Sn0int is an open-source, multi-featured, and semi-automatic OSINT framework and package manager developed using Rust, Python, and other technologies. The audience includes law enforcement agencies, IT security professionals, and bug bounty hunters to collect intelligence for a specific target or about themselves. It enumerates the attack surface by taking care of public information and displaying the results in a unified format, which can be reused in follow-up investigations.
The features include Basic image processing, Harvesting subdomains from passive DNS and certificate transparency logs, collecting data about phone numbers, Enriching IP addresses with GeoIP and asn info, Discovering vulnerable logins in breaches, and locating a profile of a person across the internet. It is fully open-source, flexible, and is influenced by Maltego and recon-ng. All the mentioned investigations are not hardcoded and are only offered by modules processed in the sandbox. The project can be extended by adding new modules and sharing them with other users.
SpiderFoot is a multi-featured platform developed to Automate OSINT for Attack Surface Monitoring, Security Assessments, and Asset Discovery. It automates OSINT to help you find better stuff without wasting time. It is suitable for all use cases and is a great resource for saving time by automating the tasks of interesting OSINT. You can use it to combat Cyber Threat Intelligence whenever a dodgy IP address is found or when investigation so required for indicators in the logs.
This also applies in case you need to go deeper into the used e-mail address or the referenced links in the organization. The platform offers more than 200 modules for data analysis and collection while ensuring each and every detail, no matter how small and large is disclosed to you. Penetration testers and Red teams worldwide rely on SpiderFoot because of its vast OSINT identification and reach of low-hanging fruit, disclosing unknown and unfamiliar IT assets, open cloud storage buckets, exposed credentials, and more.
Utilize the given tools to monitor OSINT data sources and find when discovery about new intelligence is made. The platform supports more than 100 integrations such as TotalHash.com, malwaredomainlist.com, PhishStats, Github, Emerging Threats, Venmo, PhishTank, blocklist.de, HaveIBeenPwned, CallerName, and Zetalytics. Other features include Deep Data Analytics and Open Source Cloud.
Lampyre is an OSINT and Data analysis tool that is intended to help everyone save time and boost productivity on their analytical tasks by not having to search for methods of getting access to data. The simple way to summarize is that it lets you obtain, analyze and visualize data in a single place and view things hidden from others. Remove constraints like converting formats and fully concentrate on analytical tasks, removing the need to search on how to obtain data.
The highlights include over 100 requests for accessing and processing data, interacting with data on a table, map, and graph at the same time, Python API for completing even the most bothersome tasks, Importing data from a file and using it to work offline, Leveraging ontology to work with interesting objects, and time-line and statistical data analysis.
The individual can view their data from 4 perspectives and find things they didn’t previously know. The four different visualization modes are named as graph, table, map, and all of them combined. Start by powering up your sources and interlinking data in a single hub. In case the information is insufficient, you can enrich the data with a click.
Lampyre offers several methods of obtaining data by taking assistance from OSINT requests or via DaaS or uploading various types of data files offline. The results are kept in a secure environment, meaning no data leaks or cloud. You can unshackle the Web and run analytical requests in a network that is isolated from the rest. Other areas where the platform can help include financial analytics, Law enforcement, Due diligence, and Cyber Security.
SIREN.io is a state-of-the-art platform providing organizations across the globe access to Search-Based Investigative Intelligence. It keeps networks, people, and assets safe. It is the answer to the Big Data Deluge Challenge that people face during investigations. It helps these individuals make the right decisions by giving them meaningful data which can be used to ensure the safety of networks, people, and assets. AN investigation relies on a heavy amount of data from various sources, which are disconnected and unrelated.
This means the information has to be linked together and analyzed for strategic and tactical investigations at high speed. The tools currently available don’t have what it takes to meet this challenge. To counter this, SIREN.io was developed. It consolidates the capabilities required by an investigator during their work and provides them with a unique search-based approach to investigations. It is able to ingest, make and connect the huge amount of data searchable by instantly processing billions of records via its join technology.
