Contains a list of OSINT tools, OSINT tips, datasets, Maltego transform and others. There are free and paid tools you can use and owner is not responsible, only for knowledge or educational purposes. Sorry if some of the resources have closed the service or error owner doesn't always check what's going on with the resources here, thank you
#Exif tag name and data type
Artist string
Author string
Caption string
Categories string
Collections string
DateTime date
DPP lang-alt
EditStatus string
FixtureIdentifier string
Keywords string
Notes string
ObjectCycle string
OriginatingProgram string
Rating real
Rawrppused boolean
ReleaseDate string
ReleaseTime string
RPP lang-alt
Snapshots string
Tagged boolean
More : man exiftool (Run on your terminal)
Site :
#Write metadata
- exiftool -tagname="string" file
example : exiftool -Author="Bayu" test.txt
you can add multiple tag and multiple file
#Delete metadata
- exiftool -tagname="" file
example : exiftool -Author="" test.txt
#Delete mass metadata
- exiftool -all="" file
example : exiftool -all="" file
#Usage : man exiftool or read documentation exiftool.org
Not there are tag no writetable, make sure tagname can write
#!Note
Use fresh file, if your file has been compressed or edit metadata you got a default metadata You can use xmp format for edit, write and delete metadata Check the documentation
- Instagram Be carefull using this tool
- Tinfoleak
- SOCMINT tool
- Graph Search
- Chromium Code Search
- Android Code Search
- Code Finder
- CodeSeek
- Debian Code Search
- Scala
- SearchCode
- SourceCodeOnline
- Woboq
- Better Whois
- DNS History
- DNS Spy
- DNS Checker
- HackerTarget
- Shodan
- Wappalyzer
- Sudomy
- Testssl
- Nmap
- builtwith
- VirusTotal
- Nessus
- Nikto
- Webshag
- Apility.io
- Alien Vault
- AutoShun
- Blacklist Check Tool
- Censys
- CVE Details
- IBM X-Force Exchange
- JoeSandbox Cloud
- Is It Hacked?
- Is It Phishing
- Kaspersky Threat
- Malware Domain List
- Malware URL Website
- Quttera
- Virus total
- Virus Share
- Web Cookies Scanner
- Yara
- Spiderfoot
- NVD
- Seclist
- CVE Mitre
- Malicious Check
- Email Header Analysis
- Url Scan
- AnyRun
- Hybrid Analysis
- VMRay Sandbox
- Browser Sandbox
- Fillter Bypass
- Abuse IP DB
- Talos CTI
- Phishing Analysis Tool
- Phish Verification System
- PolySwarm
- ThreatCrowd
- HYAS Insight
- Whats my ip This tools can show your ip address isp provider
- Ip 2 location This tools can show your ip address isp provider and geo location
- Wigle Maps and database of 802.11 wireless networks, with statistics, submitted by wardrivers, netstumblers, and net huggers
- Fing Net Scan
- Wifianalyzer
- Signalmonitoring
- Angry Ip
- Advanced ip scanner
- Alien Vault
- Exploit db
- AT&T
- Yara
- Virustotal
- Joesandbox
- Spiderfoot
- Open CTI
- Solarwinds
- VMware Carbon Black Endpoint
- Insightidr
- MISP
- NVD
- Seclist
- CVE Mitre
- Whois Record
- Abuse IP DB
- Talos CTI
Tips
You can find the file hash or other threat indicator
Dorking is a wonderful thing, you can use this technique to search for anything such as index of a website, looking for live online camera server and other specifics, as for dorking commands that you can do for example
- intitle: Search for specific titles
- inurl: Search for specific urls or paths
- intext: Search for specific words or contects
- filetype: Search for files
- site: Search from a specified target
- Wildcard or symbol * (star) Find all web pages, for example: seccodeid*
- Define:term Search for all things with specified terms, example define:seccodeid
- cache page Take a snapshot of an indexed page. Google uses this to find the right page for the query you're looking for. Website or target specifically
- allintext: Searches for specific text contained on a web page
- allinurl: Find various keywords in a URL
- allintitle: Restricts results to those containing all terms specified in a title
- link: List of web pages that have links to the specified URL
