owlscan 1.2.0__tar.gz

owlscan-1.2.0/LICENSE

@@ -0,0 +1,32 @@
+MIT License
+
+Copyright (c) 2026 packetsn1ffer
+                    Claude (Anthropic) — AI Architecture & Implementation
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+
+---
+
+NightOwl — Open Source OSINT Intelligence Framework
+"The night sees all. The owl forgets nothing."
+
+This software is intended for authorized security research, OSINT investigation,
+and educational purposes only. Users are solely responsible for ensuring their
+use complies with all applicable local, state, national, and international laws.
+The authors assume no liability for misuse or damage caused by this software.

owlscan-1.2.0/PKG-INFO

@@ -0,0 +1,440 @@
+Metadata-Version: 2.4
+Name: owlscan
+Version: 1.2.0
+Summary: OwlScan :: Open-Source OSINT Intelligence Framework
+Home-page: https://github.com/owlscan/owlscan
+Author: packetsn1ffer
+Project-URL: Bug Reports, https://github.com/owlscan/owlscan/issues
+Project-URL: Source, https://github.com/owlscan/owlscan
+Keywords: osint intelligence reconnaissance security pentest
+Classifier: Development Status :: 4 - Beta
+Classifier: Environment :: Web Environment
+Classifier: Intended Audience :: Information Technology
+Classifier: Intended Audience :: Science/Research
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Operating System :: OS Independent
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Topic :: Security
+Classifier: Topic :: Internet :: WWW/HTTP :: Indexing/Search
+Classifier: Topic :: System :: Networking :: Monitoring
+Requires-Python: >=3.10
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: flask>=3.0.0
+Requires-Dist: flask-socketio>=5.3.6
+Requires-Dist: flask-sqlalchemy>=3.1.0
+Requires-Dist: flask-login>=0.6.3
+Requires-Dist: flask-wtf>=1.2.1
+Requires-Dist: eventlet>=0.35.0
+Requires-Dist: sqlalchemy>=2.0.0
+Requires-Dist: alembic>=1.13.0
+Requires-Dist: scrapy>=2.11.0
+Requires-Dist: scrapy-splash>=0.9.0
+Requires-Dist: scrapy-rotating-proxies>=0.6.2
+Requires-Dist: scrapy-user-agents>=0.1.1
+Requires-Dist: playwright>=1.40.0
+Requires-Dist: httpx[asyncio]>=0.26.0
+Requires-Dist: aiohttp>=3.9.0
+Requires-Dist: requests>=2.31.0
+Requires-Dist: urllib3>=2.1.0
+Requires-Dist: shodan>=1.31.0
+Requires-Dist: censys>=2.2.0
+Requires-Dist: OTXv2>=1.5.12
+Requires-Dist: dnspython>=2.4.0
+Requires-Dist: python-whois>=0.9.4
+Requires-Dist: ipwhois>=1.2.0
+Requires-Dist: scapy>=2.5.0
+Requires-Dist: cryptography>=42.0.0
+Requires-Dist: bcrypt>=4.1.0
+Requires-Dist: pyotp>=2.9.0
+Requires-Dist: pydantic>=2.5.0
+Requires-Dist: pandas>=2.1.0
+Requires-Dist: numpy>=1.26.0
+Requires-Dist: click>=8.1.0
+Requires-Dist: rich>=13.7.0
+Requires-Dist: typer>=0.9.0
+Requires-Dist: reportlab>=4.0.8
+Requires-Dist: openpyxl>=3.1.2
+Requires-Dist: lxml>=5.0.0
+Requires-Dist: stix2>=3.0.1
+Requires-Dist: jinja2>=3.1.2
+Requires-Dist: weasyprint>=61.0
+Requires-Dist: python-dotenv>=1.0.0
+Requires-Dist: pyyaml>=6.0.1
+Requires-Dist: aiofiles>=23.2.1
+Requires-Dist: python-dateutil>=2.8.2
+Requires-Dist: humanize>=4.9.0
+Requires-Dist: tldextract>=5.1.1
+Requires-Dist: ua-parser>=0.18.0
+Requires-Dist: user-agents>=2.2.0
+Requires-Dist: fake-useragent>=1.4.0
+Requires-Dist: geoip2>=4.8.0
+Requires-Dist: geopy>=2.4.1
+Requires-Dist: Pillow>=10.2.0
+Requires-Dist: pytesseract>=0.3.10
+Requires-Dist: aiofiles>=23.2.1
