SpiderFoot – OSINT and Perimeter Monitoring Framework

SpiderFoot is an open source intelligence (OSINT) automation tool. It integrates with just about every data source available and utilises a range of methods for data analysis, making that data easy to navigate. SpiderFoot has an embedded web-server for providing a clean and intuitive web-based interface but can also be used completely via the command-line. It’s written in Python 3 and GPL-licensed.

SpiderFoot - OSINT Reconnaissance and Perimeter Monitoring
SpiderFoot – OSINT Reconnaissance and Perimeter Monitoring

Some of the features with this framework:

  • Web based UI or CLI
  • Over 170 modules (see below)
  • Python 3
  • CSV/JSON/GEXF export
  • API key export/import
  • SQLite back-end for custom querying
  • Highly configurable
  • Fully documented
  • Visualisations
  • TOR integration for dark web searching
  • Dockerfile for Docker-based deployments
  • Can call other tools like DNSTwist, Whatweb and CMSeeK
  • Actively developed since 2012!

SpiderFoot can be used offensively (e.g. in a red team exercise or penetration test) for reconnaissance of your target or defensively to gather information about what you or your organisation might have exposed over the Internet.

With almost 170+ modules and growing, SpiderFoot provides an easy-to-use interface that enables you to automatically collect Open Source Intelligence (OSINT) about IP addresses, domain names, e-mail addresses, usernames, names, subnets and ASNs from many sources such as AlienVault, HaveIBeenPwned, SecurityTrails, SHODAN and more.

You can target the following entities in a SpiderFoot scan: IP address, Domain/sub-domain name ,Hostname ,Network subnet (CIDR) ,ASN ,E-mail address, Phone number ,Username ,Person’s name.

You can read more and download this framework over here: https://github.com/smicallef/spiderfoot

Notify of
Inline Feedbacks
View all comments