OpenOSINT/OpenOSINT

Score7.6

Popularity6.5

Riskconditional

TierSilver

Score breakdown

Usefulness8.0

Novelty8.0

Momentum7.0

Maturity5.7

Open-source/build8.4

Evidence7.2

Workflow potential9.1

Setup ease8.8

Popularity is tracked separately. Support, ads, sponsorships, and tips never affect these signals.

Why it matters

Useful for security researchers, journalists, AI builders, and bug bounty hunters who want a self-hostable, agent-friendly OSINT surface they can drive from the terminal, an MCP client, or an interactive REPL without shipping queries to a third-party service.

Who should use it

security researchers and bug bounty hunters who want an agent-friendly OSINT surface they can drive from the CLI or MCPjournalists and investigators who need a self-hostable OSINT workflow instead of paid SaaS lookupsAI builders who want a 16-tool OSINT MCP server to give their coding agents real investigative capabilityteams evaluating OSINT tooling who want an MIT-licensed baseline they can audit and extend

Who should skip it

Skip if the source link, docs, or setup requirements do not match your workflow.

Risk explanation

It is an OSINT tool that can query people, domains, IPs, and breach data, so use it only on targets you are authorized to investigate, store results in a location you control, and confirm the legal basis before using it for hiring, credit, or other consequential decisions; It exposes an MCP server and a CLI that an AI agent can drive, so scope the agent's tool permissions, log every query, and confirm what gets cached or persisted before granting production credentials or letting it touch sensitive identifiers.

Evidence links

github.com

Closest alternatives / related signals

osintsecurityagentmcpreplopen-source