+Requires-Dist: aiodns>=3.1.1
+Requires-Dist: matplotlib>=3.8.0
+Requires-Dist: pytest>=7.4.0
+Requires-Dist: pytest-asyncio>=0.23.0
+Requires-Dist: pytest-cov>=4.1.0
+Requires-Dist: black>=23.12.0
+Requires-Dist: isort>=5.13.2
+Requires-Dist: flake8>=7.0.0
+Requires-Dist: mypy>=1.8.0
+Requires-Dist: pre-commit>=3.6.0
+Dynamic: author
+Dynamic: classifier
+Dynamic: description
+Dynamic: description-content-type
+Dynamic: home-page
+Dynamic: keywords
+Dynamic: license-file
+Dynamic: project-url
+Dynamic: requires-dist
+Dynamic: requires-python
+Dynamic: summary
+
+# 🦉 OwlScan // PHANTOM SIGNAL
+
+```
+  ██████╗ ██╗    ██╗██╗     ███████╗ ██████╗ █████╗ ███╗   ██╗
+ ██╔═══██╗██║    ██║██║     ██╔════╝██╔════╝██╔══██╗████╗  ██║
+ ██║   ██║██║ █╗ ██║██║     ███████╗██║     ███████║██╔██╗ ██║
+ ██║   ██║██║███╗██║██║     ╚════██║██║     ██╔══██║██║╚██╗██║
+ ╚██████╔╝╚███╔███╔╝███████╗███████║╚██████╗██║  ██║██║ ╚████║
+  ╚═════╝  ╚══╝╚══╝ ╚══════╝╚══════╝ ╚═════╝╚═╝  ╚═╝╚═╝  ╚═══╝
+         >> OPEN-SOURCE OSINT INTELLIGENCE FRAMEWORK <<
+                 "See everything. Leave no trace."
+```
+
+[![Python 3.10+](https://img.shields.io/badge/python-3.10+-00ff41?style=flat-square&logo=python)](https://python.org)
+[![License: MIT](https://img.shields.io/badge/license-MIT-00f3ff?style=flat-square)](LICENSE)
+[![Platform](https://img.shields.io/badge/platform-Linux%20%7C%20macOS%20%7C%20Windows%20%7C%20Docker-b026ff?style=flat-square)]()
+[![GitHub Stars](https://img.shields.io/github/stars/owlscan/owlscan?style=flat-square&color=00ff41)](https://github.com/owlscan/owlscan/stargazers)
+[![Open Issues](https://img.shields.io/github/issues/owlscan/owlscan?style=flat-square&color=b026ff)](https://github.com/owlscan/owlscan/issues)
+[![CI](https://img.shields.io/github/actions/workflow/status/owlscan/owlscan/ci.yml?branch=main&style=flat-square&label=CI&color=00ff41)](https://github.com/owlscan/owlscan/actions/workflows/ci.yml)
+[![Project Site](https://img.shields.io/badge/site-owlscan-00f3ff?style=flat-square&logo=github)](https://owlscan.sh)
+[![Changelog](https://img.shields.io/badge/changelog-view-00ff41?style=flat-square)](CHANGELOG.md)
+
+
+---
+
+## 🎬 Demo
+
+### CLI — Ghost Run in action
+
+![CLI scan demo](docs/assets/demo.gif)
+
+### Web UI — Shadow Grid (Dashboard)
+
+![Dashboard](docs/assets/screenshot_dashboard.svg)
+
+### Web UI — Launch Ghost Run
+
+![Launch Ghost Run](docs/assets/screenshot_launch.svg)
+
+### Web UI — Scan Results
+
+![Scan results](docs/assets/screenshot_results.svg)
+
+### Web UI — Theme Options
+
+OwlScan ships with two built-in UI themes, selectable via the **☀/🌙 toggle** in the top navigation bar. Your preference is saved automatically and persists across sessions.
+
+| Theme | Description |
+|-------|-------------|
+| **Dark** *(default)* | Cyberpunk aesthetic — deep charcoal background, neon green/cyan/purple accents, matrix rain canvas, glowing owl logo |
+| **Light** | "Phantom Dawn" — soft blue-grey background, muted accent palette, clean black ASCII logo, matrix rain disabled |
+
+> **Asciinema recording:** Watch the full interactive demo on asciinema.org, or play it locally:
+> ```bash
+> pip install asciinema
+> asciinema play docs/assets/demo.cast
+> ```
+
+[![asciicast](https://asciinema.org/a/QHiA1uk3kf9pKxY6.svg)](https://asciinema.org/a/QHiA1uk3kf9pKxY6)
+
+---
+
+## ⚡ What is OwlScan?