As of now, only the platform is capable of assisting in this endeavor and is built on an open-source system. It is being used in several industries, namely Life Sciences, Cybersecurity, Telecommunications, Law Enforcement and Intelligence, and Fraud and Internal Threats. SIREN.io is packed with some amazing features that help everyone a big deal, and these include Associative Dashboards, Link Analysis, and Knowledge Graph, Data Connectors, Search, NLP, Topic Discovery, and Elasticsearch Big Data Join. Capabilities are different for each user. For example, the Analyst or Data Scientist can use a Complete big data scale and correlations, an Architect/Solution Builder is provided with Advanced support, and IT Security & Operations receive Fine-grained security.
IBM i2 Analyst’s Notebook equips Analysts with strong visual analysis tools so that they can easily find patterns and connections hidden in the data. It makes it easy for you to transform data into intelligence and comes bundled with advanced features like temporal or geospatial views, connected network visualizations, and analysis of social networks to make it easy for you to reveal connections that are not easily viewable in the data patterns.
With this insight, everyone is able to disrupt and identify fraudulent, cyber, and criminal threats. Receive a full intelligence view by running an analysis of a wide range of data types with a flexible visualization and data modeling environment. Identify core events and people and get information into and better knowledge of data by utilizing several analysis views such as statistical, temporal, and spatial views.
View relations in networks by using integrated social network analysis capabilities to maximize comprehension of the structure, method, and hierarchy of operation of fraudulent, criminal, and terrorist networks. The key features include Advanced analytics, Timeline analysis, IBM Security i2 Chart Reader, Link analysis environment, Social network analysis, and Statistical views.
DataWalk is an analytics platform that helps you identify issues and perform investigations while saving a lot of time, thanks to the offered tools. It is a decent alternative to Complex SQL Queries, Palantir Gotham, Graph Database, and IBM i2 EIA. It is trusted by many customers, including some big names like Washington State Gambling Commission, Departments of Justice, and Defense USA. The platform wants to ensure that customers have no difficulty when performing investigations, and for this reason, it provides many features to help you.
These include Enterprise-Class System, Fuse All Your Data, Graph Analytics Software, Find Patterns and Connections, and No-code, Ad-Hoc Complex Queries. The usefulness of DataWalk is proven and applied in various fields such as Anti-Money laundering, Sandbox, Anti-Fraud, Pandemic Response, Cryptocurrency Investigations, Law Enforcement, Defense, Financial Crime 360, and Intelligence Analysis. Before choosing a solution, people look at its highlights to see whether it works for them or not.
With DataWalk, they won’t have to worry about this as it is a Cost-Effective Enterprise-Class System that is capable of serving as a core element of an enterprise workflow. Throughout the organization, users can visualize value using multiple simple interfaces, regardless of the underlying purpose. Other characteristics of the platform include Fusing all the data in one repository for quick access, instantly identifying and analyzing hidden connections, anomalies, and patterns, and reporting and sharing in a secure environment.
Dradis is a feature-rich, useful and open source collaboration and reporting tool loved by thousands of InfoSec professionals worldwide. It is highly extensible and enables you to maximize productivity while saving time on every project. It is developed by a highly professional team of InfoSec professionals. You can generate reports with a single link which works by fusing the output of various security scanning tools, notes, and manual findings to create consistent reports in less time than usual.
Monitor the performance of the project, divide tasks and leave shared knowledge on findings with team members. Everyone from the team can easily stay informed about the progress thanks to centralized project details. The tool is extensible and is capable of connecting with over 19 tools like Qualys, Burp, and Nessus. Also, if the customer can’t find integration for their preferred tool on here, then they do not have to worry because it can be created without hassle. The platform has ten years of history, receives updates from time, and has an active community.
Netglub is an open-source, cross-platform tool for Linux, Mac, and Windows that comes with an intuitive and clean UI to help you obtain, visualize and run analysis on data. It suits the needs of anyone actively searching for a tool to gather information. It is trusted by hundreds of users and has been downloaded a lot of times since its inception. The solution has been called the clone of Maltego because of the many similarities that it carries. Therefore, it is a great product for anyone who can’t afford Maltego or looking for a free package.