- (|) Pipe. This is a logical operator, | "tips" will show all the sites which contain either, or both words
- (+) Used to concatenate words, useful to detect pages that use more than one specific key
- (-) Minus operator avoids showing results that contain certain words, e.g. security -trails will show pages that use "security" in their text, but not those that have the word "trails"
example
intext:"hacking" site:seccodeid.com site:www.github.com ext:doc | ext:docx | ext:odt | ext:rtf | ext:sxw | ext:psw | ext:ppt | ext:pptx | ext:pps | ext:csv
- us.searchboth.net
- Archive.org
- Yandex
- Pastebin
- Topix.com
- search.carrot2.org/stable/search
- Shodan
- Piratebays
- Onesearch
- Searchencrypt
- Duckgo
- Waymore
- Dehashed
- Haveibeenpwned
- Intelligence X
- Wiki Leaks
- DDO Secrets
- Breached Availabe on Darkweb
- Dark Tracer
- SCI HUB This domain will always change
- argali
- ciddb
- cellrevealer
- spydialer
- Twilio
- Reverse lookup
- PhoneInfoga
- Sync
- National cell
- Getcontact
- Moriarty-Project
- Get Contact
- True Caller
- Cell Id Lookup
- Device Info
- Cell Finder
- Unkownphone
- Whocallsme
- elenchitelefonici
- nationalcellulardirectory
- phonebooks
- International Phone Directories
- PhoneInfoga
- Spy Dialer
- Phone Validator
- Fone finder
- 411 reverse phone
- Number guru
- Zaba reverse phone
- FullContact
- HLR Lookup
- Ceebydith HLR Lookup
- Free HLR
- HLR Lookup API
- Maltego Phone Search
- Facebook lookup id
- Sherlock
- Socialsearcher Users
- Sherlock
- Nexfil
- Googlesocialsearch
- Google Social Network Transforms
- FullContact
- maigret
Group Search: site:facebook.com inurl:group
Group Wall Posts Search: site:facebook.com inurl:wall
Pages Search: site:facebook.com inurl:pages
Public Profiles: allinurl: people ‘‘name’’ site:facebook.com
Photos By - https://www.facebook.com/search/taget_id/photos-by
Photos Liked - https://www.facebook.com/search/taget_id/photos-liked
Photos Of - https://www.facebook.com/search/taget_id/photos-of
Comments - https://www.facebook.com/search/taget_id/photos-commented
Friends - https://www.facebook.com/search/taget_id/friends
Videos Tagged - https://www.facebook.com/search/taget_id/videos
Videos By - https://www.facebook.com/search/taget_id/videos-by
Videos Liked - https://www.facebook.com/search/taget_id/videos-liked
Videos Commented - https://www.facebook.com/search/taget_id/videos-commented
Events Attended - https://www.facebook.com/search/taget_id/events-joined
Relatives - https://www.facebook.com/search/taget_id/relatives
or you can use dork for spesific example
id site:facebook.com
page site: facebook.com
id site:facebook.com *
page site: facebook.com *
- Intel Technique
- DumpItBlue
- Fanpage Karma
- Facebook Search
- Fb-sleep-stats
- Lookup-ID.com
- SearchIsBack
- Wolfram Alpha Facebook Report
- search.twitter.com
- twitter advanced
- twitter who_to_follow
- Backtweets BackTweets is a Twitter analytics tool that allows users to search through a Tweet archive.
- First Tweet
- Foller.me
- Followerwonk
- GeoSocial Footprint
- Gigatweeter
- Harvard TweetMap
- Hashtagify
- Hashtags.org
- MyTweetAlerts A tool to create custom email alerts based on Twitter search.
- OneMillionTweetMap
- SnapBird
- Social Bearing
- Social Rank First Follower
- Spoonbill
- Tagdef
- TeachingPrivacy
- Tinfoleak
- Trends24
- TrendsMap
- Ttrends
- twbirthday
- TwChat
- tweepsect
- TweetArchivist
- TweetDeck
- Tweeten
- TweetMap
- TweetMap
- TweetPsych
- Tweetreach
- TweetStats
- TweetTunnel
- Twellow
- Tweriod
- Twiangulate
- Twilert
- Twipho
- Twitonomy
- TwitRSS
- Twitter Advanced Search
- Twitter Audit
- Twitter Chat Schedule
- Twitter Counter
- Twitterfall
- Twitter Search
- TWUBS Twitter Chat
- Schedule Warble
- Twint
Google queries for LinkedIn
Public Profiles: site:linkedin.com inurl:pub
Updated Profiles: site:linkedin.com inurl:updates
Company Profiles: site:linkedin.com inurl:companies
