Open Source Intelligence Platform

Recon.
Analyze.
Report.

10 free OSINT tools powered by real public APIs. DNS, WHOIS, IP Geolocation, SSL, Subdomains, Port Scan, Google Dorks, Mail Headers, Breach Check, Username Hunt. No API keys. No login. Download and run locally.

► Launch Tools How It Works
10Live Tools
100%Free APIs
Queries
🔍 DNS 📍 WHOIS 🌎 IP Geo 🔒 SSL 🌐 Subdomains 💻 Port Scan 🔎 Google Dorks ✉ Mail Headers 🛡 Breach Check 👤 Username OSINT
// process

How It Works

01
Download & Open

Save the HTML file and open it in Chrome, Firefox or Edge. No server needed.

02
Enter Target

Type any domain, IP, email or username. Tools call free public APIs directly.

03
Get Live Results

Real-time data from DNS, WHOIS, IP geo, CT logs, port scan, and breach APIs.

DNS Dumpster
dns.google DoH API (free, no key)
DNS RECON

Live DNS records via Google DNS-over-HTTPS. Queries A, AAAA, MX, NS, TXT, CNAME, SOA and CAA records for any domain.

LIVE DNS RECORDS
API: dns.google/resolve
WHOIS Lookup
rdap.org — ICANN RDAP protocol (free)
REGISTRATION

Domain registration data via RDAP — registrant, registrar, creation/expiry dates, nameservers, DNSSEC status, domain age and security assessment.

LIVE WHOIS / RDAP DATA
API: rdap.org/domain/{name}
IP Geolocation
ipapi.co — free, no key required
GEO INTEL

Resolve domain to IP then get country, city, ISP, ASN, timezone, coordinates via ipapi.co. Supports both domains and raw IP addresses.

LIVE IP GEO DATA
API: ipapi.co/{target}/json
SSL Certificate Checker
crt.sh — certificate transparency logs (free)
SSL / TLS

Inspect SSL/TLS certificates via certificate transparency logs. Shows issuer, validity dates, SANs, expiry countdown, and certificate history.

LIVE SSL CERTIFICATE DATA
API: crt.sh/?q={domain}&output=json
Subdomain Finder
crt.sh wildcard CT query (free, passive)
SUBDOMAIN ENUM

Passive subdomain enumeration using SSL certificate transparency logs. No active scanning — uncovers dev, staging, admin, API and other subdomains from CT log history.

SUBDOMAINS DISCOVERED
API: crt.sh/?q=%.{domain}&output=json
Open Port Checker
HackerTarget nmap API (free, no key)
PORT SCAN

Scan open TCP ports via HackerTarget's free nmap API. Returns open ports, detected services, version banners and risk ratings. No key needed.

PORT SCAN RESULTS
API: hackertarget.com/nmap/?q={target}
Google Dork Generator
GHDB · 8 Categories · 80+ Dorks
GHDB

Generate GHDB-style Google dork queries for any domain. Pick a category and get instant clickable Google search links — exposed files, login pages, configs, cameras, SQL errors and more.

DORK QUERIES — CLICK TO SEARCH IN GOOGLE
Source: Google Hacking Database (GHDB)
Mail Header Analyzer
100% client-side — no data leaves your browser
EMAIL FORENSICS

Paste raw email headers to analyze SPF, DKIM, DMARC authentication, routing hops, delivery delays, and spoofing indicators. Runs entirely in your browser — nothing is sent anywhere.

EMAIL HEADER ANALYSIS
Method: 100% client-side JavaScript parser
Email Breach Check
xposedornot.com — free public breach API
BREACH INTEL

Check if an email address appeared in known public data breaches. Returns breach names, dates and exposed data types from xposedornot.com public API.

⚠ For complete results also visit haveibeenpwned.com
BREACH INTELLIGENCE
API: api.xposedornot.com/v1/check-email
Username OSINT
25+ Platforms — 100% client-side link generator
SOCIAL OSINT

Hunt a username across 25+ social media and security platforms. Generates direct profile links — click CHECK to verify if an account exists. No API calls needed.

USERNAME PROFILE LINKS
Method: client-side · 25 platforms
// 10 free osint tools

Built for Security Professionals

[01]
DNS Dumpster

A, AAAA, MX, NS, TXT, CNAME, SOA, CAA via Google DoH.

[02]
WHOIS / RDAP

Registrant, registrar, expiry, DNSSEC via ICANN RDAP.

[03]
IP Geolocation

Country, ISP, ASN, coords via ipapi.co free API.

[04]
SSL Checker

Cert validity, SANs, expiry, history via crt.sh CT logs.

[05]
Subdomain Finder

Passive enumeration via SSL certificate transparency.

[06]
Port Scanner

Open ports and services via HackerTarget free nmap API.

[07]
Google Dorks (GHDB)

80+ dorks in 8 categories with live Google search links.

[08]
Mail Header Forensics

SPF/DKIM/DMARC, hops, delays, spoofing — 100% offline.

[09]
Breach Check

Email breach lookup via xposedornot.com public API.

[10]
Username OSINT

25+ platforms — GitHub, Reddit, HackTheBox, TryHackMe+.