Sentinel Visualizer is a next-gen Big Data Visualization solution that comes with many tools to fulfill the ever-changing demands of information workers, law enforcement, investigators, researchers, and law enforcement, making the tool the perfect companion for your big data. It includes state-of-the-art features and best-of-breed usability to give the trends and insights deep within the data.
View multi-level links between entities and map different types of relationships. Optimized views are generated using advanced drawing and redrawing features to help one highlight the crucial entities. Important suspects in complex webs can be revealed through Social Network Analysis. You can increase the value of data with weighted relationship types, integrated geospatial features, advanced filtering, timelines, and shortest path analysis.
The highlights of the product include No Dongle, Integrated knowledgebase, timelines, link analysis, geospatial, social network and link analysis, Support for Multiple Monitors, Multi-user support, and Laptop deployable. The best feature of the solution is that it has the capability to convert columns and rows into visual data showing multi-level hierarchical associations and links that are hidden among events, people, and places.
The solution supports Database Search, allowing you to search particular relationships and entities among millions of records in no time at all. The search supports advanced options, and you can expand the selected item to view further details, and edit it, place it in reports, export it to Excel, and display it on a link diagram. Other features include Integrated Knowledgebase, Data Visualization, and Social Network Analysis.
NetMiner is a robust solution that enables visualization and exploratory analysis of data. It gives you the option to browse network data with higher interactivity. One of the newly introduced modules is Semantic Network Analysis which allows you to extract words from unstructured text data like SNS, news, article and obtain a word network for visualization. Usage is also extended to a part of speech and TF-IDF for the purpose of filtering.
Furthermore, ‘WoordCloud’ is capable of visualizing the relevance of essential words through several centrality measures, and with topic modeling, you can identify topics. Different features have been added to NetMiner from time to time, and these include Python-based Script Workbench and Adaptability of user-generated Plug-in, Enhanced functions, and User Interface, Machine Learning based Mining Module, Recording Visual Exploration, New License Management Server for the Organizations, and Improved 3D Network Map.
You will be able to experience smoothness and usability like never before by using the new toolbar and redesigned control panel. Import and export of data can be carried out in Excel file format. And, with the improved control panel, everyone can set analysis and visualization options faster than before.
TLOxp is a nimblest fraud prevention platform that is secure and authentic for investigative research and risk management. The platform is blazingly smart with its service approach to uncover, locate, and verify information on either individuals or businesses. The rich and actionable information lets you get it right for internal or external fraud prevention, identify verification, debt recovery, and legislative compliance. Easily involve with the world insights having social media and web insights and reports.
Get the right data valuable for your instant connection point linking people, assets, and businesses. TLOxp is leveraging you to set the access parameters; this way, you can get more efficient control to minimize mistakes and maximize your performance. You can flag, scrub, and track multiple individual and business courtesy of batch processing offers from the one platform. Numerous features are contact tracing, data quality solution, trans-union credit card report, fraud identity and management, and more to add.
Falcon Fraud Manager is a reputable fraud management software that is configurable and provides an easy way to analyze and investigate transactions at the customer. The software comes with robust functionality with the analytic processing power to handle an organization’s transactional fraud detection needs, such as deposit, debt, ePayments, credit, and mobile. Multiple features include nimble neural networks, adaptive models, portfolio-specific fraud, efficient investigation, real-time rule creation, rule simulation, and much more.
You can use this software to process events, develop new strategies to detect fraud, create cases, and execute associated decisions across multiple channels and customers. There are multiple benefits of using Falcon Fraud Manager: lower false positives, adjust your findings, leverage is known fraud patterns, boost analyst productivity, early predictions, and more to add. Furthermore, the software enhances reporting capabilities with embedded ad hoc and canned reports with the multiple comprehensive reports structure.