+
+OwlScan is a **community-powered, open-source OSINT intelligence framework** built for security researchers, penetration testers, investigators, and enthusiasts. It combines web scraping, network reconnaissance, people intelligence aggregation, and threat analysis into a single cohesive platform.
+
+> **LEGAL DISCLAIMER:** OwlScan is for **authorized security research, OSINT investigations, and educational purposes only**. Only scan targets you have explicit permission to test. You are solely responsible for compliance with all applicable laws. The developers assume NO liability for misuse.
+
+---
+
+## 🔥 Features
+
+### 🕷 Web Reconnaissance
+- **Scrapy-powered** deep web crawler with JavaScript rendering support
+- **Technology detection** — fingerprints 50+ technologies (CMS, frameworks, CDNs, WAFs)
+- **API endpoint hunter** — discovers REST APIs, GraphQL, Swagger docs, admin panels, `.env` leaks
+- **Security header analysis** with graded posture scoring
+- **Email, phone, link, and comment harvesting**
+
+### 🌐 Network Intelligence
+- **Async port scanner** — 65,535 ports, banner grabbing, service detection
+- **DNS recon** — A/AAAA/MX/NS/TXT/SOA/CAA, zone transfer attempts, subdomain brute-force
+- **Certificate transparency** via crt.sh — uncover subdomains via SSL history
+- **SPF/DMARC analysis** — identify email spoofing vulnerabilities
+- **Reverse DNS** and co-hosted domain discovery
+
+### 🔬 Intelligence APIs (30+ Integrations)
+
+| Category | APIs |
+|----------|------|
+| **Network Scanning** | Shodan, Censys, ZoomEye, BinaryEdge |
+| **Threat Intelligence** | VirusTotal, AbuseIPDB, GreyNoise, AlienVault OTX |
+| **Email** | Hunter.io, HaveIBeenPwned, HaveIBeenPwned |
+| **Domain/Web** | SecurityTrails, URLScan.io, WhoisXML, Local WHOIS |
+| **Geolocation** | IPInfo.io |
+| **People Search** | Pipl, FullContact, WhitePages, Spokeo, Clearbit |
+| **Social** | GitHub, Twitter/X |
+| **Custom** | Bring your own API via plugin architecture |
+
+### 👤 Shadow Profiler (People Intelligence)
+LexisNexis-style identity aggregation from public records:
+- Cross-correlates data from multiple people-search APIs
+- Discovers emails, phones, addresses, relatives, employers
+- Breach data correlation via HIBP and other sources
+- Social media profile linking
+- **Shadow Score** — digital exposure quantification (0-100)
+- Social graph building and timeline reconstruction
+
+### 📦 Export Formats
+| Format | Description |
+|--------|-------------|
+| **JSON** | Raw machine-readable data |
+| **CSV** | Spreadsheet-compatible |
+| **HTML** | Self-contained cyberpunk-styled report |
+| **PDF** | Professional dossier via ReportLab |
+| **XML** | Structured data |
+| **XLSX** | Excel workbook |
+| **STIX 2.1** | Threat intelligence sharing format |
+| **Markdown** | Human-readable report |
+
+All formats support **ZIP compression** and **AES-256-GCM encryption**.
+
+### 🌑 Ghost Mode
+- Low-and-slow scanning profiles to minimize detection
+- Identity rotation via user-agent spoofing
+- Tor proxy integration (Docker compose profile: `ghost`)
+- Configurable request jitter and delays
+
+### 🔔 Additional Features
+- **Real-time live feed** — WebSocket-powered terminal during scans
+- **Shadow Score** — composite risk/exposure scoring
+- **Scheduled Phantoms** — recurring automated ghost runs
+- **API health monitor** — dashboard showing configured APIs and rate limits
+- **Light/Dark theme** — toggle between cyberpunk Dark mode and "Phantom Dawn" Light mode via the ☀/🌙 button; preference persisted in localStorage
+- **Full REST API** — integrate OwlScan into your own toolchain
+- **CLI interface** — `owlscan scan`, `owlscan profile`, `owlscan export`
+- **Docker** — single-command deployment
+
+---
+
+## 🚀 Quick Start
+
+### Option 1: Docker (Recommended)
+```bash
+git clone https://github.com/owlscan/owlscan
+cd owlscan
+docker-compose up -d
+# Open http://localhost:5000
+```
+
+### Option 2: Manual Installation
+```bash
+# Python 3.10+ required
+git clone https://github.com/owlscan/owlscan
+cd owlscan
+pip install -e .
