MCPcopy Index your code
hub / github.com/C0MPL3XDEV/E4GL30S1NT

github.com/C0MPL3XDEV/E4GL30S1NT @v2.1.0

Chat with this repo
repository ↗ · DeepWiki ↗ · release v2.1.0 ↗ · + Follow
454 symbols 1,675 edges 46 files 94 documented · 21%
What it actually does AI analysis from the code graph — generated when you open this
loading…
README

E4GL30S1NT

E4GL30S1NT logo

Discord   Version   Python   License

Stars   Forks   Issues   Last Commit   Code size   CI

Simple Information Gathering Toolkit

A modular OSINT CLI — username recon, email discovery, phone lookup, breach intelligence, metadata extraction, network analysis, and more.


Features

Command Description
userrecon Username reconnaissance across 71+ social platforms (data-driven YAML registry)
facedumper Dump Facebook friend list (IDs, emails, phones, birthdays, locations)
mailfinder Discover email addresses from a person's name
godorker Google dorking with automatic result scraping
phoneinfo Phone number validation and carrier info
dns DNS lookup for a domain or IP
whois WHOIS lookup for a domain
subnet Subnet / network calculator
hostfinder Find hosts for a domain
dnsfinder DNS finder via MTR
riplookup Reverse IP lookup
iplocation IP address geolocation
bitly Resolve and bypass Bitly short URLs
github Dump GitHub user profile information
tempmail Generate a temporary email address and monitor inbox
metadata Extract EXIF/GPS from images and metadata from PDF documents
breach Check email/phone exposure in data breaches (HIBP, DeHashed, LeakCheck)
investigation new Create a named investigation session
investigation list List all investigation sessions
settings Manage API keys and configuration
update Update E4GL30S1NT to the latest version

New in v2.1.0

  • Breach intelligence — query Have I Been Pwned, DeHashed, and LeakCheck to check if emails or phone numbers have been exposed in data breaches
  • Metadata extraction — extract EXIF data from images (GPS coordinates, device info, camera settings) and metadata from PDF documents (author, creator, producer)
  • PII masking — structured output is automatically masked (emails, phones, IPs, hostnames). Use --show-pii to reveal raw data
  • Platform registry — the 71 hardcoded platform URLs are now loaded from a community-updatable platforms.yaml file
  • Audit logging — every provider query is logged to an append-only JSONL audit trail with SHA256-hashed queries and session tracking
  • Structured output — all commands support --output json|csv, --output-file, and --save-to for investigation persistence
  • Investigation sessions — named sessions stored in SQLite to persist entities and results across runs
  • Pydantic v2 data model — all provider results are typed, validated Pydantic models
  • BaseProvider architecture — all providers follow a consistent execute() / run() pattern with automatic audit logging

Requirements

  • Python 3.11+
  • curl (used by iplocation to detect local IP)
  • wget (used by update command — Linux only)
  • API keys for optional features (see API Keys)

Linux

Supports Debian / Ubuntu / Kali (apt), Arch-based (pacman), and Fedora-based (dnf) systems. The script auto-detects your package manager.

wget https://raw.githubusercontent.com/C0MPL3XDEV/E4GL30S1NT/main/linuxinstall.sh
bash linuxinstall.sh

The script will: 1. Detect your package manager (apt / pacman / dnf) 2. Install system packages (python3, python3-venv, libxml2, libxslt1.1, curl, git) 3. Clone the repository to ~/.local/share/eagleosint 4. Create a virtual environment and install the package 5. Add eagleosint and e4gl launchers to /usr/local/bin

Manual (all platforms)

git clone https://github.com/C0MPL3XDEV/E4GL30S1NT.git
cd E4GL30S1NT
curl -LsSf https://astral.sh/uv/install.sh | sh   # skip if uv already installed
uv tool install .

Verify installation

eagleosint --help

Usage

Interactive menu

eagleosint
# or
e4gl

Direct subcommands

eagleosint userrecon          # username recon
eagleosint facedumper         # Facebook dump
eagleosint mailfinder         # email finder
eagleosint godorker           # Google dork
eagleosint phoneinfo          # phone lookup
eagleosint dns                # DNS lookup
eagleosint whois              # WHOIS lookup
eagleosint subnet             # subnet calculator
eagleosint hostfinder         # host finder
eagleosint dnsfinder          # DNS finder
eagleosint riplookup          # reverse IP
eagleosint iplocation         # IP geolocation
eagleosint bitly              # Bitly bypass
eagleosint github             # GitHub lookup
eagleosint tempmail           # temporary email
eagleosint metadata           # extract file metadata
eagleosint breach             # breach intelligence
eagleosint investigation new "case-name"   # create investigation
eagleosint investigation list              # list investigations
eagleosint settings           # edit config
eagleosint update             # self-update

Structured output

All commands support structured output and investigation persistence:

eagleosint userrecon --output json                    # JSON to stdout
eagleosint mailfinder --output csv -f results.csv     # CSV to file
eagleosint phoneinfo --output json --show-pii         # unmasked PII
eagleosint github --output json --save-to case-001    # save to investigation

Each subcommand can also be invoked as python -m eagleosint <command>.


API Keys

Some tools require API keys. Keys are stored in ~/.config/E4GL30S1NT/config.json.

