D4rk_Intel – Your All-in-One Internet Detective Toolkit
One-Line Flow: One GitHub link that bundles every damn investigation tool you’ll ever need — usernames, images, phones, maps, breaches, crypto, satellites, and 150+ hidden gems most people don’t even know exist.

What the hell is this?
It’s a giant, organized list of the best free investigation tools on the internet. Not a “magic hack tool.” Not some script kiddie garbage. Just everything you need to find information — organized so you don’t lose your mind scrolling through 500 random bookmarks.
You bring the brain. The repo brings the shortcuts.
Works for:
- Finding people and their accounts
- Checking emails and breaches
- Hunting photos and locations
- Tracing crypto wallets
- Tracking ships, planes, and vehicles
- Digging through public records nobody knows are public
- Making sense of messy data without crying
The repo:
How to actually use this (don’t overthink it)
- Open the repo
- Scroll the README once — just note which sections match what you usually look for
- Start bookmarking your favorites into one folder
- Test on a fake case — pick a celebrity, a news story, whatever
- When real work hits, you’re not scrambling anymore
That’s it. No installation. No coding. Just click and use.
The Main Sections (in human words)
Note-Taking Apps
Keep your investigation notes from turning into chaos.
The classics: Notion, Obsidian, OneNote
The pro move: https://www.hunch.ly — auto-captures everything you browse during investigations. Screenshots, timestamps, the works.
Username & Handle Hunting
Got a username? Find everywhere it exists.
| Tool | What It Does |
|---|---|
| https://whatsmyname.app | Checks 500+ sites |
| https://namechk.com | Quick multi-platform scan (but read the privacy policy — they log your searches) |
| https://github.com/soxoj/maigret | Command-line beast that checks 3,000+ sites — way better than Sherlock |
| https://github.com/soxoj/socid-extractor | Extracts internal IDs that stay the same even when usernames change |
Discord-specific: Just add the user ID to this URL → https://discord.id/
The uncomfortable truth: Most “username checkers” are designed for marketing, not investigations. They miss private accounts and give false negatives constantly. Always verify manually.
Reverse Image & Image Analysis
“Where did this picture actually come from?”
The basics:
- Google Images (you know this one)
- https://tineye.com — finds exact matches and older versions
- https://yandex.com/images — weirdly good at finding people, especially in Eastern Europe
The hidden shit:
| Tool | Why It’s Useful |
|---|---|
| https://github.com/bellingcat/ShadowFinder | Calculates location from shadow length in photos. Yes, really. |
| https://jimpl.com | Extracts EXIF data (camera info, GPS coords if the idiot didn’t strip it) |
| https://fotoforensics.com | Error Level Analysis — spots edited areas |
| https://29a.ch/photo-forensics | Browser-based image forensics suite |
AI-Generated Image Detection:
| Tool | Accuracy |
|---|---|
| https://sightengine.com/detect-ai-generated-images | Catches MidJourney, DALL-E, Stable Diffusion |
| https://decopy.ai/ai-image-detector | Free, trained on ~10M images |
| https://illuminarty.ai | Multiple AI model detection |
People / Phone / Email Lookups
Find who’s behind the username, email, or phone number.
Email investigation:
| Tool | What It Does |
|---|---|
| https://github.com/megadose/holehe | Checks if an email is registered on 120+ sites via password reset — doesn’t alert the user |
| https://epieos.com | Email lookup with connected accounts |
| https://github.com/mxrch/GHunt | Investigates Google accounts — Maps reviews, calendar info, linked services |
Phone number tools:
| Tool | What It Does |
|---|---|
| https://github.com/sundowndev/phoneinfoga | Phone number OSINT framework |
| https://www.truecaller.com | Caller ID database |
| https://github.com/megadose/ignorant | Like Holehe but for phone numbers |
People search engines: TruePeopleSearch, FastPeopleSearch, That’s Them — you know the drill. Just remember: accuracy varies wildly and half of it is outdated.
Breach & Password Checkers
“Has this email been pwned?”
| Service | Records | URL |
|---|---|---|
| HaveIBeenPwned | The OG | https://haveibeenpwned.com |
| DataBreach.com | 17.5 billion records — searches SSN, IP, username, physical address | https://databreach.com |
| DeHashed | Email, IP, username, phone, VIN, password | https://dehashed.com |
| LeakCheck | 7+ billion leaked records | https://leakcheck.io |
| Intelligence X | Dark web, breaches, paste sites | https://intelx.io |
| BreachDirectory | Shows censored passwords + SHA-1 hashes | https://breachdirectory.org |
Reality check: HaveIBeenPwned is still the gold standard for ethics, but the alternatives above have way more data if you need deeper searches.
