X-osint

This is an osint tool which gathers useful and yet credible valid information about a phone number, user's email address and ip address and more to come in future updates

---

Menu

📣Promotion

Try out the following Discord Bot and leave your review

• Airpods firmware Discord Bot
• Apple SUpport Discord Bot
• Apple Newsroom Bot
• SassGuard Bot

Bugs Report

X-osint version 2.2 has undergone a deepsource code analysis scan to check for Security Risks and Bugs Risks, which displayes that X-OSint is free from Bugs so far in Version 2.2, If you do have version 2.1 installed, Kindly Update to newer version for improved changed and bug fixes.

Features

1. IP Address information gathering
2. Email Address information gathering
3. Location MetaData Extraction from Image
4. Host finding
5. Ports finding
6. Subdomain Enumeration
7. CVE Exploits Finder
8. Email Finder
9. Exploit Open Source Vulnerability Database
10. DNS Lookup
11. DNS Reverse
12. Vin extractor
13. Protonmail OSINT
14. Check Global InfoStealer Attack
15. Phone Number Information Lookup
16. MetaData Extraction from any file
17. Text Analysis And many more...

MANY OTHER FEATURES SOON TO COME

Report bugs

If you notice issues while installing this tool or running this tool kindly mail to me at Gmail or Open an issue via github.

Requirements

Python 3
pip
Internet Connection
And some other python packages (alot)

---

How to Update Manually (For any version)

This tool would be updated regularly or as time progresses to improve it, fix more bugs and add so many other features, I would be showing you how to update it

How to Update For Termux

ALSO TYPE THE DOLLAR SIGN

1) Type:

cd $HOME

cd $PREFIX/bin

rm xosint

2) Re-clone from git:

cd $HOME

git clone https://github.com/TermuxHackz/X-osint

cd X-osint

3) Grant permissions and run install file

chmod +x *

bash setup.sh

And your all done!!!..and updated

How to Update for Linux

ALSO TYPE THE DOLLAR SIGN

1) Type:

cd $HOME

cd /usr/local/bin

sudo rm xosint

2) Re-clone from GitHub

cd $HOME

git clone https://github.com/TermuxHackz/X-osint

cd X-osint

3) Grant permissions and run install file

chmod +x *

bash setup.sh

And your all done!!!..and updated

Demo Installation

Here is a video demonstration below that shows how to install X-osint in your various terminal(s)

Youtube Video Demo here

Installation

sudo apt install python3-pip -y
cd $HOME
git clone https://github.com/TermuxHackz/X-osint
cd X-osint
chmod +x *
sudo bash setup.sh
sudo xosint OR python xosint

if your using Termux, Type the same commands from above without the "sudo" and replace "apt" commands to "pkg"

Usage

Once installed, X-osint runs as a single interactive command, there is nothing else to type:

xosint

This opens the numbered menu shown in the image above. Type the number of the option you want (for example 1 for IP Address Info, 2 for Email Address Info, 15 for SMTP Analysis) and press Enter, then follow the prompts. Type 00 from the main menu at any time to quit.

Installation using python virtual environment if normal installation doesnt work

The normal installation of Xosint might likely have some issues running or installing due to some missing python packages, use this method only if the normal installation and usage doesnt work!!

sudo apt install python3-pip python3-venv -y
cd $HOME
git clone https://github.com/TermuxHackz/X-osint
cd X-osint
chmod +x *.sh
python3 -m venv X-osint_venv
source X-osint_venv/bin/activate
pip install -r requirements.txt
sudo bash setup.sh
sudo xosint OR python xosint

NOTE: Make sure you quit the python virtual environment after you have finished using Xosint by typing: deactivate And then reactivate it anytime you want to use X-osint.

Creating a Python Virtual Enviornment to install for MacOS

python3 -m venv venv

Activate using:

source venv/bin/activate

Then RUn Script

Deactivate the virtual Environment when done

deactivate

cd X-osint-fork
source X-osint_venv/bin/activate
sudo xosint
deactivate

Optional:

You can copy X-osint to /usr/local/bin and remove the cloned repository.

cd X-osint
sudo cp -r xosint /usr/local/bin
cd /usr/local/bin && sudo chmod u+x xosint
cd $HOME && sudo rm -rf X-osint

How to update Automatically (if your using version 2.1 of X-Osint and above)

For Termux

cd $HOME

xosint

And then from the menu Type 99 and proceed to selecting termux

For linux

cd $HOME

sudo chmod +x /usr/local/bin/xosint

sudo xosint

And from the menu Type 99 and proceed to selecting linux

🤝 Partnership

X-Osint has also partnered with owner of the repo tookie-osint to bring all of its OSINT tools into X-osint. This is to ensure a more Advance use of OSINT tools. New Features would continue to roll over