+owlscan init
+owlscan web --open-browser
+```
+
+### Option 3: CLI Scan
+```bash
+# Quick probe
+owlscan scan example.com --profile quick
+
+# Full spectrum with export
+owlscan scan 192.168.1.1 --type ip_recon --format html --output ./reports
+
+# People intelligence
+owlscan profile --email target@company.com --first-name John --last-name Doe
+```
+
+---
+
+## ⚙️ Configuration
+
+### Environment Variables (Recommended for API Keys)
+```bash
+export SHODAN_API_KEY="your-shodan-key"
+export VIRUSTOTAL_API_KEY="your-vt-key"
+export HUNTER_API_KEY="your-hunter-key"
+export HIBP_API_KEY="your-hibp-key"
+export GREYNOISE_API_KEY="your-greynoise-key"
+export IPINFO_TOKEN="your-ipinfo-token"
+export ABUSEIPDB_API_KEY="your-abuseipdb-key"
+export ALIENVAULT_API_KEY="your-otx-key"
+export GITHUB_TOKEN="your-github-token"
+export SECURITYTRAILS_API_KEY="your-st-key"
+# See config/owlscan.yaml for full list
+```
+
+### Config File
+Copy `config/owlscan.yaml` to `~/.owlscan/config.yaml` and customize.
+
+---
+
+## 🔌 Adding Custom APIs
+
+OwlScan uses a plugin architecture. Adding a new intelligence source takes ~20 lines:
+
+```python
+# owlscan/intel/apis/my_api.py
+from owlscan.intel.apis.base import BaseIntelAPI, register_api, APICategory, APITier
+
+@register_api
+class MyAPI(BaseIntelAPI):
+    NAME = "myapi"
+    DESCRIPTION = "My custom intelligence source"
+    REQUIRES_KEY = True
+    TIER = APITier.FREE_LIMITED
+    CATEGORIES = [APICategory.NETWORK]
+    BASE_URL = "https://api.myservice.com/v1"
+    SIGN_UP_URL = "https://myservice.com/signup"
+
+    async def search(self, query: str, **kwargs):
+        data = await self._get(
+            f"{self.BASE_URL}/search",
+            params={"q": query, "key": self._api_key}
+        )
+        return [self._wrap_result("my_result", data)]
+```
+
+Then import it in `owlscan/intel/orchestrator.py` and it auto-registers.
+
+---
+
+## 🏗 Architecture
+
+```
+owlscan/
+├── core/               — Engine, config, database, models
+├── scrapers/           — Scrapy crawler, tech detector, port scanner, API hunter, DNS recon
+├── intel/
+│   ├── apis/           — 30+ API integrations (plugin architecture)
+│   └── people/         — People intelligence aggregation
+├── exporters/          — JSON/CSV/PDF/HTML/XML/XLSX/STIX + crypto wrapper
+└── web/
+    ├── routes/         — Flask blueprints (dashboard, scans, intel, settings, export, REST API)
+    ├── templates/      — Cyberpunk Jinja2 templates
+    └── static/         — CSS (cyberpunk), JS (matrix, terminal, app)
+```
+
+---
+
+## 🛡 REST API
+
+```bash
+# Create a scan
+curl -X POST http://localhost:5000/api/v1/scans \
+  -H "Content-Type: application/json" \
+  -d '{"target": "example.com", "scan_type": "web_recon"}'
+
+# Get results
+curl http://localhost:5000/api/v1/scans/{scan_id}
+
+# List all APIs
+curl http://localhost:5000/api/v1/apis
+
+# Health check
+curl http://localhost:5000/api/v1/health
+```
+
+---
+
+## 🤝 Contributing
+
+OwlScan thrives on community contributions. Ways to help:
+
+1. **Add API integrations** — Follow the plugin pattern above
+2. **Improve detection signatures** — Expand `tech_detector.py`
+3. **Bug reports** — [GitHub Issues](https://github.com/owlscan/owlscan/issues)
+4. **Documentation** — Improve the wiki
+5. **Translations** — Internationalize the UI
+
+See [CONTRIBUTING.md](CONTRIBUTING.md) for guidelines. Please also review our [Code of Conduct](CODE_OF_CONDUCT.md) and [Security Policy](SECURITY.md).
