releasereliz v4.3.2 246 tests passing246 test oʻtdi MIT changelogoʻzgarishlar

OSINT CLI for serious recon. Jiddiy razvedka uchun OSINT CLI.

47 modules across passive + active reconnaissance. Persistent chat shell — Claude-Code-style prompt with slash commands, live tab completion, and ghost-text suggestions. Entity graph + bounded BFS auto-pivot. Free APIs only, no paid keys. Authorised security testing only.

Passiv va faol razvedka uchun 47 modul. Doimiy chat shell — Claude-Code uslubidagi prompt: slash-buyruqlar, jonli tab-toʻldirish va ghost-text takliflari. Entity-graph · bogʻliq mavjudotlar zanjirini avtomatik kuzatadi. Faqat bepul APIlar, hech qanday pulli kalit kerak emas. Faqat ruxsat etilgan xavfsizlik testi uchun.

$ install ↓$ oʻrnatish ↓ github releases →relizlar →

osint — chat shell ~/work · 80×24

$ osint   # opens straight into a persistent prompt — no menu
  type a target or /command · tab completes · → accepts ghost text · Ctrl-R history

❯ github.com ⟶ github.com/security  [DOMAIN · 32 modules]
  ● Scanning   github.com        [DOMAIN] · 32 modules · 4.2s elapsed
  ✓ certspotter          39 subdomains via CT logs
  ✓ favicon_hash         mmh3=1848946384  → shodan.io/search?…
  ✓ wayback_urls         250 archived URLs + 17 historical subdomains
  ✗ subdomain_takeover   0/32 hosts CRITICAL
  graph: +298 entities · +299 edges  → /graph show domain github.com
❯ prompt returns — run another target, or /profile red-team

01 // install01 // oʻrnatish

One command. Pick a platform.Bitta buyruq. Platformangizni tanlang.

SHA-256 verified · MIT · zero phone-homeSHA-256 tekshiruvi · MIT · telemetriyasiz

Linux + macOS · curl pipe to bash · pins to ~/.local/bin · no sudo.

$curl -fsSL https://raw.githubusercontent.com/Azizbek16l/mytools-osint/main/scripts/install.sh | bash

Windows PowerShell · downloads to %LOCALAPPDATA%\Programs\mytools-osint · adds to user PATH · no admin.

PS>irm https://raw.githubusercontent.com/Azizbek16l/mytools-osint/main/scripts/install.ps1 | iex

macOS arm64 + Linux x86_64 · auto-upgrade via brew upgrade.

$brew tap Azizbek16l/osint && brew install mytools-osint

Windows x64 · auto-upgrade via scoop update.

PS>scoop bucket add osint https://github.com/Azizbek16l/scoop-bucket && scoop install mytools-osint

Windows x64 · official Microsoft package repo. pending review on each new release.

PS>winget install Azizbek16l.mytools-osint

First launch self-extracts (~8–12 s on Nuitka onefile). Subsequent runs are instant.

02 // features02 // imkoniyatlar

Built like a tool you'd actually carry.Doim ishlatadigan asbobday qilingan.

Persistent chat shell

Claude-Code-style prompt. Type a target → scan streams inline → prompt returns. Slash commands, live tab completion, ghost-text history. --classic keeps the old menu.

7 themes, in-app picker

github-dark · github-light · dracula · nord · tokyo-night · catppuccin-mocha · high-contrast. Persisted across launches.

Entity graph + auto-pivot

19 entity types, 33 edge types. Bounded BFS with per-edge cost budget. Export to GEXF / GraphML / Cytoscape.

47 modules

Passive + active recon. crt.sh, CertSpotter, RIPEstat, HackerTarget, Wayback, Shodan InternetDB. Free APIs only.

OPSEC mode

SOCKS5 routing, jitter, UA rotation. Active modules refuse to run unless you set the per-module override env.

Optional AI explain

Claude haiku/sonnet over findings. Disabled in --opsec mode. Local-first by default.

SIEM exporters

Splunk HEC · Elasticsearch bulk · syslog RFC 5424 · MISP Event API. Ship to your existing pipeline.

Web dashboard

Local-only HTTP + SSE live stream. Vanilla-JS Verlet force-graph. Zero external deps. osint serve.

Auto-pivot

Discovered entities feed a bounded BFS that follows high-value edges first. --pivot DEPTH.

03 // modules03 // modullar

47 modules. Organised by intent.47 modul. Maqsad boʻyicha guruhlangan.

Every module is a standalone async coroutine. Mix per-scan with --enable / --disable, or use a profile bundle.

