A comprehensive OSINT (Open Source Intelligence) toolkit with a sleek dark hacker-themed GUI For defensive security research and threat intelligence only
404SINT is a powerful, modular OSINT framework designed for security professionals, penetration testers, and researchers. Built with Python and featuring a Matrix-inspired dark GUI, it provides 8 specialized intelligence gathering modules with professional HTML reporting capabilities.
- 🎨 Dark Hacker-Themed GUI - Professional Matrix-style interface
- 🔧 8 Specialized Modules - Comprehensive OSINT capabilities
- 📊 HTML Reports - Beautiful, exportable intelligence reports
- ⚡ Concurrent Scanning - Fast, threaded operations
- 🖥️ Dual Interface - GUI and CLI modes
- 🎯 Modular Design - Easy to extend and customize
| Module | Description | Key Features |
|---|---|---|
| 🌐 Domain Enumeration | Subdomain discovery & DNS analysis | Common subdomain bruteforce, DNS records (A, AAAA, MX, NS, TXT, SOA), Certificate Transparency logs |
| 📧 Email/Username Lookup | Email validation & username search | Format validation, Gravatar detection, Email reputation, Platform username search |
| 👥 Social Media Aggregation | Profile discovery across platforms | 30+ social media platforms, Concurrent scanning, Direct profile links |
| 🖥️ IP Reconnaissance | Network intelligence gathering | IP geolocation, WHOIS/RDAP lookups, Port scanning, Reverse DNS |
| 🔓 Data Breach Checking | Compromised credential detection | Have I Been Pwned integration, Breach timeline, Security recommendations |
| 📄 Metadata Extraction | File metadata analysis | EXIF data (images), GPS coordinates, PDF metadata, Document properties |
| 🕸️ Web Scraping | Website intelligence | Content extraction, Technology detection, Email/phone harvesting, Page archiving |
| 📍 Geolocation Analysis | Location intelligence | IP geolocation, Reverse geocoding, Map generation, Nearby places |
- 🎨 Dark Theme UI - Matrix green (#00ff41) with cyan (#00ffff) accents
- ⚡ Multi-threaded - Concurrent operations for maximum speed
- 📊 Professional Reports - Styled HTML exports with statistics
- 🔒 Security-Focused - Defensive security research only
- 💾 Multiple Output Formats - JSON and HTML exports
- 🖥️ Cross-Platform - Works on Linux, macOS, and Windows
- Python 3.8+
- pip package manager
- tkinter (usually included with Python)
# Clone the repository
git clone https://github.com/yourusername/404sint.git
cd 404sint
# Install dependencies
pip3 install -r requirements.txt
# Launch GUI
python3 404sint.pyrequests>=2.31.0 # HTTP library
beautifulsoup4>=4.12.0 # HTML parsing
dnspython>=2.4.0 # DNS operations
ipwhois>=1.2.0 # WHOIS lookups
Pillow>=10.0.0 # Image metadata
PyPDF2>=3.0.0 # PDF processing
python-docx>=1.0.0 # Document metadata
lxml>=4.9.0 # XML/HTML processing
Launch the sleek dark-themed graphical interface:
python3 404sint.pyOr use the launcher script:
./run_gui.shGUI Features:
- 🎨 Dark Matrix-themed interface
- 🖱️ Point-and-click module selection
- 📺 Real-time terminal output
- 💾 One-click HTML report generation
- 🎯 Visual status indicators
For automation and scripting:
# Domain enumeration
python3 404sint_cli.py domain example.com --dns
# Email lookup
python3 404sint_cli.py email user@example.com -o results.json
# Social media search
python3 404sint_cli.py social username -o profiles.json
# IP reconnaissance with port scan
python3 404sint_cli.py ip 8.8.8.8 --whois --ports -o ip_data.json
# Data breach check
python3 404sint_cli.py breach user@example.com -o breach_report.json
# Metadata extraction
python3 404sint_cli.py metadata photo.jpg -o metadata.json
# Web scraping with archiving
python3 404sint_cli.py web https://example.com --archive -o scraped/
# Geolocation analysis
python3 404sint_cli.py geo "8.8.8.8" -o location.jsonDiscover subdomains and analyze DNS infrastructure.
python3 404sint_cli.py domain target.com --dnsFeatures:
- Common subdomain wordlist (50+ entries)
- DNS record enumeration (A, AAAA, MX, NS, TXT, SOA, CNAME)
- Certificate Transparency log queries
- Concurrent subdomain verification
Output:
- Active subdomains with IP addresses
- Complete DNS records
- CT log entries
- Professional HTML report
Validate emails and search for usernames across platforms.