+
+---
+
+## 📖 Documentation
+
+- **[Usage Guide](docs/USAGE.md)** — full walkthroughs, usage scenarios, CLI reference, and per-platform troubleshooting (Linux / macOS / Windows / Docker)
+
+---
+
+## ⚠️ Legal & Ethics
+
+OwlScan is a dual-use tool. Operators are responsible for:
+- Obtaining explicit authorization before scanning any system
+- Complying with applicable laws (CFAA, GDPR, CCPA, ECPA, local laws)
+- Respecting privacy and data protection regulations
+- Not using this tool for harassment, stalking, or unauthorized surveillance
+
+**The developers provide this software as-is with no warranty. Misuse is your responsibility.**
+
+---
+
+## 🏷 Topics
+
+[![osint](https://img.shields.io/badge/osint-00ff41?style=flat-square)](https://github.com/topics/osint)
+[![security](https://img.shields.io/badge/security-00f3ff?style=flat-square)](https://github.com/topics/security)
+[![python](https://img.shields.io/badge/python-00f3ff?style=flat-square)](https://github.com/topics/python)
+[![hacking](https://img.shields.io/badge/hacking-00ff41?style=flat-square)](https://github.com/topics/hacking)
+[![cybersecurity](https://img.shields.io/badge/cybersecurity-b026ff?style=flat-square)](https://github.com/topics/cybersecurity)
+[![reconnaissance](https://img.shields.io/badge/reconnaissance-00ff41?style=flat-square)](https://github.com/topics/reconnaissance)
+[![recon](https://img.shields.io/badge/recon-00f3ff?style=flat-square)](https://github.com/topics/recon)
+[![penetration-testing](https://img.shields.io/badge/penetration--testing-b026ff?style=flat-square)](https://github.com/topics/penetration-testing)
+[![ethical-hacking](https://img.shields.io/badge/ethical--hacking-00ff41?style=flat-square)](https://github.com/topics/ethical-hacking)
+[![bug-bounty](https://img.shields.io/badge/bug--bounty-00f3ff?style=flat-square)](https://github.com/topics/bug-bounty)
+[![information-gathering](https://img.shields.io/badge/information--gathering-b026ff?style=flat-square)](https://github.com/topics/information-gathering)
+[![threat-intelligence](https://img.shields.io/badge/threat--intelligence-00ff41?style=flat-square)](https://github.com/topics/threat-intelligence)
+[![security-tools](https://img.shields.io/badge/security--tools-00f3ff?style=flat-square)](https://github.com/topics/security-tools)
+[![network-scanner](https://img.shields.io/badge/network--scanner-b026ff?style=flat-square)](https://github.com/topics/network-scanner)
+[![dns-recon](https://img.shields.io/badge/dns--recon-00ff41?style=flat-square)](https://github.com/topics/dns-recon)
+[![infosec](https://img.shields.io/badge/infosec-00f3ff?style=flat-square)](https://github.com/topics/infosec)
+[![flask](https://img.shields.io/badge/flask-b026ff?style=flat-square)](https://github.com/topics/flask)
+[![security-research](https://img.shields.io/badge/security--research-00ff41?style=flat-square)](https://github.com/topics/security-research)
+[![footprinting](https://img.shields.io/badge/footprinting-00f3ff?style=flat-square)](https://github.com/topics/footprinting)
+[![automation](https://img.shields.io/badge/automation-b026ff?style=flat-square)](https://github.com/topics/automation)
+
+---
+
+## 🤝 Community
+
+| Document | Description |
+|----------|-------------|
+| [Code of Conduct](CODE_OF_CONDUCT.md) | Community standards and expectations |
+| [Contributing Guidelines](CONTRIBUTING.md) | How to contribute to OwlScan |
+| [Security Policy](SECURITY.md) | Reporting vulnerabilities responsibly |
+| [License](LICENSE) | MIT License terms |
+
+---
+
+## 📜 License
+
+MIT License — see [LICENSE](LICENSE)
+
+---
+
+*Built with questionable amounts of caffeine. "The night sees all. The owl forgets nothing."*
+*Some ghosts leave no trace. This one left commits. — Claude*