MENU

On This Page

  1. Personal DB Lookups
  2. Business Domain OSINT
  3. Web Archive Tools
  4. IP Address Lookup
  5. DNS Lookup & Recon
  6. Blockchain & Crypto Analysis
  7. Metadata & Security Header Analysis
  8. Hidden Investigation & Anonymity Tools
  9. PII Search
  10. Tools to Check (Under Evaluation)

Personal and Business OSINT Tools: A Practical Guide

Open Source Intelligence (OSINT) plays a critical role in cybersecurity, digital investigations, fraud detection, and competitive analysis. Whether you're investigating a suspicious email, analyzing a domain's history, or tracing cryptocurrency transactions, the right tools can make all the difference. This guide compiles a curated list of reliable OSINT tools categorized by use case, with star ratings (*) indicating their practicality, cost-effectiveness, and reliability.

The * rating system:

  • ***** - Highly useful, reliable, and often free or affordable
  • **** - Very useful, may have some limitations or premium features
  • *** - Useful but limited or situational
  • ** - Basic utility, may be outdated or restricted
  • * - Limited access, expensive, or partially broken
  • ??? - Tool under evaluation, unverified

Personal DB Lookups

These tools help determine if personal information (emails, usernames, phone numbers) has been exposed in data breaches or underground databases.

  • (*****) LeakPeek - Fast, affordable, and effective database lookup service. Ideal for checking exposure of emails and usernames across known breaches.
  • (**) Have I Been Pwned - Check if your email has been compromised in a public data breach. A trusted resource, though limited in scope compared to paid tools.
  • (*) Snusbase - Database search engine for emails, usernames, IPs. Powerful but requires subscription; community trust varies.
  • (*) OSINT Industries - Paid-only platform for deep email, phone, and username lookups. High quality but not accessible for casual users.
  • (*) Intelx - Advanced data broker with deep archival access. Extremely powerful but expensive; best suited for professional investigators.

Business Domain OSINT

Tools for analyzing corporate digital footprints, infrastructure, and potential exposure through infostealers or supply chain leaks.

  • (**) Hudson Rock - Offers free infostealer intelligence tools to detect compromised corporate accounts and employee credentials leaked via malware.

Web Archive Tools

Access historical versions of websites to track changes, recover lost content, or investigate past configurations.

  • (***) Wayback Machine - The most comprehensive web archive. Useful for retrieving deleted or modified web pages. Example: Archived IT company site.
  • (***) Archive.today - Alternative snapshot service, often captures pages missed by Wayback Machine. Reliable and fast.

IP Address Lookup

Investigate the origin and reputation of IP addresses, including associated domains and threat indicators.

  • (**) Spur - Provides context on IPs, including malware, phishing, and botnet associations.
  • (***) Whois IP and Domain Lookup - Free WHOIS lookup for IP blocks and domains. Good for basic ownership and registration data.
  • (*) WHOIS Tool - Currently non-functional. Frontend requires redevelopment. Community contribution welcome to build an internal IP/WHOIS lookup tool.

DNS Lookup & Recon

Discover subdomains, DNS records, and network infrastructure for attack surface mapping and reconnaissance.

  • (*****) SecurityTrails - Comprehensive DNS, WHOIS, and attack surface management platform. Excellent for threat hunting and domain history.
  • (*****) DNSDumpster - Free tool for finding DNS records, subdomains, and performing network research. Great for quick recon.

Blockchain & Crypto Analysis

Track wallet activity, visualize transaction graphs, and identify entities behind blockchain addresses.

  • (*****) DeBank - Portfolio tracker for Ethereum and EVM-compatible chains. Real-time balance and transaction overview.
  • (*****) Breadcrumbs - User-friendly crypto tracker with entity labeling and flow visualization.
  • (*****) Arkham - Multichain explorer with entity labels, graph creation, and alerts. Powerful for tracking known organizations.
  • (****) MetaSleuth - Fund flow analysis platform designed for retail investigators. Intuitive interface.
  • (*) TRM Labs - Enterprise-grade blockchain intelligence. Expensive ($$$), used by financial institutions for compliance.
  • (*****) Cielo - Supports EVM, Bitcoin, Solana, and Tron. Full wallet tracking with exportable reports.
  • (***) MetaSuites - Chrome extension enhancing block explorers with extra metadata and analytics.
  • (****) Dune - Query blockchain data using SQL. Community-powered dashboards for DeFi, NFTs, and bridges.
  • (*****) ENS (Current Info) - View current Ethereum Name Service registrations and ownership.
  • (*****) ENSvolution (ENS History) - Track historical changes to ENS records and ownership.

Metadata & Security Header Analysis

Extract metadata from websites, analyze security configurations, and assess server exposure.

  • (*****) VirusTotal - Scan URLs, files, IPs, and domains. Includes DNS history, malware detection, and passive metadata.
  • (***) ImmuniWeb - Website security test with vulnerability detection and compliance checks.
  • (*****) SecurityHeaders.com - Analyze HTTP security headers (e.g., CSP, HSTS) to evaluate web server hardening.
  • (***) Censys - Search engine for internet-connected devices, certificates, and networks.
  • (**) Shodan - Search engine for exposed devices (servers, IoT, etc.). Limited free tier; powerful for attack surface discovery.
  • (**) ZoomEye - Chinese alternative to Shodan; similar functionality for device and service enumeration.
  • (*) Hybrid Analysis (formerly Falcon Sandbox) - Free malware analysis service. Useful for analyzing suspicious payloads.
  • (*****) SSL Server Test (Qualys) - Evaluate SSL/TLS configuration and certificate security.

Hidden Investigation & Anonymity Tools

Tools for maintaining operational security during investigations or managing multiple online identities.

  • (*****) Accsmarket - Marketplace for consumables (accounts, cookies, sessions) used in OSINT and automation.
  • (*****) Dolphin Anty - Antidetect browser with 10 free profiles. Ideal for multi-accounting and avoiding fingerprinting.
  • (*****) AdsPower - Free antidetect browser with 5 profiles. Great for affiliate marketing and social media management.
  • (*****) PROXY6.net - Affordable individual IPv4/IPv6 proxies. Reliable for rotating IP needs.
  • (*****) HMA VPN - Consumer-grade VPN service for privacy and IP masking.

Limited options exist for personal info search due to privacy restrictions.

  • (*****) Yandex Images - One of the few search engines that still allows reverse image search using personal photos.
  • Note: Google no longer supports personal PII search due to privacy policies.

Tools to Check (Under Evaluation)

Emerging or unverified tools requiring further testing and community feedback.

  • (???) Impersonator - Chrome extension to spoof login sessions on dApps.
  • (??) Range - CCTP bridge explorer for cross-chain transaction tracking.
  • (??) Pulsy - Aggregator for bridge explorers and optimal cross-chain routing.
  • (?) Socketscan - EVM bridge explorer for tracking cross-chain flows.
  • (?) Mugetsu - X/Twitter username history and meme coin lookup tool.
  • (?) TelegramDB Search Bot - Basic OSINT for Telegram usernames and groups.
  • (?) Discord.ID - Retrieve basic Discord account information.
  • (?) Exchange Blacklist - GitHub list of blacklisted exchange addresses for airdrop filtering.

Published on Aug 19, 2025