Tool Provider Free tier
mailfinder isitarealemail.com Yes
phoneinfo veriphone.io Yes
breach haveibeenpwned.com Paid (~$3.50/mo)
breach dehashed.com Paid
breach leakcheck.io Paid

You can set them via environment variables:

export E4GL30S1NT_REALEMAIL_KEY="your-key"
export E4GL30S1NT_VERIPHONE_KEY="your-key"
export E4GL30S1NT_HIBP_KEY="your-key"
export E4GL30S1NT_DEHASHED_KEY="your-key"
export E4GL30S1NT_DEHASHED_EMAIL="your-email"
export E4GL30S1NT_LEAKCHECK_KEY="your-key"

Or edit them interactively:

eagleosint settings

Configuration

The config file is created automatically at first run:

~/.config/E4GL30S1NT/config.json

The log file is written to:

~/.config/E4GL30S1NT/eagleosint.log

Log rotation is automatic (max 500 KB, 2 backups kept).

Audit log

Every provider query is logged to an append-only JSONL audit trail:

~/.config/E4GL30S1NT/audit.jsonl

Queries are SHA256-hashed for PII protection. Each entry includes timestamp, provider name, session ID, and query hash.


Uninstall

If installed via linuxinstall.sh:

sudo rm /usr/local/bin/eagleosint /usr/local/bin/e4gl
rm -rf ~/.local/share/eagleosint
rm -rf ~/.config/E4GL30S1NT

If installed manually via pip:

pip uninstall eagleosint
rm -rf ~/.config/E4GL30S1NT

Developer Setup

git clone https://github.com/C0MPL3XDEV/E4GL30S1NT.git
cd E4GL30S1NT
bash install_deps.sh

This will create a .venv, install in editable mode with test dependencies, and run the test suite.

Running tests manually

source .venv/bin/activate
pytest -v

Project structure

eagleosint/
  cli.py             ← click group, menus, settings, update
  config.py          ← Pydantic Settings with SecretStr, env overrides
  display.py         ← ANSI colors, LOGO, display_progress()
  models.py          ← Pydantic v2 result models (ProviderResult hierarchy)
  output.py          ← structured output serializer (JSON/CSV) with PII masking
  masking.py         ← PII masking utilities (email, phone, IP, hostname)
  plugin.py          ← BaseProvider ABC, ProviderCategory enum
  audit.py           ← append-only JSONL audit log
  registry.py        ← YAML platform registry loader
  session.py         ← shared requests.Session
  storage.py         ← SQLAlchemy + SQLite investigation persistence
  platforms.yaml     ← data-driven platform definitions (71+ platforms)
  providers/
    bitly.py         ← URL shortener bypass
    breach.py        ← breach intelligence (HIBP, DeHashed, LeakCheck)
    facebook.py      ← Facebook class (facedumper)
    github.py        ← GitHub profile lookup
    godorker.py      ← Google dorking
    mailfinder.py    ← email finder
    metadata.py      ← EXIF/PDF metadata extraction
    network.py       ← IP geolocation, DNS, WHOIS
    phoneinfo.py     ← phone number lookup
    tempmail.py      ← temporary email
    userrecon.py     ← username recon across platforms
tests/               ← offline unit tests (pytest + pytest-mock)
E4GL30S1NT.py        ← backward-compat shim
pyproject.toml       ← package metadata and entry points

Disclaimer

This tool is intended for educational and authorized security research purposes only. Always obtain explicit permission before gathering information about individuals or systems. The authors are not responsible for any misuse.


Contributing

  1. Fork the repo and create a branch: git checkout -b feat/your-feature
  2. Install dev dependencies: bash install_deps.sh (requires uv)
  3. Make changes — one logical concern per commit
  4. Ensure tests pass: pytest -v
  5. Open a pull request against main

Guidelines - Follow the existing module layout — new tools go in eagleosint/providers/ - Every new provider must subclass BaseProvider in eagleosint/plugin.py - Every new provider must have a matching tests/test_<name>.py - No real network calls in tests — mock with monkeypatch or unittest.mock - Keep E4GL30S1NT.py as a shim only — no logic there


CI/CD

Every push and pull request runs the full test suite automatically via GitHub Actions.

CI


Contributors

Contributors

Want your name here? See Contributing.


Credits

Copyright © 2024–2026 @C0MPL3XDEV & @PoulDev

Core symbols most depended-on inside this repo

get_key
called by 15
eagleosint/config.py
_write_output
called by 15
eagleosint/cli.py
save_result
called by 15
eagleosint/storage.py
run
called by 14
eagleosint/plugin.py
infoga
called by 12
eagleosint/providers/network.py
audit_log
called by 10
eagleosint/audit.py
write_results
called by 10
eagleosint/output.py
load_platforms
called by 10
eagleosint/registry.py

Shape

Method 240
Function 93
Class 89
Route 32

Languages

Python100%

Modules by API surface

eagleosint/cli.py43 symbols
tests/test_breach.py38 symbols
tests/test_masking.py30 symbols
tests/test_storage.py27 symbols
tests/test_metadata.py19 symbols
tests/test_plugin.py18 symbols
eagleosint/models.py18 symbols
tests/test_registry.py17 symbols
tests/test_network.py17 symbols
tests/test_mailfinder.py14 symbols
tests/test_config.py14 symbols
eagleosint/storage.py14 symbols

For agents

$ claude mcp add E4GL30S1NT \
  -- python -m otcore.mcp_server <graph>

⬇ download graph artifact

Ask about this repo answers extend the page