Google queries for MySpace
Profiles: site: myspace.com inurl:profile
Blogs: site:myspace.com inurl:blogs
Videos: site:myspace.com inurl:vids
Jobs: site:myspace.com inurl:jobs
Videos: site:myspace.com ‘‘TARGET NAME’’ ‘‘videos’’
Comments: site:myspace.com ‘‘TARGET NAME’’ ‘‘comments’’
Friends: site:myspace.com ‘‘TARGET NAME’’ ‘‘friends’’
https://pen-testing.sans.org/blog/2015/12/08/effective-shodan-searches
- DownloadHelper Firefox plugin that will assist in downloading all media from a website
- Exif Viewer
- HTTrack
- Meta OSINT
- Shrelock
- Maltego
- OSINT Framework
- Creepy
- Twint
- Telegram OSINT
- Recon-Ng
- Metagoofil
- tinfoleak
- maigret
- mosint
- osint_stuff_tool_collection
- instaloctrack
- SpyScrap
- osintteye
- metagofil
- recon-ng
- Harvester
- Geo creepy
- trape
- ReconDog
- iKy
- Ghunt
- Moriarty-Project
- Mr.Holmes
- octosuite Advanced Github OSINT Framework
- Toutatis
- A tool for OSINT based threat hunting
- K𝚊𝚛𝚖𝚊 𝚟𝟸 is a Passive Open Source Intelligence
- Secure ELF parsing/loading library for forensics reconstruction of malware, and robust reverse engineering tools
- OSINT tool that allows you to find a person's accounts and emails + breached email
- A tool to search Aviation-related intelligence from public sources
- PoC OSINT Discord user and guild information harvester
- Automate downloading archived deleted Tweets
- Discover the location of nearby Telegram users
- OSINT Tool on Twitter and Instagram
- The World's simplest facial recognition api for python and the command line
- Automation and automation of digital forensic tools
- E4GL30S1NT
- Commit stream finding Github repositories by extracting commit
- SingleFile copy of an entire web page in a single HTML file
- Photon Incredibly fast crawler designed for OSINT
- More
- Echosec
- Foller
- Tweet Deck
- Tweet Trips
- Tweet Tonomy
- Twinangulate
- Geosocial
- Hash tracking
- Bellingcat
- Socmint tool
- Spyse
- OSINT Combine
- Cell Id Lookup
- Device Info
- Cell Finder
- GRABIFY IP
- Cek Rekening
- Thatsthem
- IntelligenceX
Search channel, username anymore
- Telegago
- TelegramDB
- Telegram Search Engine
- Telegram Database: channels, groups and users
- Telegram channels and groups catalog
- Telegago
- Social Finder
- Lyzem Search
- Discover The Best Telegram Channels
- Tele Channel Overiview
Extension find email, people on profile Linkedin
- Authorstream
- Find-pdf-doc
- Free Full PDF
- PDF Search Engine
- RECAP
- SlideShare
- Scribd
- soPDF.com
- FileChef
- File Search Engine
- FilePursuit
- NAPALM FTP Indexer
- Cryptome
- Finda PDF
- Find PDF Doc
- Buffer
- Hashtatit
- Rival IQ
- SocialBakers
- SociaBlade
- Social Searcher
- Mail.Ru Social Network Search
- WATools
- Profil3r
- Oblivion
- Social Analyzer
- 7Photos
- Baidu Images
- Bing Images
- Clarify
- Flickr
- GoodSearch Image Search
- Google Image
- Image Identification Project
- MyPicsMap
- PhotoBucket
- Picsearch
- PicTriev
- StolenCameraFinder
- TinEye - Reverse image search engine.
- Worldcam
- Yahoo Image Search
- Yandex Images
- Betaface
- Search4faces
- Pimeyes
- Reminiai
- Search4face
- Vkfacewatch
- Facecheck
- Findmyclone
- Face++
- AWS-Recon
- Azure vidio indexer
- ExifTool
- Exif Search
- FotoForensics
- Gbimg.org
- Ghiro
- ImpulseAdventure
- Jeffreys Image Metadata Viewer
- JPEGsnoop
- Metapicz
- Forensically
- DiffChecker
- ImgOps
- Pimeyes
- Reminiai
- Search4face
- Vkfacewatch
- Facecheck
- Findmyclone
- Face++
- AWS-Recon
- Image Analyzer
- AlltheFreeStock
- Death to Stock
- Freeimages
- Freestocks.org
- Gratisography
- IM Free
- ISO Republic
- iStockphoto
- Kaboompics
- LibreStock
- Life of Pix
- NegativeSpace
- New Old Stock
- Pixabay
- Pexels
- Stocksnap
- Shutterstock
- tookapic
- Unsplash
- Pimeyes
- Aol Videos
- Bing Videos
- Blinkx
- Clarify
- Clip Blast
- DailyMotion
- Deturl
- DownloadHealper
- Earthcam
- Insecam
- Frame by Frame Browser plugin that allows you to watch YouTube videos frame by frame.
