Social-Hunt is a professional-grade OSINT (Open Source Intelligence) framework designed for investigators, security researchers, and enthusiasts. It provides a unified dashboard to perform cross-platform username searches, data breach exposure analysis, and advanced facial recognition-based avatar matching.
- Fast Discovery: Scans 50+ social media platforms, forums, and sites simultaneously.
- Extensible: Uses a data-driven YAML provider system and supports custom Python plugins.
- Advanced Detection: Uses success/error patterns and HTTP status codes to minimize false positives.
- HIBP Integration: Seamlessly check Have I Been Pwned for account exposure across thousands of known leaks.
- Detailed Records: Deep integration with providers like Breach.VIP to retrieve specific leaked data (passwords, salts, IPs) directly on the dashboard.
- Unified Reporting: Consolidates breach data into a specialized, easy-to-read table.
- Dual-Mode Comparison:
- Facial Recognition: Compares custom avatars using high-accuracy facial landmarks.
- Image Hashing: Uses perceptual hashing (pHash) to identify default or generic avatars.
- Visual Evidence: Provides match confidence scores to help verify identity across platforms.
- One-Click Search: Perform reverse image searches via Google Lens, Bing, Yandex, and specialized engines like PimEyes or FaceCheck.ID.
- Image Hosting: Securely handles temporary image uploads for analysis.
Social-Hunt is built with a modern, decoupled architecture:
- Backend: High-performance Python API powered by FastAPI and httpx for asynchronous scanning.
- Frontend: A clean, responsive dashboard built with vanilla JavaScript and CSS (no heavy frameworks required).
- Core Engine: Asynchronous task runner with built-in rate limiting and concurrency control.
- Python 3.9+
pip(Python package manager)- Docker & Docker Compose (Optional)
git clone https://github.com/AfterPacket/Social-Hunt.git
cd Social-Hunt/docker
docker-compose up -d --buildAccess the dashboard at http://localhost:8000.
- Clone and Navigate:
git clone https://github.com/AfterPacket/Social-Hunt.git cd Social-Hunt - Install Dependencies:
pip install -r requirements.txt
- Run the Server:
python run.py
- Access the Dashboard:
Open
http://localhost:8000in your web browser.
Social-Hunt stores its settings in data/settings.json. You can configure these directly through the Settings and Token tabs in the dashboard:
| Setting | Description |
|---|---|
hibp_api_key |
Your Have I Been Pwned API key (required for HIBP scans). |
admin_token |
A security token used to protect privileged operations (like plugin uploads). |
public_url |
The base URL of your instance (used for generating reverse image links). |
Social-Hunt is built for customization.
- YAML Providers: Add new sites to search by dropping a
.yamlfile intoplugins/providers/. - Python Plugins: Create complex scrapers or post-processing addons in
plugins/python/.
See PLUGINS.md for more details.
Social-Hunt is a community-driven project. Special thanks to:
- Main Developer: afterpacket – Original architecture and core engine.
- Optimization & Build: airborne-commando – Dependency management and build process optimization.
- OSINT Specialists: [Contributor Name] – Research and development of provider patterns.
- Security Researchers: [Contributor Name] – Breach data integration and API security.
- UI/UX Designers: [Contributor Name] – Dashboard layout and responsiveness.
Social-Hunt is for educational and ethical investigative purposes only. The developers and contributors are not responsible for any misuse of this tool. Always ensure you have the legal right to perform searches and adhere to the Terms of Service of the platforms being scanned.
This project is licensed under the GNU General Public License v3.0. See the LICENSE file for details.