🌍 🕵️ Arch-Osint OS VM

📋 Table of contents

• Warning
• Description
• Installation
• Usage
• Pros
• Tools
• Resources
• Features
• OVA
• Version
• Credits
• Contribute & Support
• To-do

⚠️ Warning

Run this script in a clean, dedicated and new operating system. Certain configurations and preferences can be disabled or overwriten. The hardened feature in miscellaneous blocks some functionalities like Bluetooth, network file systems, webcams and more.

🔍 Description

Arch-Osint is available with an OVA image or by running the flexible bash script in a clean archlinux VM.

Aiming at contribute to the osint community, the project is useful for beginner to professional. The OS contain more than hundred tools for Osint [SOCMINT, GEOINT, IMINT and more], and other tools for helping in the investigations [Utilities, Forensics, Steganography, Network and more].

For better experience the script provides resources [Bookmarks, Startme pages, Awesome lists, Guides and more] focused on Osint, and miscellaneous features for improving Osint activities with hardened tricks, privacy tools and custom experience.

👷 Installation

📦 OVA

• Download the VM [5.4GB].
• Verify the sha256sum.

echo 14d5c8f789e209b297176b15a84a32c441a9dbb29a5f6213eac45a1ea54c71c9  Arch-Osint.ova | sha256sum -c

• Credential osint:osint

🧑‍🍳 Installer

git clone https://github.com/MikeHorn-git/arch-osint.git
cd arch-osint
chmod +x arch-osint
sudo ./arch-osint -h
# Run with logs
# sudo ./arch-osint -$OPTION | tee logs.txt

🪶 Usage

Arch-Osint Linux OS VM based on Blackarch.

Syntax: arch-osint -[h|v|a|t|r|m]
options:
-h     Print this Help.
-v     Print software version.
-a     Install all scripts.
-t     Install tools.
-r     Install resources.
-m     Install miscellaneous features.

🏛️ Pros

• Aur limited usage. Build from source can be long, aim to make update quicker.
• Based on archlinux and blackarch repository.
• Bash installer scripts with options. For build a VM from scratch or add to an existent system.
• Custom experience and features.
• Disk space optimized.
• Hardened OS.
• Osint bookmarks resources.
• Osint guides and lists resources.
• Osint tools arsenal from various categories and fields.
• OVA VM.
• Package Manager are Pacman and Pip3 only.
• Pip3 limited usage for dependencies and tools. Pip3 is slower and can break Pacman.
• Python dependencies are from Pacman / Aur.
• Tools related to Osint for better experience like Privacy, Forensics and many more.