Watchful Eye is an all-in-one quality control software built for accountants that helps your finance department improve your accounting function management via using the XERO and MYOB AccountRight. The software is making its mark with artificial intelligence that extracts the relevant data that helps reduce the business’s risk. Watchful Eye advantages you with customer tracking, alerts to keep you notified, and algorithms that incorporate artificial intelligence.
It is no matter whether you are an internal accountant or an accounting Advisor, Watchful Eye provides the governance over your accounting processes in less time. As far as the processing quality is concerned, you have trends and volume of the transactional process with your accounting system and see them to either fix or view.
You have complete support with the assessment reports; this way, you can check how effective your accounting process is working and get complete recommendations to improve internal controls, business processes, and more. There are more features to offer that are Maps, general ledger, analytics template, check transactions, highlighting errors, and much more.
InAct is a document management and procurement system software that helps you out in document review and approval. The software comes with the automated approach to have a nimble document processing in your organization for more productivity and service agility for sure. Get a complete edge with the document collaboration, document archiving, correspondence, and taking of documents.
InAct is a system of extensive features and adaptive document management in a user-friendly manner. The software provides an intuitive user interface that makes it easy for you to navigate data with ease. Having a revision control system means there is a guaranteed possibility that all the documents can be accessed from a single document register.
Multiple procurement system modules enable users to track every single purchase order from request for quotation and bid proposal. Material delivery until invoice payment. There are multiple features on offer: web-based applications, multi-site server, PDF automation, tablet version, secure system, advanced search features, modular system, and more to add.
PatternSpy For Banking is a functional software that is protecting against fraud with the best in class detection. The software comes with the automated approach for its user to have streamlined functions that can minimize all sorts of risk against fraud and reduce all the assets losses. Get out of the way of all the traditional fraud detection software that is insufficient to handle various fraudulent schemes because PatternSpy For Banking makes revolutionary solutions to view the nature of fraud in all aspects.
The system is based on a predictive analytical model that is customized according to your bank needs. Talking about transactional fraud, you have the flexibility in your system that will let you react to the changing trends to do better anticipation. There are multiple features on offer: real-time detection, multi-channel capabilities, enterprise-class solution, work in multiple locals, easy integration with other systems, and more to add.
DisclosureTrack is intelligent monitoring software that provides an easy, robust, and cost-effective way to identify responses and changes. The software saves you valuable time in finding regulatory disclosures, changes, and information with ease. The platform also permits tracking, just by enabling email alerts on the dashboard, and you are alerted whenever there is a new filing change or any of the advisors you track. You can export 250 fields per investment advisor in CSV or excel. There is also an option of an audit log, so you will never miss the new update.
The automated approach of this software organized all the regulatory data on the My Advisors site and interestingly presented you. Start the proceeding by adding a new advisor, type the advisor’s name, and add to the My Advisor; it is just that simple. DisclosureTrack automatically builds a profile of the investment advisor of its current regulatory data and even shows you change from prior periods in a way to read format.
minFraud is an all in one transactional risk API that makes its mark by providing you with fraud score, insights, and multiple factors. Use the minFraud score to get a transactional risk score via checking IPs and transactions for fraud risk and access to the bottom line with two scores. There are valuable factors to look after for such as device ID, high-risk shipping address, sub-scores, email checks, IP address checks, financial institution check, and more to add.
With extensive minFraud insights, you can get scores with over fifty data points on IPs, devices, payments, emails, and more. Once you get the information about the risk, view the data for analysis, and use it for your workflows. The software provides you a functional approach to comprehend the fraud’s reason to better access fraud by taking multiple factors under consideration. The core features include eCommerce payments, account creation and take over, Surveys and market research, Referral traffic, and many more.
iPrevent is a web-based software designed for breast cancer risk assessment and personalized risk management to facilitate prevention and screening discussion between women and doctors. The software using various algorithms to estimate the risk of each woman of breast cancer. iPrevent is pretty accurate with its testing ability, about sixteen thousand women.
iPrevent is finding itself a useful utility for surgeons to manage women with high to moderate risk of breast cancer and give information about the average risk. The software comes with a page containing all the background information on the tool, references, and links to tips; this will help clinicians prescribe the medication to reduce the risk.
