github-starred/flowsint
2
0
Fork 0
mirror of https://github.com/reconurge/flowsint.git synced 2026-04-29 02:39:41 -05:00
Code Issues 229 Packages Projects Releases 11 Wiki Activity
Files
653b319b22173ad6ec7c83370adfc8d147ac2e05
flowsint/README.md
dextmorgn 2123ea5b8d feat: complete refactor
2025-11-27 17:16:41 +01:00

251 lines
6.5 KiB
Markdown
Raw Blame History

# Flowsint
[![License: AGPL-3.0](https://img.shields.io/badge/License-AGPL--3.0-blue.svg)](./LICENSE)
[![Ethical Software](https://img.shields.io/badge/ethical-use-blue.svg)](./ETHICS.md)
Flowsint is an open-source OSINT graph exploration tool designed for ethical investigation, transparency, and verification.
**Ethics:** Please read [ETHICS.md](./ETHICS.md) for responsible use guidelines.
<img width="1439" height="899" alt="hero-dark" src="https://github.com/user-attachments/assets/01eb128e-bef4-486e-9276-c4da58f829ae" />
## Contributing
Flowsint is still in early development and definetly needs the help of the community! Feel free to raise issues, propose features, etc.
## Get started
Don't want to read ? Got it. Here's your install instructions:
#### 1. Install pre-requisites
- Docker
- Make
#### 2. Run install command
```bash
git clone https://github.com/reconurge/flowsint.git
cd flowsint
make prod
```
Then go to [http://localhost:5173/register](http://localhost:5173/register) and create an account. There are no credentials or account by default.
> ✅ OSINT investigations need a high level of privacy. Everything is stored on your machine.
## What is it?
Flowsint is a graph-based investigation tool focused on reconnaissance and OSINT (Open Source Intelligence). It allows you to explore relationships between entities through a visual graph interface and automated enrichers.
### Available Enrichers
**Domain Enrichers**
- Reverse DNS Resolution - Find domains pointing to an IP
- DNS Resolution - Resolve domain to IP addresses
- Subdomain Discovery - Enumerate subdomains
- WHOIS Lookup - Get domain registration information
- Domain to Website - Convert domain to website entity
- Domain to Root Domain - Extract root domain
- Domain to ASN - Find ASN associated with domain
- Domain History - Retrieve historical domain data
**IP Enrichers**
- IP Information - Get geolocation and network details
- IP to ASN - Find ASN for IP address
**ASN Enrichers**
- ASN to CIDRs - Get IP ranges for an ASN
**CIDR Enrichers**
- CIDR to IPs - Enumerate IPs in a range
**Social Media Enrichers**
- Maigret - Username search across social platforms
**Organization Enrichers**
- Organization to ASN - Find ASNs owned by organization
- Organization Information - Get company details
- Organization to Domains - Find domains owned by organization
**Cryptocurrency Enrichers**
- Wallet to Transactions - Get transaction history
- Wallet to NFTs - Find NFTs owned by wallet
**Website Enrichers**
- Website Crawler - Crawl and map website structure
- Website to Links - Extract all links
- Website to Domain - Extract domain from URL
- Website to Webtrackers - Identify tracking scripts
- Website to Text - Extract text content
**Email Enrichers**
- Email to Gravatar - Find Gravatar profile
- Email to Breaches - Check data breach databases
- Email to Domains - Find associated domains
**Phone Enrichers**
- Phone to Breaches - Check phone number in breaches
**Individual Enrichers**
- Individual to Organization - Find organizational affiliations
- Individual to Domains - Find domains associated with person
**Integration Enrichers**
- N8n Connector - Connect to N8n workflows
## Project structure
The project is organized into autonomous modules:
### Core modules
- **flowsint-core**: Core utilities, orchestrator, vault, celery tasks, and base classes
- **flowsint-types**: Pydantic models and type definitions
- **flowsint-enrichers**: Enricher modules, scanning logic, and tools
- **flowsint-api**: FastAPI server, API routes, and schemas only
- **flowsint-app**: Frontend application
### Module dependencies
```
flowsint-app (frontend)
flowsint-api (API server)
flowsint-core (orchestrator, tasks, vault)
flowsint-enrichers (enrichers & tools)
flowsint-types (types)
```
## Development setup
### Prerequisites
- Docker
### Run
Make sure you have **Make** installed.
```bash
make dev
```
### Development
The app is accessible at [http://localhost:5173](http://localhost:5173).
## Module details
### flowsint-core
Core utilities and base classes used by all other modules:
- Database connections (PostgreSQL, Neo4j)
- Authentication and authorization
- Logging and event handling
- Configuration management
- Base classes for enrichers and tools
- Utility functions
### flowsint-types
Pydantic models for all data types:
- Domain, IP, ASN, CIDR
- Individual, Organization, Email, Phone
- Website, Social profiles, Credentials
- Crypto wallets, Transactions, NFTs
- And many more...
### flowsint-enrichers
Enricher modules that process data:
- Domain enrichers (subdomains, WHOIS, resolution)
- IP enrichers (geolocation, ASN lookup)
- Social media enrichers (Maigret, Sherlock)
- Email enrichers (breaches, Gravatar)
- Crypto enrichers (transactions, NFTs)
- And many more...
### flowsint-api
FastAPI server providing:
- REST API endpoints
- Authentication and user management
- Graph database integration
- Real-time event streaming
### flowsint-app
Frontend application.
- Modern and UI friendly interface
- Built for performance (no lag even on thousands of nodes)
## Development workflow
1. **Adding new types**: Add to `flowsint-types` module
2. **Adding new enrichers**: Add to `flowsint-enrichers` module
3. **Adding new API endpoints**: Add to `flowsint-api` module
4. **Adding new utilities**: Add to `flowsint-core` module
## Testing
Each module has its own (incomplete) test suite:
```bash
# Test core module
cd flowsint-core
poetry run pytest
# Test types module
cd ../flowsint-types
poetry run pytest
# Test enrichers module
cd ../flowsint-enrichers
poetry run pytest
# Test API module
cd ../flowsint-api
poetry run pytest
```
## Contributing
1. Follow the modular structure
2. Use Poetry for dependency management
3. Write tests for new functionality
4. Update documentation as needed
---
## ⚖️ Legal & Ethical Use
**Ethics:** Please read [ETHICS.md](./ETHICS.md) for responsible use guidelines.
Flowsint is designed **strictly for lawful, ethical investigation and research purposes**.
It was created to assist:
- Cybersecurity researchers and analysts
- Journalists and OSINT investigators
- Law enforcement or fraud investigation teams
- Organizations conducting internal threat intelligence or digital risk analysis
**Flowsint must not be used for:**
- Unauthorized intrusion, surveillance, or data collection
- Harassment, doxxing, or targeting of individuals
- Political manipulation, misinformation, or violation of privacy laws
Any misuse of this software is strictly prohibited and goes against the ethical principles defined in [ETHICS.md](./ETHICS.md).
Reference in New Issue View Git Blame Copy Permalink