🛠️ +100 Tools

• Amass - In-depth attack surface mapping and asset discovery.
• Atscan - Advanced dork Search & Mass Exploit Scanner.
• Bdfr - Downloads and archives content from reddit.
• Blackbird - An OSINT tool to search for accounts by username in social networks.
• Binwalk - Firmware Analysis Tool.
• Carbon14 - OSINT dating tool for web pages.
• Cardpwn - OSINT Tool to find Breached Credit Cards Information.
• Chatgpt-shell-cli - Simple shell script to use OpenAI's ChatGPT and DALL-E from the terminal. No Python or JS required.
• Cloud_enum - Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
• Cloud_sherlock - Enum S3 buckets and SaaS.
• Crosslinked - LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping.
• DumpsterDiver - Tool to search secrets in various filetypes.
• Elasticsearch - Free and Open, Distributed, RESTful Search Engine.
• Email2phonenumber - A OSINT tool to obtain a target's phone number just by having his email address.
• Emdofi - Uncovers a censored email's domain.
• ExchangeFinder - Find Microsoft Exchange instance for a given domain and identify the exact version.
• Exiflooter - ExifLooter finds geolocation on all image urls and directories also integrates with OpenStreetMap.
• Exiv2 - Image metadata library and tools.
• FacebookOsint - FBOSINT - A tool to replace facebook graph search Resources.
• Fake-sms - A tool to skip phone number based SMS verification by using a temporary phone number that acts like a proxy.
• Fbi - Facebook Information.
• Ffmpeg - Complete solution to record, convert and stream audio and video.
• Fierce - A DNS reconnaissance tool for locating non-contiguous IP space.
• FinalRecon - The Last Web Recon Tool You'll Need.
• Foremost - Foremost is a console program to recover files based on their headers, footers, and internal data structures.
• Gallery-dl - Command-line program to download image galleries and collections from several image hosting sites.
• GhostTrack - Useful tool to track location or mobile number.
• Ghunt - Offensive Google framework.
• Gitfive - Track down GitHub users.
• Githound - Reconnaissance tool for GitHub code search.
• Gitleaks - Protect and discover secrets using Gitleaks.
• Gobuster - Directory/File, DNS and VHost busting tool written in Go.
• GooFuzz - GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters.
• Google Earth Pro - The world's most detailed globe.
• Gophish - Open-Source Phishing Toolkit.
• H8mail - Email OSINT & Password breach hunting tool, locally or using premium services.
• Harpoon - CLI tool for open source and threat intelligence.
• Holehe - Holehe check if the mail is used on different sites like twitter, instagram with the forgotten password.
• Ignorant - Ignorant allows you to check if a phone number is used on different sites like snapchat, instagram.
• ILS - Finds Instagram location IDs near a specified latitude and longitude.
• InstagramOsint - An Instagram Open Source Intelligence Tool.
• Instaloader - Download pictures (or videos) along with their captions and other metadata from Instagram.
• Ipinfo - Official Command Line Interface for the IPinfo API (IP geolocation and other types of IP data).
• Kamerka - Build interactive map of cameras from Shodan.
• Linkedin2username - OSINT Tool: Generate username lists for companies on LinkedIn.
• Mailcat - Find existing email addresses by nickname using API/SMTP checking methods without user notification.
• Maigret - Collect a dossier on a person by username from thousands of sites.
• Maltego - Comprehensive tool for graphical link analyses that offers real-time data mining and information gathering.
• Masto - Masto is an OSINT tool written in python to gather intelligence on Mastodon users and instances.
• Metagoofil - Metadata harvester.
• Moriarty-Project - This tool gives information about the phone number that you entered.
• Mpv - Command line video player.
• Nqntnqnqmb - Allows you to retrieve information on linkedin profiles/companies and search on linkedin companies/persons.
• Nmap - Utility for network discovery and security auditing.
• Octosuite - An all-in-one GitHub open-source intelligence framework.
• Onionsearch - OnionSearch is a script that scrapes urls on different .onion search engines.
• Osintgram - Osintgram is a OSINT tool on Instagram.
• Osintmap - A map of OSINT tools.
• Phoneinfoga - Information gathering framework for phone numbers.
• Phonia - Phonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources.
• Photon - Incredibly fast crawler designed for OSINT.
• PD - Download all images/videos from Pinterest user/board/section.
• Proton1ntelligence - Protintelligence is a Python script for helps you to find intelligence on Protonmail users.
• Protosint - ProtOSINT is a Python script that helps you investigate Protonmail accounts and ProtonVPN IP addresses.
• Pwndb - Search for leaked credentials.
• PwnedOrNot - OSINT Tool for Finding Passwords of Compromised Email Addresses.
• Recon-ng - Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.
• Reavealin - Uncover the full name of a target on Linkedin.
• Ripme - Downloads albums in bulk.
• Sherlock - Hunt down social media accounts by username across social networks.
• Shodan - The official Python library for Shodan.
• Skiptracer - OSINT python webscaping framework.
• SlackPirate - Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace.
• SleuthKit - The Sleuth Kit® is a ommand line digital forensics tools that allow you to investigate volume and file system data.
• SMWYG - This tool allows you to perform OSINT and reconnaissance on an organisation or an individual.
• SMS - This program can search at multiple locations and download all stories for later investigation and categorization.
• Snoop - Snoop Project One of the most promising OSINT tools to search for nicknames.
• Snooper - OSINT Reddit user activity analyzer.
• Social-analyzer - API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites.
• SonicVisualiser - Sonic Visualiser is a program for viewing and exploring audio data for semantic music analysis and annotation.
• Sqlitebrowser - Official home of the DB Browser for SQLite (DB4S) project.
• Spiderfoot - SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
• Stegoveritas - Yet another Stego Tool.
• Sterra - Instagram OSINT tool to export and analyse followers | following with their details.
• Telepathy - Public release of Telepathy, an OSINT toolkit for investigating Telegram chats.
• Telescan - Search users in groups (and in which groups is the user) by id, username or phone number (if it's in your contacts).
• Theharvester - E-mails, subdomains and names Harvester - OSINT.
• TD - Tiktok Downloader/Scraper using requests & bs4.
• Tinfoleak - The most complete open-source tool for Twitter intelligence analysis.
• TorBrowser - Securely and easily download, verify, install, and launch Tor Browser in Linux.
• Torcrawl - Crawl and extract (regular or onion) webpages through TOR network.
• Translate-shell - Command-line translator using Google Translate, Bing Translator, Yandex.Translate, etc.
• Trape - People tracker on the Internet: OSINT analysis and research tool by Jose Pino.
• Twint-zero - Old Twint style, but zero fat.
• Unredacted - Never ever ever use pixelation as a redaction technique.
• Vt-cli - VirusTotal Command Line Interface.
• Waybackpy - Wayback Machine API interface & a command-line tool.
• Wafw00f - WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
• WebOsint - W3b0s1nt (WebOSINT) is a Python tool/script for passive Domain Intelligence gathering.
• Whatbreach - OSINT tool to find breached emails, databases, pastes, and relevant information.
• Xeuledoc - Fetch information about a public Google document.
• Yara - The pattern matching swiss knife.
• Yoga - Your OSINT Graphical Analyzer.
• Yt-dlp - A youtube-dl fork with additional features and fixes.
• Zen - Find emails of Github users.

📚 Resources

• DeepdarkCTI resources.
• Google dorks list resources.
• Osint awesome lists resources.
• Osint bookmarks
• Osint guides resources.
• Osint startme pages.
• Sanction and Most wanted lists.

🌟 Miscellaneous Features

• Custom background.
• Firewall with the Uncomplicated Firewall.
• Hardened Firefox with user.js.
• Hardened system featuring Kernel hardened, blacklist unwanted Kernel module, anti core dump, file restriction, entropy, tools and many more.
• Note taking and to-do Joplin app with osint notebook.
• Manipulation of MAC address by Macchanger with systemd unit.
• Privacy tools featuring Bleachbit, Mat2, Proxychains-ng, Torctl.
• Rootkit Hunter with Rkhunter.
• Vim with custom vimrc.
• Waydroid for android container-base approach.
• Zsh with ohmyzsh framework.

📦 OVA

The OVA VM contains exclusive features.

• Blackarch blue theme.
• Custom Grub menu.
• Hardened OS [72 index on lynis].
• Light OS disk [11G].

🪧 Version 1.0

✉️ Credits

• All author and contributor for the projects, resources, tools and more mentioned in this project.
• The unknown background author.
• Blackarch
• Bookmarks

Related Project

• Trace labs VM

🗣️ Contribute & Support

• Feel free to contribute by giving ideas, open/fix issues, ...
• 💫 the project if you like it, it's the best way to support.

📡 To-Do

• Add more features and resources.
• Add new created tools.
• Create an ova file.
• Create an updater script for tools from github.