SecureFlow is an advanced technological solution providing medical transcription for you with the best in class workflow and transcription software services. The platform is the way to meet all the transcription provider’s needs and facilitates you with the suite of service offerings that permit the various customized solutions. There is a document generation system that serves as the basis for creating output documents in multiple formats such as PDF, plain text files, XML, and custom formats.
The software is designed professionally and provides you with various capabilities like receiving digital audio files, managing processes through a complex workflow engine, and generating output documents in multiple formats having more secure technology in place. SecureFlow is dispensing multiple efficient features that set your way to having more efficient transcription processes. Get the best functionality possible with the leverage of complex workflow engine routes transcription with multi-layers of editing dependent on the user-defined rules.
FRISS is an all in one insurance fraud and risk assessment software that allows you to safe STP underwriting and claims. The software uses artificial intelligence to streamline the process of anti-fraud. FRISS lets you access risk in real-time, legitimate payout claims faster, and improve the overall customer experience. FRISS ultimately is a yes option for you because of its predictive analytics and apply customer value models, leverage of internal and external data sources, revealing network, and discovery of the hidden patterns.
You have the leverage of having multiple integrations with other systems and grow complete insurance portfolios, and more importantly, you have extreme customer loyalty every-time. The software allows you to have a minimum loss ratio, and this way, you can focus on profitable portfolio growth. Moreover, you have the claim automation in place that will permit you to assess risks in real-time during the underwriting process. Furthermore, the software benefits you with end-to-end analytics, improves your business with in-depth P&C insurance knowledge, and gets the claim score in no time.
FraudGUARD is an all-in-one comprehensive software that supports identifying the major risk and making smart decisions against them. The software comes with the enhanced functionality to streamline your risk identifications in mortgage transactions. FraudGUARD platform is a way to go with the efficient complaint to regulations, and you can improve the applications review process by having high speed and efficiency, and you can increase the loan quality at the same time.
The software comes with integration with the DataTree that, in turn, valuable for deeper property and ownership research. FraudGUARD provides multiple advantages such as critical due diligence, improved risk mitigation, protection against regulatory compliance, intuitive access and enhance reporting, and more to add. There are multiple features on offer: validation, property overview, conflict of interest, income and employment, listing data, income assessment, FEMA, and much more.
FirstStrike Fraud Detection is risk and fraud detection software that helps you take a better approach to evaluate your risk and featuring the actionable information you can negotiate. The software is making its mark with the capability to extract the required data, and you can make analysis a wide variety of data. FirstStrike Fraud Detection software is a way to drive your business environment, and you can save you are assets.
The software facilitates many organizations worldwide with its automated strategic solution to take actions against fraud such as transactional or payment. The software is dispensing multiple features to you: extreme fraud monitoring, internal fraud detection, transactional approach, SaaS support, various integrations, easy access to data, and more to add.
AP Forensics Enterprise Suite is a kind of security software that leverages you with the robust tools used by finance professionals to reduce overpayments, detect fraud, and protect overall spending. The software is particularly important for P2P staff for continuous monitoring and runs side-by-side any accounting and ERP system.
There is always a brute force required to protect organizational spending. AP Forensics Enterprise Suite is taking over cost and fraud under solid scrutiny and declining headcounts. The P2P transactional risk will let you identify the areas of risks and fraud with the supplier’s spending and transaction. Now supplier risk profiling can be done more efficiently to enhance the capability to discover suppliers via constant profiling.
You have all the anti-fraud controls that streamline your way for the automated testing to find fraudulent transactions and suppliers. Multiple features include comprehensive reports, customized dashboards, centralized information access, ERP migration support, increase control, process improvement, cost reduction, and more to add.
Datplan is an advanced cybersecurity software solution that provides all kinds of fraud detection and data privacy with ease. The software makes sure that your business will remain safe against all kinds of cyberattacks, and your data will always be secured. You can review all the passwords with file protection analysis to aid compliance with the data privacy and GDPR in place. Datplan cybersecurity software provides complete fraud detection and reporting suite and can utilize various forensic accounting techniques.