python3 404sint_cli.py email user@example.comFeatures:
- RFC-compliant email validation
- Gravatar profile detection
- Email reputation checking (emailrep.io)
- Username search across major platforms
Checks:
- Email format validation
- Gravatar profile existence
- Email reputation score
- GitHub, Twitter, Reddit, LinkedIn presence
Search for profiles across 30+ social media platforms.
python3 404sint_cli.py social usernamePlatforms Covered:
- Developer: GitHub, GitLab, Bitbucket, Stack Overflow, HackerNews
- Social: Twitter, Facebook, Instagram, LinkedIn, Reddit
- Creative: DeviantArt, Behance, Dribbble, Flickr
- Media: YouTube, Twitch, TikTok, SoundCloud, Spotify
- Professional: Medium, SlideShare, AboutMe
- Other: Pinterest, Tumblr, Patreon, Keybase, Telegram
Features:
- Concurrent platform checking (10 threads)
- HTTP status verification
- Direct profile links
- Summary statistics
Comprehensive IP address intelligence.
python3 404sint_cli.py ip 8.8.8.8 --whois --portsFeatures:
- IP geolocation (city, country, coordinates)
- WHOIS/RDAP lookups
- ISP and ASN information
- Common port scanning (22 ports)
- Reverse DNS lookup
Information Gathered:
- Geographic location
- Network ownership
- Contact information
- Open ports and services
- Hostname resolution
Check if emails appear in known data breaches.
python3 404sint_cli.py breach user@example.comFeatures:
- Have I Been Pwned API integration
- Breach timeline
- Compromised data identification
- Recent breach alerts
- Security recommendations
Output:
- Breach names and dates
- Compromised data types
- Affected account counts
- Remediation advice
Extract metadata from various file types.
python3 404sint_cli.py metadata document.pdfSupported Formats:
- Images: JPG, PNG, GIF, BMP, TIFF (EXIF data, GPS coordinates)
- Documents: PDF (author, dates, software)
- Office: DOCX (properties, revision history)
- All files: Creation/modification dates, file attributes
Extracted Data:
- Camera make/model
- GPS coordinates
- Author information
- Software versions
- Creation dates
- Edit history
Intelligent website data extraction.
python3 404sint_cli.py web https://example.com --archiveFeatures:
- Full page content extraction
- Link and image discovery
- Email and phone number extraction
- Technology/CMS detection
- Social media link identification
- Page archiving
Detected Technologies:
- Web servers (Apache, Nginx, IIS)
- CMS (WordPress, Joomla, Drupal)
- JavaScript frameworks (React, Vue, Angular)
- E-commerce platforms (Shopify, Magento)
Location intelligence from IP addresses or coordinates.
python3 404sint_cli.py geo "37.7749,-122.4194"Features:
- IP address geolocation
- Reverse geocoding
- Map link generation (Google Maps, OpenStreetMap)
- Nearby places discovery
- Coordinate validation
Supports:
- IPv4 addresses
- Hostnames (auto-resolved)
- Lat/lon coordinates
- Multiple geolocation APIs
╔═══════════════════════════════════════════════════════════╗
║ 404SINT ║
║ [ DARK INTELLIGENCE SUITE ] ║
║ ⚠ DEFENSIVE SECURITY ONLY ⚠ ║
╚═══════════════════════════════════════════════════════════╝
>> SELECT MODULE 🌐 DOMAIN ENUMERATION
>> Target Domain:
🌐 Domain Enumeration ┌─────────────────────────┐
📧 Email/Username Lookup │ example.com │
👥 Social Media Search └─────────────────────────┘
🖥️ IP Reconnaissance ☑ Perform DNS enumeration
🔓 Data Breach Check
📄 Metadata Extraction [ START SCAN ] [ CLEAR ]
🕸️ Web Scraping
📍 Geolocation Analysis >> TERMINAL OUTPUT
┌─────────────────────────┐
│ [*] Enumerating domain │
[ READY ] Awaiting command... │ [+] Found: www.example │
└─────────────────────────┘
[*] Enumerating subdomains for example.com
[*] Testing 50 common subdomains...
[+] Found: www.example.com -> 93.184.216.34
[+] Found: mail.example.com -> 93.184.216.35
[+] Found: ftp.example.com -> 93.184.216.36
[*] Gathering DNS records for example.com
[+] A: 93.184.216.34
[+] MX: mail.example.com
[+] NS: ns1.example.com, ns2.example.com
[*] Querying Certificate Transparency logs...