Geolocation & Maps
Everything to place someone or something on the planet.
The basics: Google Maps, OpenStreetMap, Google Earth
The hidden gems:
| Tool | What It Does |
|---|---|
| https://zoom.earth | Often better than Google in sensitive areas + wildfire heat detection |
| https://worldview.earthdata.nasa.gov | NASA satellite imagery updated within hours |
| https://dataspace.copernicus.eu | FREE European satellite data — land, ocean, atmosphere |
| https://earthexplorer.usgs.gov | Landsat archive with historical imagery |
| https://livingatlas.arcgis.com/wayback | Historical satellite imagery collection |
| https://www.sentinel-hub.com | Processing and visualization tools |
Cell tower & WiFi geolocation:
| Tool | Database Size |
|---|---|
| https://www.wigle.net | 1 billion+ WiFi networks worldwide |
| https://opencellid.org | 40+ million cell tower records |
| https://www.cellmapper.net | Crowd-sourced tower mapping |
Utility stuff:
- https://www.freemaptools.com/radius-around-point.htm — draw radius circles
- https://www.suncalc.org — sun position calculator for verifying photo times
- https://www.timeanddate.com — timezone conversions
Flight & Ship Tracking
Aviation:
| Tool | Why It Matters |
|---|---|
| https://www.flightradar24.com | The popular one |
| https://globe.adsbexchange.com | Only major tracker showing military and private jets unfiltered |
| https://opensky-network.org | FREE historical data — 23+ trillion messages archived |
| https://www.radarbox.com | Listen to ATC radio transmissions |
| https://registry.faa.gov/aircraftinquiry | US aircraft registration database |
Maritime:
| Tool | Why It Matters |
|---|---|
| https://www.marinetraffic.com | The popular one |
| https://www.vesselfinder.com | Best free alternative |
| https://www.aishub.net | FREE raw AIS data feeds |
| https://www.equasis.org | FREE vessel ownership structures and inspection records |
| https://globalfishingwatch.org | Detects illegal fishing activity |
Vehicle & License Plate OSINT
This whole category is usually missing from OSINT lists. Not anymore.
Multi-country plate lookup:
| Tool | Coverage |
|---|---|
| https://cipher387.github.io/venicle_number_search_toolbox | 14 countries in one interface |
| https://platesmania.com | ~1 million plate photos internationally |
| https://opendata.rdw.nl/Voertuigen/Open-Data-RDW-Gekentekende_voertuigen/m9d7-ebf2 | 15 million Dutch plates |
VIN and vehicle history:
| Tool | What It Does |
|---|---|
| https://vpic.nhtsa.dot.gov/decoder | Official US government VIN decoder with recall data |
| https://www.nicb.org/vincheck | Stolen vehicle and salvage title check |
| https://epicvin.com | 350M+ records |
| https://carnet.ai | AI vehicle make/model identification from images |
Telegram OSINT
Telegram is where a lot of sketchy shit happens. Here’s how to investigate it.
| Tool | What It Does |
|---|---|
| https://tgstat.com | Search groups/channels by keywords with analytics |
| https://telemetr.io | Post search including deleted content |
| https://www.telegram-finder.io | Identity lookup via phone/email |
| https://github.com/Alb-310/Geogramint | Geolocates Telegram users using “People Nearby” API |
| https://github.com/jordanwildon/Telepathy | Archives chats, member lists, analyzes forwarding patterns |
Useful bots: @creationdatebot (account age), @IDBot (get ID from username), @TgScanRobot (scanning)
TikTok Investigation
| Tool | What It Does |
|---|---|
| https://bellingcat.github.io/tiktok-timestamp | Exact upload date/time for any video |
| https://github.com/bellingcat/tiktok-hashtag-analysis | Collect TikToks by hashtag for pattern analysis |
| https://github.com/drawrowfly/tiktok-scraper | NodeJS scraper for users, hashtags, metadata |
Twitter/X OSINT
Bad news: Twitter killed most third-party tools in 2023. Twint is dead. GetOldTweets is dead.
