Tired of paying $99/month for email OSINT. Built my own.

Checks 800+ platforms, breach exposure, infostealer logs, DNS/WHOIS, the works. But the part I'm actually proud of: instead of dumping a raw hit list, it builds an identity graph and tells you *why* something is high confidence, shared username, same avatar, matching display name across platforms. No other free tool does this.

Exports to STIX 2.1, Maltego, JSON, PDF. Pipeline-ready too.

pip install mailaccess

mailaccess investigate email@example.com

https://github.com/KatrielMoses/MailAccess

fully open source, happy to answer questions.

v1.0 extracted entities from Tor. v1.3 adds IP reputation

(Feodo/C2IntelFeeds/AbuseIPDB), GreyNoise scanner suppression,

domain pipeline (crt.sh cert transparency, URLScan, Wayback),

hash behavioral analysis via Hybrid Analysis, email breach history

via HIBP, paste sites, GitHub/GitLab scraping, 20 security RSS

feeds, CIRCL passive DNS, infrastructure cluster detection.

the STIX/MISP/Sigma exports were broken in v1.0 (empty bundles).

fixed in v1.1.

https://github.com/KatrielMoses/voidaccess

https://panopsik.com/

Eight days ago, I posted this project Panopsik here and got some of the most useful feedback I've received since starting it. Thank you genuinely. The kind of criticism this sub gave would cost serious money from a consultant and you gave it for free.

I want to address the main points directly rather than just saying "we listened."

Basically...  you were right on almost everything. The event points were showing too little to be actionable, the intelligence assessments were AI-generated noise that wouldn't survive five seconds with a real analyst, and the related articles were embarrassingly off-topic. These have been the priority this week.

What's changed:

• Added a landing page.
• Broke down the main dashboard into multiple lighter dashboards.
• Fixed a mountain of imperfections.
• Added the infrastructure layer.
• Currently in the process of allowing users to create their own dashboards depending on what information they want.

What's new:

You can now create an account. This lets you save searches, set alert thresholds for specific regions, and track how situations develop over time rather than getting a snapshot. It also means we can start understanding how people actually use this, which will drive what we fix next.

Still rough: clustering confidence on lower-tier sources, multilingual support, Southeast Asia coverage. We know.

If you tested it last week and wrote it off... fair. Come back and tell us if it's any better. If you haven't looked yet, now's a better time than eight days ago.

GitHub: https://github.com/kaifcodec/user-scanner Hi everyone,

I’m one of the maintainers of user-scanner.

We started building this project around 7 months ago because many classic OSINT tools like became outdated or unmaintained, and there weren’t many solid free options left for email OSINT.

Since then, we’ve been adding sites one by one, continuously improving detection accuracy and maintaining support for platforms that frequently change their APIs and flows.

Today, user-scanner has grown into one of the most actively maintained free Email OSINT tools in 2026. While many web-based alternatives lock basic scans behind paywalls, our goal is to keep powerful email enumeration accessible to the open-source community.

Contributors are always welcome. Adding new sites is relatively straightforward, and even small contributions help a lot.

If you’re interested in OSINT, Python, scraping, automation, or just open-source projects in general, feel free to contribute and help improve the tool.

This is a showcase! I posted my last work months ago and I am posting an update. Would you want a tool like this?

Modular OSINT platforms:

usernames, emails, domains, phones, images, URLs, Discord profiles.

Special features:

Al-powered reports (Groq), recursive pivoting, knowledge graph, HTML reports.

Installing:

Portable zip or source install.

https://github.com/Siv-nick/WhoCord