- Geosearch
- Internet Archive: Open Source Videos
- LiveLeak
- Metacafe
- Metatube
- Montage
- Veoh
- Vimeo
- Voxalead
- Yahoo Video Search
- YouTube
- YouTube Data Viewer
- ccSUBS Download Closed Captions & Subtitles from YouTube
- YouTube Metadata
- YouTube Geofind
- Video Stabilization Methods
- Azure vidio indexer
- Atlasify
- Batchgeo
- Bing Maps
- CartoDB
- Colorbrewer
- CrowdMap
- Dominoc925
- DualMaps
- GeoGig
- GeoNames
- Esri
- Flash Earth
- Google Earth
- Google Earth Pro
- Google Maps
- Google Maps Streetview Player
- Google My Maps
- GPSVisualizer
- GrassGIS
- Here
- Hyperlapse
- Inspire Geoportal
- InstantAtlas
- Instant Google Street View
- Kartograph
- Leaflet
- MapAList
- MapBox
- Mapbuildr
- Mapchart.net
- Maperitive
- MapHub
- MapJam
- Mapline
- Map Maker
- Mapquest
- Modest Maps
- NGA GEOINT
- OpenLayers
- Polymaps
- Perry Castaneda Library
- Open Street Map
- QGIS
- QuickMaps
- Scribble Maps
- Terrapattern
- Tableau
- Timescape
- View in Google Earth
- Wikimapia
- World Aeronautical Database
- WorldMap Harvard
- ViaMichelin
- Yahoo Maps
- Zeemaps
- Sentinel Hub
- Maxar
- USGS (EarthExplorer)
- Zoom Earth
- Remote Pixel
- SunCalc
- ArcGIS
- Pic2Map
- Mapillary
- KartaView
- Satellites Pro
- Liveuamap
- Descartes Labs
- Baidu Maps
- MapChecking
- Windy
- SOAR
- digiKam
- About Urban Legends
- Captin Fact
- Check
- Citizen Desk
- Emergent
- Fact Check
- Full Fact
- MediaBugs
- Snopes The definitive Internet reference source for urban legends, folklore, myths, rumors, and misinformation.
- Verification Handbook
- Verification Junkie
- Verily
- Cybercheff
- Bettercap Framework to perform MITM (Man in the Middle) attacks.
- Yersinia A framework for layer 2 attacks
- FeatherDuster An automated, modular cryptanalysis tool
- Hash Extender A utility tool for performing hash length extension attacks
- Hashcat Password cracking
- DLLInjector Inject dlls in processes
- Metasploit Penetration testing software and exploit
- Pwntools CTF framework and exploit development library
- ROPgadget Framework for ROP exploitation
- Exiftool Read, write and edit file metadata
- Malzilla Malware hunting tool
- Zmap An open-source network scanner.
- Nmap Net mapping and port scanner
- Wireshark Analyze the network dumps
- Apktool Android Decompiler
- Ninja Binary Binary analysis framework
- Binwalk Analyze, reverse engineer, and extract firmware images
- GDB The GNU project debugger
- GEF Advanced debugging capabilities for exploit devs & reverse engineers on Linux
- IDA Most used Reversing software
- PEDA Python Exploit Development Assistance for GDB
- Radare2 UNIX-like reverse engineering framework and command-line toolset
- Windbg Windows debugger distributed by Microsoft
- Boomerang Decompile x86 binaries to C
- Detox A Javascript malware analysis tool
- SmartDeblur Restoration of defocused and blurred photos/images
- ImageMagick Tool for manipulating images
- Exiv2 Image metadata manipulation tool
- Stegbreak Launches brute-force dictionary attacks on JPG image
- Steghide Hide data in various kind of images
- Stegsolve Apply various steganography techniques to images
- SearchSploit Command line search tool for Exploit-DB
- Opencellid
- Location API
- Cell Mapping
- Global Internet Infrastructure Map
- Spy Dialer
- Phone Validator
- Free Operator Search
- HLR Lookup
- Ceebydith HLR Lookup
- Free HLR
- HLR Lookup API
- Maltego Phone Search
Telegram
- TelegramDB
- Telegram Search Engine
- Telegram Database: channels, groups and users
- Telegram channels and groups catalog
- Telegago
- Social Finder
- Lyzem Search
- Discover The Best Telegram Channels
- Tele Channel Overiview
Build your sockpuppet account and proctect your privacy
- Thispersondoesnotexist
- Protonmail
- Nordvpn
- NOX
- Browser Extension
- Burner Phone Number
- Hushed
- Temp Phone Number
- Temp Mail 1
- Temp Mail 2
- Temp Mail 3
- Cryptocurrency Payment Monero
- Cryptocurrency Payment Bitcoin
- Openpgp
- Operating System
Social Network and blogging
- Wordpress
- Blogger
- Medium
- Letsenhance
- Cutout
- Upscale
- Canva
- Adobe
- Picwish
- Fotor
- SIUN
- DPED
- neural-enhance
- neural-enhance
- Reminiai
- Depix
- Realesrgan