How to use tookie-OSINT after installing it

After installing X-osint, go to the NEXT tools option, then you should see tookie-osint and you can install

cd $HOME

For Windows:

python.exe brib.py

For Linux/Mac:

python3 brib.py

OR Launch tookie-osint from X-osint (Longer method though)

📌 NOTICE

If you are using the Subdomains feature and it ask for a word list, please download from here and then extract the zip, make sure you know the location where it is kept, then proceed with using subdomain

🔑 API Keys

Get your various API keys

1) Shodan (https://shodan.io) (Number 4 - 9 from my tool will require a shodan API key, Sign up on shodan and paste your API and begin to use flawlessly)

2) Hunter (https://hunter.io)

3) Opencagedata (https://opencagedata.com): Use this for geolocation of numbers, And get your API from here THIS WOULD BE REQUIRED IN PHONE NUMBER INFORMATION<+, SO SIGN UP AND GET YOUR API TO USE

4) Google Search API Key (https://cse.google.com/cse): Use this for the ImageHunt OSINT feature in X-ossint This is required for proper use of ImageHunt in X-soint

5) Google CLoud Console (https://console.cloud.google.com/apis/credentials)

6) NumVerify (https://numverify.com/): Needed for the Phone number information to work

7) Vonage API (https://dashboard.nexmo.com): Needed for Phone mumber information to work

---

How to create a desktop Launcher for X-osint in Linux

1) Go to your home desktop, right click then click on Create Launcher

2) Fill the field as follows

Name: X-osint

Comment: An osint tool made by AnonyminHack5 in python3

Command: sudo xosint

Working Directory: /usr/local/bin

Icon: Click the No icon button and add an icon, and then Go to my github, and download the .ico image there then select that as your Icon and thats it

---

3) For the Options

Tick

• Run in terminal

---

Works for Termux and Linux/MacOS
Tested 

License Plate OSINT

X-osint is able to fetch and provide information about a car license plate easily, which only works for license plates registered in the United States, States that this feature works for include: Alabama, Alaska, Arizona, Arkansas, California, Colorado, Connecticut, Delaware, Florida, Georgia, Hawaii, Idaho, Illinois, Indiana, Iowa and Distric of Columbia. KIndly note that this feature doesnt work for license plate registered in another country, how ever i may add such a feature but to do so i need encouragement hence, you supporting this project by Starring it and Buying me a cup of coffee. Thanks

Google Dork Hacking

X-osint provides a way by which you can use Google for hacking once you know how to the particular search queries to perform, I have provided some useful google dork queries in this repo code, kindly view and use. Thank you.

SMTP Analysis

X-osint is able to perform an SMTP Analysis and enumerate if an SMTP server is vulnerable or not

VIN Number Identification

X-osint is able to gather information from a gov database and display the list or infos of vehicles based on their Identification numbers. X-osint is able to do that flawlessly without need for an API. VIN is available to use Via CLI or the GUI

ProtonMail OSINT

Credits to pixelbubble, X-Osint is able to perform OSINT investigation on Proton service (for educational purposes only).
ProtOSINT is separated in 3 sub-modules:

• [1] Test the validity of one protonMail account and get additional information
• [2] Try to find if your target have a protonMail account by generating multiple adresses by combining information fields inputted
• [3] Find if your IP is currently affiliate to ProtonVPN
• [4] Find a protonmail user PGP Key and download it right from your terminal And so many More

Demo protonmail OSINT

More features are still to come..Stay Tuned

ChangeLogs for 2.3

• [1] Revamped Metadata Extraction to support any file type
• [2] Added DNSinf OSINT: For benchmarking and performance testing of DNS (Domain Name System) servers and giving you credible information
• [3] Added Text Analysis - powered by scapy for Fast and efficient NLP processing, Tokenization, POS tagging, NER, dependency parsing of texts.
• [4] Added Network Mapper - for WIFI Networks (IN BETA)
• [5] Added Disclaimer for using X-Osint
• [6] Other bugs fixes and improvements.

ChangeLogs for 2.1.0

• [1] Fixed TKinter popup problem on start up

ChangeLogs for 2.1

• [1] Fixed updating
• [2] Fixed Number 3 Option error
• [3] Changed Banner
• [4] Changed User interface
• [5] Added Features
• [6] Improved Speed
• [7] And thats about it, if you face any errors or bugs kindly mail them to me or open an Issue in github

Changelogs

Version 2.2

Critical Bugs Fixed

• [1] Fixed Issue where the python module folium wouldnt install
• [2] Fixed Issue where the python module numpy wouldnt install
• [3] Fixed Issue where the python module google-search wouldnt install
• [4] Fixed Issue where number 2 Option wouldnt work
• [5] Phone number information is now in the "Next Menu"
• [6] Fixed issues where The 'SyntaxWarning' you're encountering is due to the use of invalid escape sequences in regular expression strings.

