 seconds with this one-click bookmarklet: https://github.com/SHDWWasTaken/js-key-hunter
Robin. AI-Powered Dark Web OSINT Tool: https://github.com/apurvsinghgautam/robin
CamXploit. Find, analyze, and check for exposed IP cameras with open ports, known vulnerabilities, and weak login credentials: https://github.com/spyboy-productions/CamXploit
BloodSOCer is a Python automation tool that aggregates threat intelligence data from multiple sources (Mitre ATT&CK, Sigma rules, Atomic Red Team) and produces JSON files to ingest in BloodHound in OpenGraph format. BloodSOCer can also upload the files to BloodHound and set the icons for the custom objects if it has API Tokens defined in the configuration. Security analysts can then visualize the data from any angle, and a few Cypher queries are provided to help you get started: https://github.com/Scoubi/BloodSOCer
IOC Ranger. Check and analyze hashes, IPs, domains, and URLs swiftly with IOC-Ranger for enhanced cybersecurity insights and reputation assessment: https://github.com/valoranthater/IOC-Ranger
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH: https://github.com/Hackmanit/Web-Cache-Vulnerability-Scanner
Universal Search & AI:
ArkhamMirror. Offline investigative assistant that uses local AI to turn the chaos of documents and files into connection graphs, timelines, and structured data. It is the perfect tool for analyzing sensitive evidence and uncovering hidden links, guaranteeing that no data ever leaves your PC: https://github.com/mantisfury/ArkhamMirror
AbbreviationFinder provides definitions of over 70,000 acronyms. These abbreviations cover 12 industries, including business, electronics, finance, science, computer, agriculture, internet, automobile, education, real estate, sports, and transportation: https://www.abbreviationfinder.org/
Video2x. A machine learning-based video super resolution and frame interpolation framework: https://github.com/k4yt3x/video2x
Software Development & APIs:
pyVFeed. Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions: https://github.com/vfeedio/pyvfeed
OxyMouse is a Python library for generating mouse movements. It is designed to work with any browser control library that supports 2D moving of the mouse cursor: https://github.com/oxylabs/OxyMouse
Linux & DevOps:
JAuth. Lightweight SSL/TLS reverse proxy with authorization(via Telegram and SSH) for self-hosted apps: https://github.com/Jipok/Jauth
Flipper Zero & Other Devices:
Flipper Zero Hex Editor - an application for emergency (no phone) file editing: https://github.com/dunaevai135/flipper-zero-hex_editor
New from CyberDetective:
OSINT Investigation Reports Templates (FREE)
- breach analysis report
- network reconnaissance
- communication patterns
- domain website
- individual investigation
https://github.com/JambaAcademy/OSINT/tree/main/osint-templates/investigation-reports
LinkedIn: OSINTech's Featured Timeline
SubStack: OSINTech's Substack
WARNING! All tools, programs and techniques published in this article and repository are used for informational, educational purposes or for information security purposes. The authors are not responsible for the activities that users of these tools and techniques may carry out, and urge them not to use them to carry out harmful or destructive activities directed against other users or groups on the Internet.