Immediate free access to SpiderFoot HX
Are you still using ad-hoc scripts to query APIs, scrape websites and filter through false positives? SpiderFoot HX enables you to “fire and forget” scan to collect OSINT from over 100 data sources without writing a single line of code.
Aside from normalizing scan results for you and giving you a range of ways to work with the data, SpiderFoot HX also automatically analyzes scan data to identify data points that may be of most interest through its Correlations feature.
Run scans automatically daily, weekly or monthly and be notified of any changes that were identified, such as newly exposed ports, new data breaches or newly identified vulnerabilities.
If web interfaces aren’t your thing, you’ll be pleased to know that SpiderFoot HX provides a RESTful API to run scans, query data and more. Use one API to integrate with all of your OSINT APIs.
Write your own modules in Python and run them in the cloud, and have scan data fed in real time to your Splunk or ElasticSearch instance.
The open source version of SpiderFoot is great if you're starting out with OSINT, or are happy to install and manage SpiderFoot yourself and don't need any of the advanced features of SpiderFoot HX such as monitoring, correlations, etc. Check out this resource for an overview of the differences between the two.
Each plan can be subscribed to using a credit card or PayPal which will be charged monthly/annually on the anniversary of your initial subscription. Ordering with a purchase order and payment by wire transfer is also possible, however only for annual subscriptions of the Professional and Enterprise plans. We do not support payment by cryptocurrency.
Every scan you run under the 'Scans' section, and every time a Monitor runs to check your target(s), a scan is performed and therefore counted towards your quota. Investigations are not counted.
When you run a SpiderFoot HX scan or set up a Monitor, you need to specify the targets for that scan, which can be an IP address, subnet, ASN, e-mail address, name, domain name and so on. Each one of these counts as one target except for subnets, which count as the number of IP addresses in that subnet. For instance, if you scan "test.com", that's one target. If you scan "1.1.1.0/24", that's 255 targets. If your scan targets "test.com", "test@test.com", "1.1.1.0/24" and "somehost.test.com", that's 1 + 1 + 255 + 1 = 258 targets.
Once you have subscribed, simply cancel the subscription. Then, on the effective cancellation date (the date until when you have paid), you will be automatically switched back to the free Hobby plan.
No, in all cases you must obtain your own API keys for the different services you wish to use.
"Using SpiderFoot in OSINT investigations has automated and accelerated our OSINT data collection, freeing our analysts to focus on the analysis and discovering other investigation pathways."
"SpiderFoot is a really cool tool for #OSINT. If you haven't checked it, I highly recommend you do!"
"Man Spiderfoot is freaking amazing. I'm using this from now on in every engagement. It's everything I ever dreamed of for OSINT."
"I have used SpiderFoot for a long time and it is still my favourite tool for gathering large amount of information as quickly and accurately as possible."
"I think Spiderfoot is the best OSINT tool that's ever existed, especially if you take the time to get/set all the API keys."
"It really is an amazing tool. Very deep searching patterns. Good team as well."
"SpiderFoot is good stuff."
No credit card. No spam. Just free access to get your feet wet and then upgrade if you need to.