The software is taking all your security considerations into account via proper monitoring and identifying threats and are correct, ensuring no assets are lost such as payroll, income, and expense and your data privacy are upheld. Datplan is featuring a cyber control tool that integrates with your existing protection software such as anti-virus and firewall to complete understanding the cyber threats and risk and management strategies.
ThreatMark is an all in one fraud prevention solution platform that provides integrated analytics by combining transaction risk analysis, threat detection, and user behavior. The software uses the best-in-class machine learning and business rules to have a strategical solution against all types of payment frauds and cyber-attacks to prevent businesses from losing.
ThreatMark seems to be very valuable in minimizing credit risks and fraud, having Artificial intelligence in place to detect advanced threats, including phishing, malware, and zero-day attacks. The software comes with a unique solution to detect anomalies in user behavior, making it possible to verify user identity and other online suspicious activities. The prominent features are quick implementation, instant detection, intuitive dashboards, fewer false positives, complete authentication requirement, and more to add.
Thomson Reuters Clear is a reputable investigation software that facilitates billions of data points and cutting-edge public records technology, bringing all the content together. The software comes with a customizable dashboard where you can find all the content with ease, and you do not need to take overhead in finding the information. The system will quickly find potential concerns associated with the people ad business for extreme analysis.
The software is user-friendly, intuitive navigation, and simple filtering parameters; this way, you can instantly search across thousands of data sets and get the desired results in real-time. Thomson Reuters Clear is how to get whether facing heal-care fraud, anti-money laundering, law enforcement insurance investigation, and more to add. There are multiple features on offer: quick screens and customer validation, internal user-based searches, analyze your subject connection, perfect evaluation, and more.
paterva.com Maltego Integrates data from internal sources, public sources (OSINT), and commercial vendors through the Maltego transform hub. It is the number one OSINT and graphical analysis tool that allows you to boost the precision and speed of challenging investigations. It provides you and your team with hundreds of hand-picked books, OSINT, podcasts, YouTube channels, blogs, and several other learning materials.
The platform offers multiple solutions for different fields like Trust and Safety, Cyber Security Operations, and Law Enforcement. With Trust and Safety, you can battle against insider threats, frauds, and abuses and leave behind deprecation and development risk and maintenance. There are multiple features associated with this solution and will be discussed in the following lines.
You can interact with all the data in a single UI by integrating data from User Behavior Analytics, CRM, and ticketing system in a single place. Access data from various database sources and control access privileges. View digital profiling data, social media data, and company ownership information from OSINT and third-party providers. Analyze the data quickly by fetching it from internal systems for improvement and contextualization.
Get around repetitive tasks by automating them and boost investigations by using Maltego Machines. Navigate between multiple layouts and check options to locate clusters for attribution of data. Enhance collaboration with team and use graph sharing to share insights on digital evidence. The CRM can be used for providing insights for future report investigations. Leverage the reporting characteristics, share insights, and assist with the improvement and development of policy mechanisms.
Faraday IDE is a well-regarded tool that assists in collaboration while using 40 pre-loaded tools to generate reports. It supports multiple plugins like Nessus, Metaspoilt, and Nmap. It introduces the multi-user penetration testing approach in an environment that is familiar with the individual execution of tools within the terminal. You can launch the IDE by navigating to applications, clicking on it, and on Faraday. After that’s done, the interface will open, allowing you to give your name to the workspace and then use it for your work without any restrictions.
Poortego is an open-source tool released under the MIT License that allows you to manage the storage connection of open source intelligence, also known as Maltego. It is developed using python and gives you complete control over the environment to do whatever’s necessary to achieve objectives. The built-in command interface allows you to execute the commands, and it runs on top of python cmd2 and leverages the power of py2neo for neo4j REST communication. The existing commands include purge, help, namespace, and exit, user, session, and storage, add and In, and pwd, cd, Is. Many features are currently under development and will be released later on.