Buy me a coffee

Love my work and wish to support me, Buy me a coffee here

Contributing

Feel free to clone this project. For major changes, please open an issue first to discuss what you would like to change or add, thank you!!. DO NOT COPY CODE WITHOUT GIVING CREDITS :-

Credits

Some of the modules here and APIs used for the creation of X-osint, got the idea from them, and so i would like to give them credit as most of the features of X-osint wouldnt be so without these mentioned Devs.

• [1] Pixellbubble
• [2] C3n7ral051nt4g3ncy
• [3] SpiderAnonGreyHat
• [4] midnit3Z0mbi3
• [5] Cavalier-HudsonRock

📌 NOTE

For locating a phone number and getting the exact location, it is not exacly possible to get the exact location from a phone number, The Opencage module that serves to get location from a number doesnt exactly get the location per say
Here is what is actually happening:

The phone number is entered and a library is used to turn the country calling code into the name of the country. For example numbers starting with +91 becomes India, +880 is Bangladesh, +34 is Spain, etc.

The country name is then sent to openCage geocoding API as a forward geocoding request (placename to coordinates). We then return the coordinates of the center of the country. For example we turn India into 22.3511148, 78.6677428, roughly in the middle of Uttar Pradesh.

People get confused and angry as to why the coordinates are not actually where the phone is physically located.

Unfortunately there is no such thing as magic, and neither we, nor anyone else, have the ability to derive a phone’s location from an input string like India or Spain.

If you want to know the location of a phone you need a service (application) running on the phone that has user permission to access the location from the operating system. How accurate the coordinates reported by the phone are will depend on which technology is used to determine the location (GPS, cell triangulation, wifi, etc). Once you have those coordinates you can then send them to opencage API as a reverse geocoding request. More info at https://opencagedata.com

Faqs

If your getting the error below which says

1. sudo xosint Traceback (most recent call last): File "/usr/local/bin/xosint", line 11, in from googlesearch import search ModuleNotFoundError: No module named 'googlesearch'

Solution: Kindly make sure you ran the bash setup.sh file and make sure you don't interrupt the setup process. If the error still shows up afterwards, run pip install -r requirements.txt (add --break-system-packages on Linux if pip refuses) from inside the X-osint folder and re-run xosint. Do not run pip install google, that is a different, unrelated package and will not fix this.

2. ModuleNotFoundError for ping3, stripe, prompt_toolkit, distro, opencage, phonenumbers, piexif, colorama or any other package xosint imports?
   Solution: Same fix as above, run pip install -r requirements.txt from inside the X-osint folder. These are all listed in requirements.txt and setup.sh installs them automatically, this only happens if setup.sh was interrupted or skipped.

3. ModuleNotFoundError: No module named 'tkinter'?
   Solution: tkinter is not a pip package, it ships with your OS/Termux. On Termux run pkg install python-tkinter, on Debian/Kali/Ubuntu run sudo apt install python3-tk, then re-run xosint.

4. On Termux, pip fails trying to build cryptography from source with errors like Rust not found or metadata-generation-failed?
   Solution: This happens on some Termux/Android setups where pip can't find a prebuilt cryptography wheel and tries to compile it itself, which needs a Rust toolchain. Run pkg install python-cryptography rust binutils first so Termux's own prebuilt cryptography package is used instead, then re-run pip install -r requirements.txt. setup.sh now does this automatically.

5. On Termux, after running setup.sh you see chmod: changing permissions of 'xosint': Operation not permitted and then xosint: Permission denied when you try to run it?
   Solution: This was a bug in setup.sh: it tried to chmod the file after copying it into $PREFIX/bin, which can fail with "Operation not permitted" on some Android/Termux storage setups, leaving the copied file non-executable. setup.sh now makes xosint executable before copying it, so this should no longer happen. Pull the latest master and re-run bash setup.sh. If you still hit this, you can fix it manually with chmod +x $PREFIX/bin/xosint (Termux) or sudo chmod +x /usr/local/bin/xosint (Linux).

6. Running inside a proot/chroot Linux distro (e.g. via Termux) and getting "Running pip as the 'root' user can result in broken permissions" or a different ModuleNotFoundError than expected?
   Solution: Inside a proot distro you are typically already root, so you don't need sudo, and you should always install with pip install -r requirements.txt from inside the X-osint folder rather than installing individual packages by hand, since a guessed package name (e.g. pingsearch instead of ping3) will not match what xosint actually imports.