BLOG
Guides, tutorials, and research on OSINT investigations with OpenOSINT.
ARTICLES
What Is OSINT? A Technical Introduction for Security Practitioners
2026-05-24 — 5 min read
Information tiers, passive vs active collection, the tool landscape, and how AI changes the analyst's role.
How AI Agents Are Changing OSINT: From Lookup to Investigation
2026-05-24 — 5 min read
The shift from manual tool chaining to agentic loops: how OpenOSINT's AI layer decides which tools to call and in what order.
Model Context Protocol Explained: How AI Agents Use External Tools
2026-05-24 — 5 min read
JSON-RPC over stdio, host/client/server architecture, and why MCP is the right transport for OSINT tool integration.
OpenOSINT as MCP Server: Integrate OSINT into Claude
2026-05-15 — 4 min read
Step-by-step guide to configuring OpenOSINT as an MCP server for Claude Desktop and Claude Code.
Using Claude Code for OSINT: Investigations from Your Terminal
2026-05-24 — 5 min read
MCP setup, example investigation session transcripts, and custom Python workflow generation with Claude Code.
Email OSINT: Enumeration, Breach Detection, and What You Can Find
2026-05-21 — 5 min read
How email anchors digital identities: holehe account enumeration, HaveIBeenPwned breach lookup, and dork-based investigation.
Username Search Across 300+ Platforms: How Sherlock Works
2026-05-24 — 4 min read
sherlock's YAML config, three detection methods, rate limiting, and platform cluster analysis for identity correlation.
IP Reputation Analysis: AbuseIPDB & IP2Location Guide
2026-05-18 — 5 min read
Layered IP intelligence: AbuseIPDB confidence scores, IP2Location VPN/proxy/Tor detection, and combined investigation patterns.
IP Intelligence: Geolocation, ASN, and Threat Context
2026-05-24 — 5 min read
Five dimensions of IP intelligence, geolocation accuracy limits, ASN lookup, and combining multiple sources for full threat context.
Breach Check with Open Source Tools: HIBP, k-Anonymity, and Local DBs
2026-05-24 — 5 min read
HIBP API, k-anonymity design for password queries, offline breach databases, and what breach data actually reveals.
Subdomain Enumeration: Certificate Transparency, DNS, and Tool Comparison
2026-05-24 — 5 min read
CT logs via crt.sh, DNS brute-force, sublist3r vs amass vs subfinder, and what to do with discovered subdomains.
WHOIS Lookup Automation: RDAP, Bulk Queries, and NS Analysis
2026-05-24 — 4 min read
RDAP as the modern WHOIS replacement, Python bulk lookup patterns, nameserver clustering for infrastructure mapping.
Pastebin and Paste Site OSINT: Finding Leaked Data
2026-05-24 — 4 min read
Paste site anatomy, psbdmp API queries, pattern recognition in dumps, and correlating paste findings with other OSINT data.
Phone Number OSINT: Carrier Lookup, HLR, and Reverse Search
2026-05-24 — 4 min read
E.164 structural analysis, carrier and HLR lookup, phoneinfoga scan engines, and legal constraints on phone OSINT.
Google Dorks for Security Researchers: A Practical Reference
2026-05-24 — 5 min read
Core operators, target-specific recon patterns, generate_dorks automation, and infrastructure search alternatives.
The Best OSINT CLI Tools in 2025: A Developer's Comparison
2026-05-24 — 5 min read
holehe, sherlock, sublist3r, phoneinfoga, Shodan CLI — selection criteria, performance, and the case for a unified layer.
OSINT for Bug Bounty Hunters: Recon Before the First Request
2026-05-24 — 5 min read
CT logs, passive subdomain enumeration, WHOIS infrastructure mapping, and GitHub secret dorking before active scanning.
Automating OSINT with APIs: Shodan, VirusTotal, Censys and More
2026-05-24 — 5 min read
Authentication, rate limits, and Python integration patterns for the four major OSINT REST APIs.
Parallel OSINT: Investigating Multiple Targets Simultaneously
2026-05-24 — 5 min read
asyncio gather patterns, semaphore-based rate limiting, and the OpenOSINT multi-target runner for bulk investigations.
Generating Structured OSINT Reports: JSON, PDF, and Markdown
2026-05-24 — 5 min read
OpenOSINT's --json flag, /export slash command, PDF generation with reportlab, and building a git-backed report pipeline.
Running OSINT Locally with Ollama: No API Key Required
2026-05-24 — 4 min read
Local LLM inference for privacy-sensitive investigations: model selection, provider switching, and capability tradeoffs vs Claude.
Why AI Hallucination Is Dangerous for OSINT — and How to Prevent It
2026-05-24 — 5 min read
Why LLMs fabricate OSINT data, how OpenOSINT's hard-stop tool execution prevents it, and what still requires manual verification.