[+] Found 15 domains in CT logs
404SINT generates professional, styled HTML reports with:
- 📈 Executive Summary - Key statistics and findings
- 📊 Visual Data Tables - Organized, sortable results
- 🎨 Color-Coded Results - Easy-to-read status indicators
- 📱 Responsive Design - Works on all devices
- 💾 Exportable - Share and archive intelligence
Report Features:
- Gradient headers with tool branding
- Interactive tables with hover effects
- Statistical cards with icons
- Color-coded badges (success, warning, danger)
- Professional typography
- Print-friendly layouts
Enhance functionality with API keys (set as environment variables):
# Have I Been Pwned (for detailed breach info)
export HIBP_API_KEY="your-api-key-here"
# Hunter.io (for email verification)
export HUNTER_API_KEY="your-api-key-here"Getting API Keys:
- HIBP: https://haveibeenpwned.com/API/Key
- Hunter.io: https://hunter.io/api
The dark theme uses carefully chosen colors:
bg_dark = '#0a0e14' # Main background
bg_darker = '#050810' # Darker elements
accent_green = '#00ff41' # Matrix green (primary)
accent_cyan = '#00ffff' # Cyan (highlights)
accent_red = '#ff0055' # Red (warnings/errors)
button_bg = '#1a1f2e' # Button background
button_hover = '#2d3548' # Button hover stateAdd custom modules in modules/ directory:
# modules/custom_module.py
def run(args):
"""Your custom OSINT module"""
print(f"[*] Running custom scan on {args.target}")
# Your logic here
return resultsFOR DEFENSIVE SECURITY RESEARCH ONLY
This tool is designed exclusively for:
- ✅ Authorized security research
- ✅ Penetration testing (with permission)
- ✅ Threat intelligence gathering
- ✅ Security awareness training
- ✅ Defensive security operations
Prohibited Uses:
- ❌ Unauthorized system access
- ❌ Illegal reconnaissance
- ❌ Privacy violations
- ❌ Malicious intent
- ❌ Harassment or stalking
- Always obtain authorization before scanning any targets
- Respect rate limits and robots.txt
- Follow responsible disclosure for vulnerabilities
- Comply with local laws and regulations
- Protect collected data - encrypt sensitive findings
- Document activities for legal compliance
- Only collect publicly available information
- Handle personal data responsibly
- Provide data deletion upon request
- Follow data minimization principles
- Maintain audit logs
Module Import Errors:
pip3 install -r requirements.txt --force-reinstallPermission Denied (Port Scanning):
sudo python3 404sint_cli.py ip 192.168.1.1 --portsDNS Resolution Errors:
# Check DNS configuration
cat /etc/resolv.conf
# Try alternative DNS
export DNS_SERVER="8.8.8.8"GUI Won't Launch:
# Ensure tkinter is installed
python3 -m tkinter # Should open a test windowSSL Certificate Errors:
pip3 install --upgrade certifi requests404sint/
├── 404sint.py # GUI application
├── 404sint_cli.py # CLI application
├── run_gui.sh # Launcher script
├── requirements.txt # Dependencies
├── README.md # This file
├── CHANGELOG.md # Version history
├── modules/ # OSINT modules
│ ├── __init__.py
│ ├── domain_enum.py
│ ├── email_lookup.py
│ ├── social_media.py
│ ├── ip_recon.py
│ ├── breach_check.py
│ ├── metadata.py
│ ├── web_scraper.py
│ └── geolocation.py
└── utils/ # Utilities
├── __init__.py
└── html_reporter.py # Report generator
Each module follows this structure:
def run(args):
"""
Main entry point for module
Args:
args: Argument object with module-specific parameters
Returns:
dict: Results dictionary for reporting
"""
# Module logic
results = {}
return resultsContributions are welcome! Here's how you can help:
- 🔧 Additional OSINT modules
- 🎨 Theme customization options
- 📊 New export formats (PDF, CSV)
- 🌐 API integrations
- 📱 Mobile-friendly reports
- 🔍 Advanced search features
- ⚡ Performance optimizations
- Fork the repository
- Create a feature branch (
git checkout -b feature/AmazingFeature) - Commit your changes (
git commit -m 'Add AmazingFeature') - Push to the branch (
git push origin feature/AmazingFeature) - Open a Pull Request
- Follow PEP 8 guidelines
- Use type hints where applicable
- Add docstrings to functions
- Include comments for complex logic
- Test thoroughly before submitting
This project is released for educational and defensive security purposes only.
Terms:
- ✅ Use for learning and research
- ✅ Modify and extend functionality
- ✅ Share with attribution
- ❌ Commercial use without permission
- ❌ Malicious or illegal activities
- ❌ Remove security disclaimers
- Have I Been Pwned - Breach data
- Certificate Transparency Logs - crt.sh
- IPWhois/RDAP - Network information
- ipapi.co - IP geolocation
- OpenStreetMap/Nominatim - Geocoding
- emailrep.io - Email reputation
- The OSINT community
- Mr. Robot aesthetics
- Matrix color scheme
- Kali Linux tools
- ⭐ Star this repository
- 👁️ Watch for updates
- 🔔 Enable notifications