Har bir modul mustaqil async coroutine. Skan boʻyicha aralashtirish: --enable / --disable, yoki tayyor profile toʻplamidan foydalaning.

identity / 6

username
email
email_extras
phone
telegram
whatsapp

network / 10

ip
ip_extras
domain
discovery
patterns
adjacency
ssl_tls
http_headers
asn_bgp
tech_fingerprint

threat intel / 4

internetdb
threat_intel
takeover
web_recon

defense surface / 8

email_security
typosquat
pgp_keys
tor_check
github_leaks
cloud_buckets
hibp_passwords
malware_bazaar

hardening / 4

web_hardening
well_known
subdomain_brute
passive_dns

active recon / 7

route_discover
subdomain_permute
port_scan
waf_detect
cms_detect
graphql_probe
source_maps

v4.2 free sources / 6

favicon_hash · Shodan MMH3 pivot
wayback_urls · CDX historical URLs
certspotter · CT-log subdomain enum
ripestat · ASN / prefix / abuse
hackertarget · hostsearch + reverse-IP
subdomain_takeover · CNAME + direct-A check

new data kinds / 5 · new

wallet · BTC/ETH explorers + scam DB
image · EXIF/GPS + reverse-image
dorks · DuckDuckGo + Bing SERPs
leaks · paste + ransomware.live
business · OpenCorporates records

04 // profiles04 // profillar

Curated module bundles.Tayyor modul toʻplamlari.

12 profiles dial scope by intent — quick triage, deep red-team, blue-team surface, IOC lookup. Pass --profile NAME.

12 profile maqsad boʻyicha skan koʻlamini boshqaradi — tezkor triage, chuqur red-team, blue-team yuzasi, IOC qidiruvi. Buyruq: --profile NAME.

quick

20 modules · tier-A only

deep

44 modules · everything

domain-recon

18 modules · DNS + CT + ASN

red-team

34 modules · active probes

active-recon

10 modules · loud only

blue-team

12 modules · exposed surface

ioc

5 modules · reputation

leak-hunt

4 modules · repos + buckets

creds

3 modules · pwd/hash triage

person

10 modules · identity sweep

all

44 modules · alias of deep

default

44 modules · no flag needed

05 // recipes05 // retseptlar

Three commands to start with.Boshlash uchun uchta buyruq.

recipe 01retsept 01

Map a domain's perimeterDomen perimetrini xaritalash

CT-log subs (crt.sh + CertSpotter) + Wayback historical hosts + RIPE ASN + tech fingerprint + HTTP headers. Passive only.

CT-log subdomenlari (crt.sh + CertSpotter) + Wayback tarixiy hostlar + RIPE ASN + tech fingerprint + HTTP headerlar. Faqat passiv.

$ osint github.com --profile domain-recon

recipe 02retsept 02

Hunt subdomain takeoversSubdomen takeoverlarini topish

CNAME chain + direct-A check vs 24 can-i-take-over-xyz fingerprints. Favicon hash pivots origin-IP behind CDN.

CNAME zanjiri + direct-A tekshiruvi 24 ta can-i-take-over-xyz fingerprint'iga qarshi. Favicon hash CDN orqasidagi origin-IP'ni topadi.

$ osint example.com --enable subdomain_takeover --enable favicon_hash

recipe 03retsept 03

Profile a username across the webUsernameni internet boʻylab tekshirish

Sherlock + WhatsMyName + 1,008 sites. Discovery dorks. PGP key lookup. GitHub leak scan.

Sherlock + WhatsMyName + 1,008 ta sayt. Discovery dorklar. PGP kalit qidiruvi. GitHub leak skani.

$ osint temur

Authorised security testing only. Faqat ruxsat etilgan xavfsizlik testi uchun.

mytools-osint queries third-party APIs and probes hosts you specify. You are responsible for ensuring you have authorisation to investigate every target you submit. Active modules (route_discover, port_scan, subdomain_takeover, favicon_hash) refuse to run in --opsec mode unless you set a per-module override. Use with care.

mytools-osint uchinchi tomon APIlariga soʻrov yuboradi va siz koʻrsatgan hostlarni tekshiradi. Har bir tekshiruv uchun rasmiy ruxsat olganligingizga ishonch hosil qilish — sizning masʼuliyatingiz. Faol modullar (route_discover, port_scan, subdomain_takeover, favicon_hash) --opsec rejimida modul-boʻyicha override env oʻrnatilmaguncha ishlamaydi. Ehtiyot boʻlib ishlating.

★ star on github → ★ github'da star →