What still works:
Twitter’s own advanced search is honestly pretty powerful if you know the operators:
from:username since:2024-01-01 until:2024-12-31
"exact phrase" filter:links
to:username filter:replies
near:"city" within:15mi
Tools that survived:
- https://tweetbeaver.com — account analysis (limited)
- https://github.com/bellingcat/uniform-timezone — browser extension that standardizes timestamps across social media
Cryptocurrency Investigation
Tracing crypto without paying for Chainalysis.
| Tool | What It Does |
|---|---|
| https://www.breadcrumbs.app | Free blockchain visualization with sanctioned address info |
| https://platform.arkhamintelligence.com | Network mapping with real-world entity labels |
| https://graphsense.github.io | Open-source analytics |
| https://metasleuth.io | Address explorer and wallet monitor |
| https://dune.com | Community SQL queries for on-chain data — free tier |
| https://www.chainabuse.com | Report/search crypto scams across BTC, ETH, SOL |
| https://whale-alert.io | Real-time alerts for large transactions |
| https://www.walletexplorer.com | Bitcoin wallet clustering |
Curated list: https://github.com/aaarghhh/awesome_osint_blockchain_analysis
Government Databases Nobody Knows Are Public
Declassified documents:
| Repository | URL |
|---|---|
| NSA Declassification Portal | https://www.nsa.gov/Helpful-Links/NSA-FOIA/Declassification-Transparency-Initiatives |
| FBI Vault | https://vault.fbi.gov |
| National Security Archive (GWU) | https://nsarchive.gwu.edu |
| Wilson Center Digital Archive | https://digitalarchive.wilsoncenter.org |
| State Dept FOIA Library | https://foia.state.gov/search |
Court records without PACER fees:
| Tool | What It Offers |
|---|---|
| https://www.courtlistener.com/recap | Millions of free PACER docs uploaded by users |
| https://www.judyrecords.com | 760+ million US court case records — free |
| https://case.law | Harvard’s archive of all official US case law through 2020 |
Corporate Intelligence
| Database | URL | What’s In It |
|---|---|---|
| OpenCorporates | https://opencorporates.com | 150+ million companies worldwide |
| ICIJ Offshore Leaks | https://offshoreleaks.icij.org | 810,000+ offshore entities from Panama/Paradise/Pandora Papers |
| UK Companies House | https://find-and-update.company-information.service.gov.uk | Full beneficial ownership — free |
| Violation Tracker | https://violationtracker.goodjobsfirst.org | Corporate misconduct database |
| OpenSanctions | https://www.opensanctions.org | Sanctions, watchlists, politically exposed persons |
Domain & Infrastructure OSINT
| Tool | What It Does |
|---|---|
| https://securitytrails.com | DNS history since 2008 |
| https://crt.sh | Certificate Transparency log search — find subdomains |
| https://completedns.com | Timeline of domain changes |
| https://bgp.tools | BGP analysis and routing data |
| https://www.shodan.io | Search engine for internet-connected devices |
| https://censys.io | Similar to Shodan |
Archives Beyond Wayback Machine
| Archive | URL | Why It’s Different |
|---|---|---|
| Archive.today | https://archive.today | Works when Wayback doesn’t |
| Perma.cc | https://perma.cc | Academic/legal permanent archiving |
| Memento Time Travel | https://timetravel.mementoweb.org | Searches multiple archives at once |
| Conifer | https://conifer.rhizome.org | Captures JavaScript-heavy interactive sites |
| CachedView | https://cachedview.com | Searches Google Cache, Coral, Internet Archive simultaneously |
Facial Recognition (Legal Tools)
| Tool | URL | Notes |
|---|---|---|
| PimEyes | https://pimeyes.com | Leading face search — paid but powerful |
| FaceSeek | https://www.faceseek.online | Ethical AI with privacy guidelines |
| Search4Faces | https://search4faces.com | Reverse face search |
| FaceOnLive | https://faceonlive.com/deepfake-detector | Face search + deepfake detection |
Legal reality: Facial recognition laws vary wildly by country. EU AI Act bans a lot of this. Don’t be stupid.
