We use cookies

This website use cookies to give you the best, most relevant experience. By continuing to use this website you’re accepting this. If you wish to find out more, click this link (or by clicking the Privacy link at the bottom of any page)

Reconnaissance.
Threat Intelligence.
Perimeter Monitoring.

SpiderFoot automates OSINT collection so that you can focus on analysis.

download

Open source version

Immediate free access to SpiderFoot HX

The three pillars of SpiderFoot

Bring all the OSINT on the Internet to your fingertips in three powerful ways

Scanning

With almost 200 modules and growing, SpiderFoot provides an easy-to-use interface that enables you to automatically collect Open Source Intelligence (OSINT) about IP addresses, domain names, e-mail addresses, usernames, names, subnets and ASNs from many sources such as AlienVault, HaveIBeenPwned, SecurityTrails, SHODAN and more.

Monitoring

What if e-mail addresses on your domain suddenly appeared in a data breach, or if an IP address on your network appeared in a botnet tracker? The availability of unintended information about your organisation on the Internet can pose a serious risk or even indicate that a breach has already occurred. Use SpiderFoot to continually monitor OSINT data sources and detect when new intelligence is discovered about your organisation.

Investigations

Found a suspicious IP address in your logs or received a targeted phishing attempt? Perhaps you want to dig deeper into the e-mail address used, or links referenced? SpiderFoot HX provides an intuitive graph-based interface enabling you to incrementally investigate such entities to pin-point the information you’re seeking.

Features

Open Source or Cloud

SpiderFoot comes in two flavors: an Open Source version that you can set up and run locally for performing scans, or SpiderFoot HX which is a managed cloud-hosted version with more functionality and no set-up required.

Learn More

Over 100 Integrations

SpiderFoot modules integrate with a wide variety of threat intelligence sources, Internet scanners, breach databases, e-mail contact databases and more. Be confident that when a SpiderFoot scan completes, everything that was found is everything that can be found about your target.

Learn More

Deep Data Analysis

SpiderFoot is unique in that it recursively analyses each piece of data found during a scan so that no stone is left unturned in the search for that critical IP address, e-mail address or other data point that makes the difference between the success or failure of your investigation.

Learn More

Integrations

There is probably no OSINT data source for which SpiderFoot doesn’t have an integration today. And if you want to see one added, simply put in a request. Its open source architecture means we can usually implement it in days, not weeks.

Use another tool for the initial reconnaissance phase or have a list of entities you’ve extracted from logs locally? No problem, import your list of targets from Hunchly or CSV and use SpiderFoot to take care of the data collection.

Prefer working with the results on the command line or your own offline database? No problem, easily export the data into JSON, CSV or GEXF format. Never have the fear of lock-in by proprietary databases or file formats. Your data, your way.

Want to be notified when a scan completes, or when the OSINT data out there about your target changes? You can configure SpiderFoot HX to send notifications to Slack, generic Web-hooks and/or e-mail.