bormaxi8080 OSINT Timeline (99) - 27.02.2025
Maxim Marshak
Investigative Journalism | OSINT activities & Investigations | White Hacker | People, Companies & Incidents Data | Python | Ruby | JS | Perl | Bash
A spring has burst in the sky
the smell of cherry plum is everywhere.
In the yellow fig seed
the blood is desperately pounding.
Here are the tendon tracks -
the first thin ice has cracked.
In the warm fig seed
the blood is desperately singing.
OSINT Repos List, Repository with gathered from GitHub utilities for OSINT, Development and DevOps. The number of artifacts in the repository exceeded 2500: https://github.com/bormaxi8080/osint-repos-list
Google reported that the Signal messenger was under surveillance by Russian special services.
Details and technical research: https://cloud.google.com/blog/topics/threat-intelligence/russia-targeting-signal-messenger
MEDIA MAP. A very large list of news sites for different countries and regions: https://start.me/p/lLaoXv/07-world
Austria OSINT. List of 57+ websites + list of OSINT Telegram channels by Snooptsz: https://osintteam.blog/osint-austria-188ac5b7ed5e
OSINT Industries has released the [Palette](https://app.osint.industries/login) graphical interface into early access (demo video [here](https://www.youtube.com/watch?v=cg70iRz47RM)). It's very, very good (the screenshot shows an example of what you can extract from an email).
OSINT Tools, Services and Investigations:
Browser Snatch. This project steals important data from all chromium and gecko browsers installed in the system and gather the data in a stealer db to be exfiltrated out: https://github.com/shaddy43/BrowserSnatch
MegaParse. File Parser optimised for LLM Ingestion with no loss. Parse PDFs, Docx, PPTx in a format that is ideal for LLMs: https://github.com/QuivrHQ/MegaParse
grep-backURLs?is a web security automation tool to extracts important credentials in bug hunting. It uses subfinder to find subdomains and then those subdomain acts as input links for waybackurls . After that , it uses grep command and keywords.txt to sort out important credentials: https://github.com/gigachad80/grep-backURLs
Rusty Hog is a secret scanner built in Rust for performance, and based on TruffleHog which is written in Python: https://github.com/newrelic/rusty-hog
Sn1per. Discover hidden assets and vulnerabilities in your environment: https://github.com/1N3/Sn1per
HExHTTP is a tool designed to perform tests on HTTP headers and analyze the results to identify vulnerabilities and interesting behaviors: https://github.com/c0dejump/HExHTTP
YogSec Search is a powerful and flexible search tool designed to fetch search results from Bing: https://github.com/yogsec/YogSec-Search
DorkTerm is a terminal-themed web-based security tool designed to assist security researchers in performing Google Dork queries efficiently. The tool generates multiple Google Dork search queries for a given domain and opens them in new browser tabs to help identify potential vulnerabilities: https://github.com/yogsec/DorkTerm
BugBoard. A comprehensive open-source cybersecurity tool for vulnerability detection and bug hunting: https://github.com/yogsec/BugBoard
Web History Analysis is an advanced tool for classifying and categorizing URLs from browser history logs using machine learning techniques: https://github.com/yogsec/Web-History-Analysis
Endpoints Extractor. A powerful Bash script for extracting URLs and API endpoints from HTML, JavaScript, and JSON content of web pages. Designed for security researchers, bug bounty hunters, and developers to streamline endpoint discovery. Simple to use, supports single or multiple URLs, and offers file-saving capabilities: https://github.com/yogsec/endpoints-extractor
CORS Scanner is a Bash script designed to detect and analyze CORS misconfigurations in web applications. With its efficient concurrency and detailed output, it empowers developers and security researchers to identify potential vulnerabilities in Access-Control headers, ensuring robust web security: https://github.com/yogsec/CorsScanner
Universal Search & AI:
Fast Music Remover. A C++ based, lightweight music and noise remover for YouTube and other internet media, using DeepFilterNet for audio enhancement: https://github.com/omeryusufyagci/fast-music-remover
Audiblez. Generate audiobooks from e-books: https://github.com/santinic/audiblez
Software Development & APIs:
Vector is a high-performance, end-to-end (agent & aggregator) observability data pipeline that puts you in control of your observability data: https://github.com/vectordotdev/vector
GoFreeDB is a Golang library that provides common and simple database abstractions on top of Google Sheets: https://github.com/FreeLeh/GoFreeDB
Apache Sharding Sphere. Empowering Data Intelligence with Distributed SQL for Sharding, Scalability, and Security Across All Databases: https://github.com/apache/shardingsphere
Zola. A fast static site generator in a single binary with everything built-in: https://github.com/getzola/zola
Linux & DevOps:
ServiceRadar is a distributed network monitoring system designed for infrastructure and services in hard to reach places or constrained environments. It provides real-time monitoring of internal services, with cloud-based alerting capabilities to ensure you stay informed even during network or power outages: https://github.com/carverauto/serviceradar
Nping mean NB Ping, A Ping Tool in Rust with Real-Time Data and Visualizations: https://github.com/hanshuaikang/Nping
RClone?(RSync for cloud storage)?is a command-line program to sync files and directories to and from different cloud storage providers: https://github.com/rclone/rclone
Flipper Zero & Other Devices:
A curated collection of Sub-GHz files for the Flipper Zero device, intended solely for educational purposes: https://github.com/Zero-Sploit/FlipperZero-Subghz-DB
New from CyberDetective:
What to do if when you try to search for a photo of a person Google does not give results and writes "Results for people are limited"? Use free alternatives like Bing, Yandex, Baidu, TinEye and Sogou. Korean, but works with not only photos of Asians: https://ris.sogou.com
New from GitHub Community:
Laplace is an open-source project to enable screen sharing directly via browser. Based on WebRTC for low latency peer-to-peer connections, and WebSocket implemented in golang for signaling: https://github.com/adamyordan/laplace
bormaxi8080 OSINT timeline:
You can see Systematized List of my GitHub Starred OSINT Repositories
You can contact me on SubStack: https://osintech.substack.com
If you like the projects that I do, I will be grateful for donations in private dialogue.
WARNING! All tools, programs and techniques published in this article and repository are used for informational, educational purposes or for information security purposes. The authors are not responsible for the activities that users of these tools and techniques may carry out, and urge them not to use them to carry out harmful or destructive activities directed against other users or groups on the Internet.