~/trending
~$PIMONO24.1%~$OPENCLAW15.6%~$ZVEC55.9%~$CLAUDECO5.1%~$HERETIC15.2%~$ROWBOAT12.7%~$GOGCLI19.8%~$CODEXCLI2.3%~$CONTEXT72.5%~$SUMMARIZ19.5%~$PIMONO24.1%~$OPENCLAW15.6%~$ZVEC55.9%~$CLAUDECO5.1%~$HERETIC15.2%~$ROWBOAT12.7%~$GOGCLI19.8%~$CODEXCLI2.3%~$CONTEXT72.5%~$SUMMARIZ19.5%
live
Navigate:
SpiderFoot
~$SPIDE0.6%

SpiderFoot: Open source OSINT automation tool

Python reconnaissance framework with 200+ OSINT modules.

LIVE RANKINGS • 11:31 AM • STEADY
OVERALL
#122
118
SECURITY
#10
7
30 DAY RANKING TREND
ovr#122
·Secur#10
STARS
16.8K
FORKS
2.8K
7D STARS
+107
7D FORKS
+19
Tags:
Security
See Repo:
Share:

Learn more about SpiderFoot

SpiderFoot is an OSINT automation framework written in Python 3 that aggregates data from over 200 modules to perform reconnaissance on various entity types including IP addresses, domains, email addresses, and usernames. The tool uses a publisher/subscriber model where modules feed data to each other, enabling multi-stage reconnaissance workflows such as subdomain enumeration, threat intelligence lookups, and breach database searches. It includes a SQLite backend for data storage, a YAML-configurable correlation engine with predefined rules, and support for exporting results in CSV, JSON, and GEXF formats. SpiderFoot can be deployed via web interface, command-line, or Docker, and supports integration with external tools like Nmap, DNSTwist, and Whatweb.

SpiderFoot
1

Modular Pipeline Architecture

Over 200 modules operate in a publisher/subscriber pattern where output from one module automatically feeds into others. Enables complex multi-stage reconnaissance workflows like subdomain enumeration followed by threat intelligence lookups without manual data passing.

2

Multiple Deployment Options

Ships with embedded web UI, full-featured CLI, and Docker support in a single package. Run scripted operations headless or use the graphical interface for interactive investigations without switching tools.

3

YAML Correlation Engine

Includes 37 predefined rules that automatically identify relationships and patterns across collected data. Query results directly from the SQLite backend for custom analysis beyond the built-in correlation logic.

from spiderfoot import SpiderFootScanner

# Initialize scanner and start a basic scan
scanner = SpiderFootScanner()
scan_id = scanner.startScan(
    name="Target Domain Scan",
    target="example.com",
    modules=["sfp_dnsresolve", "sfp_whois", "sfp_emailformat"]
)
print(f"Scan started with ID: {scan_id}")

Top in Security

1

Ghidra

65,041
2

PentestGPT

11,792
3

Gitleaks

25,126
4

FingerprintJS

26,656
5

CAI

7,236
See all →

Trending Repos

1

Pi Mono

17,222#1
2

OpenClaw

233,443#2
3

Zvec

8,089#3
4

Claude Code

70,649#4
5

Heretic

9,761#5
See all →
[ EXPLORE MORE ]

Related Repositories

Discover similar tools and frameworks used by developers

Subfinder

Passive subdomain discovery via DNS resolution and validation.

13,1441,512

Sigma

YAML-based detection rules with SIEM query conversion.

10,1482,551

Semgrep

Pattern-based code scanner for 30+ languages.

14,271876

Gitleaks

Regex-based secret scanner for git repositories.

25,1261,933

DOMPurify

DOM-based XSS sanitizer using native browser parsing.

16,674826