Tools, OSINT & Open Source

🔎 OSINT & Data Discovery Tools

These tools are useful for uncovering publicly accessible information, exposed data, malware indicators, code leaks, documents, and file indexing across the internet.

🗃️ Paste, Code, and Source Scanning

psbdmp – Largest archive of leaked {paste} dumps from pastebin-style sites.
Search-Pastebin – Google CSE-powered meta-search across 33 paste sites.
RedHuntlabs Online IDE Search – Search keywords across online IDEs, code sharing platforms, and pastebins.
NerdyData – Find websites using specific technologies or HTML/JavaScript code.
Publicwww – Source code search engine indexing 480+ million pages.
CybDetective Code Search – Custom search across 20+ code hosting platforms.
grep.app – Fast regex-capable search engine for 500k+ Git repos.
searchcode – Search 75 billion lines of code from 40 million public projects.

📁 File & Directory Indexing

Open Directory Search Tool – Search files in unprotected open directories.
Mamont FTP – Largest public FTP search engine.
NAPALM FTP Indexer – Index of over 894 million FTP files across thousands of servers.
DeDigger – Discover publicly shared files in Google Drive.
UVRX – Search files from older hosting sites (e.g., Mega, Mediafire, Zshare).

📚 Document & Content Discovery

PDF Drive – Download from a library of over 75 million free PDFs.
SlideShare – Explore millions of user-submitted presentations.
Scribd – Document repository with 195+ million user-uploaded files.

🧪 Threat Intelligence & IOC Lookup

VirusTotal – Multi-engine scanner and IOC search platform for files, hashes, domains, and URLs.
Shodan – Search engine for internet-connected devices and exposed systems.
YARAify – Run YARA rules across a large malware sample dataset.
ThreatFox – Community-driven IOC feed focused on current threats.
URLhaus – Malicious URL tracker and database.
Feodo Tracker – Monitor and block IPs related to Feodo/Bugat/Dridex botnets.
SSL Blacklist – Collection of blacklisted SSL certificates and JA3 fingerprints.
MalwareBazaar – Repository for sharing malware samples.
MalwareBazaar UA Verifier – Identify malicious User-Agent strings linked to malware.

AbuseIPDB – Check and report malicious or abusive IP addresses.
~~Cisco~~ Talos ~~Intelligence~~Reputation Center – ~~Lookup~~IP, ~~IPs,~~domain, ~~domains,~~and file ~~hashes,~~reputation ~~and view threat intelligence data.~~check.
~~CyberChef~~PaloAlto URL Filtering – ~~Powerful~~Link ~~web-based tool for data transformation, decoding,~~classification and ~~analysis.~~reputation check.
OTX AlienVault ~~OTX~~ – Threat sharing platform with global IOC and pulse feeds.
Hybrid Analysis – Free malware sandbox that performs hybrid static/dynamic analysis.

URLScan – Scan and analyze websites in a sandboxed environment.

Browserling – Online browser sandbox for testing malicious or suspicious URLs.

🌐 Network, Routing, and Metadata Tools

InfoByIP Bulk IP Lookup – Check metadata and geolocation of multiple IPs at once.

DomainTools WHOIS – Domain WHOIS lookup with historical and technical metadata.

BGP Toolkit (Hurricane Electric) – Inspect BGP routes, ASNs, and peerings.

NTT Looking Glass – Verify global routing and network path info.

Redirect Detective – ~~Analyze~~Follow and ~~visualize~~analyze HTTP redirects ~~for~~from ~~URLs.~~a URL.

🦠 Malware🧰 Analysis & ReverseDevelopment EngineeringUtilities

~~Resources for researching malware, downloading samples, reverse engineering binaries, and analyzing malware behavior.~~

~~VX-Underground~~CyberChef – ~~Largest~~Web-based ~~collection~~data ~~of malware samples~~transformation and ~~research~~analysis ~~on the internet.~~toolkit.
~~VirusSign~~Regex101 – ~~Curated~~Online ~~list~~regex oftester, ~~malware~~debugger, ~~sample~~and ~~sources~~explanation ~~for researchers.~~tool.
~~Ghidra~~API Tester – ~~Open-source~~Build ~~reverse~~and ~~engineering~~run ~~framework~~complex ~~created~~API byrequest ~~the~~workflows ~~NSA.~~with JavaScript logic.
~~Binary~~KeyCDN ~~Ninja~~Tools – ~~Modern~~Network ~~reverse~~diagnostics ~~engineering~~including ~~platform~~HTTP ~~with~~headers, ~~scripting~~ping, traceroute, and ~~automation support.~~more.
~~IDA Free~~PunyCoder – ~~Free~~Convert ~~version~~between ~~of the IDA disassembler~~Punycode and ~~debugger.~~Unicode.
~~ANY.RUN Blog~~Snorpy – ~~Guides~~Visual SNORT rule builder and ~~insights for understanding malware analysis reports.~~analyzer.
~~x64dbg~~Deobfuscate.io – ~~Open-source~~Web-based ~~Windows~~JavaScript ~~debugger~~deobfuscation ~~for malware analysis.~~

~~Sysinternals Suite~~ ~~– Advanced Windows system monitoring and diagnostics tools.~~

~~Detect It Easy (DIE)~~ ~~– Portable executable analyzer to identify packers and compilers.~~

~~MalwareBazaar UA Verifier~~ ~~– Identify malicious User-Agent strings linked to malware.~~tool.