Gaming Platform OSINT
| Tool | What It Does |
|---|---|
| https://steamid.pro | Steam ID lookup |
| https://steamdb.info | Steam database and game stats |
| https://discord.id | Discord user lookup |
| https://disboard.org | Discord server search engine |
| https://twitchtracker.com | Twitch analytics |
| https://tracker.gg | Stats for Fortnite, Valorant, Apex, R6, PUBG |
| https://psnprofiles.com | PlayStation profiles |
Audio & Podcast Search
| Tool | URL | What It Does |
|---|---|---|
| Tapesearch | https://www.tapesearch.com | AI-powered search across 3M+ transcripts |
| Listen Notes | https://www.listennotes.com | Podcast search engine |
| Sonic Visualizer | https://www.sonicvisualiser.org | Open-source spectrographic analysis |
Voice clone detection: https://www.ircamamplify.io — 98% accuracy on AI voice clones
Document Forensics
| Tool | What It Does |
|---|---|
| https://github.com/sowdust/pdfxplr | Extract hidden PDF data — paths, usernames, embedded images |
| https://github.com/ElevenPaths/FOCA | Metadata extraction from PDF, Office, SVG |
| https://github.com/laramies/metagoofil | Scrape domains for documents, auto-extract metadata |
| https://github.com/GuidoBartoli/sherloq | Digital image forensics toolset |
Academic & Patent Search
Research papers:
| Tool | Database Size |
|---|---|
| https://www.base-search.net | 200M+ documents |
| https://core.ac.uk | 136M+ open access papers |
| https://oatd.org | 2.3M+ open access theses |
| https://www.connectedpapers.com | Visual tool for finding related papers |
Patents & trademarks:
| Database | URL |
|---|---|
| WIPO PATENTSCOPE | https://patentscope.wipo.int |
| WIPO Global Brand Database | https://branddb.wipo.int |
| Free Patents Online | https://www.freepatentsonline.com |
Finding People Through Their Code
| Tool | What It Does |
|---|---|
| https://grep.app | Search 500,000+ repos with regex |
| https://sourcegraph.com/search | 2M+ repos with semantic navigation |
| https://github.com/GONZOsint/gitrecon | Extract emails from GitHub commits |
| https://github.com/trufflesecurity/trufflehog | Find accidentally committed API keys |
Data Visualization
When your notes turn into spaghetti:
- Maltego — the industry standard
- Spiderfoot — automated OSINT collection
- Obsidian with graph view — surprisingly good for case mapping
- https://flourish.studio — beautiful interactive visualizations
- https://www.diagrams.net — free flowcharts and diagrams
Browser Extensions Worth Installing
Investigation:
- Hunchly — auto-capture everything you browse
- InVID/WeVerify — video/image verification
- RevEye — multi-engine reverse image search
Technical:
- Wappalyzer — identify website technologies
- Shodan Extension — see open ports instantly
Privacy (while researching):
- User-Agent Switcher — impersonate different browsers
- ClearURLs — remove tracking parameters
Google Dorks That Actually Work (2025)
Exposed files:
intitle:"index of /" "parent directory"
filetype:sql "insert into" (pass|passwd|password)
ext:txt intext:"username" intext:"password"
filetype:env "DB_PASSWORD"
Cloud storage:
site:drive.google.com <keyword>
site:s3.amazonaws.com <keyword>
site:trello.com site:*/boards
Subdomain enumeration:
site:*.example.com -www
The Uncomfortable Truths
Tools that are dead (stop recommending them)
- Twint, GetOldTweets3 — killed by Twitter API shutdown
- Most username checkers — built for marketing, miss private accounts constantly
- Facebook Graph Search — neutered beyond recognition
“Free” tools that log your shit
Many OSINT tools collect your IP, User-Agent, target names, and referrer headers. Namechk’s privacy policy literally says they share with “trusted third parties.” Use with caution or through a VPN.
Legal boundaries that actually matter
- Van Buren v. United States (2021): ToS violations alone aren’t federal crimes, but bypassing technical restrictions can be
- EU AI Act (2024-2026): Bans real-time facial recognition in public spaces
- hiQ v. LinkedIn: Scraping public data may be legal but still gets you banned
Master Resource Collections
| Collection | URL |
|---|---|
| cipher387 OSINT Collection | https://github.com/cipher387/osint_stuff_tool_collection |
| Bellingcat Toolkit | https://bellingcat.gitbook.io/toolkit |
| APIs for OSINT | https://github.com/cipher387/API-s-for-OSINT |
| Awesome OSINT | https://github.com/jivoi/awesome-osint |
Who This Is For
- Security researchers
- Journalists and fact-checkers
- Forensic and intel folks
- Students learning OSINT properly
- Anyone who asks “Is this real?”, “Who is this?”, or “Where did this come from?”
If you’re doing investigations of any kind, this saves you hours of Googling and years of bookmark hoarding.
The Repo (Bookmark This Before You Forget)
https://github.com/techenthusiast167/D4rk_Intel-OSINT-Investigative-Toolkit
200+ tools. Zero bullshit. One bookmark.
Now stop reading and start investigating.

!