TotalOSINT is a privacy-first tool designed for security analysts. It allows you to quickly extract Indicators of Compromise (IOCs)—such as IPs, domains, and hashes—from logs and perform bulk investigations across various threat intelligence sources. This toolkit features a zero-data-persistence workflow, making it ideal for Security Operations Center (SOC) and Digital Forensics and Incident Response (DFIR) teams. Best of all, no installation is required.
Follow these easy steps to download and run TotalOSINT.
- Visit the Releases page.
- Find the latest version listed on the page.
- Locate the file suitable for your operating system (Windows, macOS, or Linux).
- Click on the file to download it to your computer.
- Once the download finishes, locate the file in your Downloads folder or designated save area.
- Double-click the file to start using TotalOSINT immediately.
To run TotalOSINT smoothly, ensure your system meets the following requirements:
- Operating System: Windows 10 or later, macOS Mojave or later, or any Linux distribution released in the last five years.
- RAM: At least 4 GB.
- Storage: 100 MB of free space.
- Network Connection: Required for accessing online threat intelligence sources.
- Client-Side Tool: Operate directly from your computer without sending data to a server.
- IOCs Extraction: Quickly extract IOCs from various raw logs.
- Bulk Investigations: Launch comprehensive investigations across multiple threat intelligence sources in seconds.
- Zero-Data-Persistence: No data is stored between runs to maintain your privacy.
- Open the TotalOSINT application by double-clicking on the downloaded file.
- The main interface will display options for IOC extraction and bulk investigations.
- To extract IOCs:
- Upload your raw log file using the provided button.
- The tool will scan the logs and extract any relevant IOCs for you.
- To perform bulk investigations:
- Input the IOCs you want to investigate.
- Click the “Investigate” button to fetch results from various intelligence sources.
TotalOSINT supports the following types of IOCs:
- IP Addresses
- Domain Names
- Hashes (MD5, SHA-1, SHA-256)
TotalOSINT is designed for various users, including:
- Security Analysts: Quickly analyze potential threats.
- Incident Responders: Gather IOCs from incident logs.
- Digital Forensics Experts: Conduct thorough investigations efficiently.
For further details on using TotalOSINT effectively, check the user guide included in the downloadable files.
For help or to share your experiences with TotalOSINT, join our community forums:
- GitHub Issues: Report bugs or request features.
- Email Support: Reach out to our support team for assistance.
We encourage feedback and contributions to the project. Visit our Releases page to download the latest version.
TotalOSINT is open-source software licensed under the MIT License. Feel free to use, modify, and distribute it as you wish.
TotalOSINT focuses on several key areas in cybersecurity:
- Blue Team
- Client-Side Tools
- Cybersecurity
- Digital Forensics
- Incident Response
- Information Security (InfoSec)
- Investigation
- IOC Extraction
- IOC Lookup
- Malware Analysis
- Operational Security (OpSec)
- Open Source Intelligence (OSINT)
- Reconnaissance
- Security Operations (SecOps)
- Security Tools
- Threat Hunting
- Threat Intelligence
- Zero Persistence
Visit the Releases page to access the latest version and additional resources.
This README aims to provide you with a clear path to download and start using TotalOSINT. If you have any questions, feel free to explore community resources or reach out for support. Enjoy your experience with TotalOSINT!