Skill

performing-osint-with-spiderfoot

From asi

Automates OSINT collection using SpiderFoot REST API and CLI for target profiling, module-based reconnaissance across 200+ sources, and structured result parsing. Useful for security assessments and threat intelligence.

Python

REST API

security

npx claudepluginhub plurigrid/asi --plugin asi

Tool Access

This skill uses the workspace's default tool permissions.

Preview

SpiderFoot is an open-source OSINT automation tool with 200+ modules that integrates with data sources for threat intelligence and attack surface mapping. This skill uses the SpiderFoot REST API and CLI (sf.py/spiderfoot-cli) to create and manage scans, select modules by use case (footprint, investigate, passive), parse structured results for domains, IPs, email addresses, leaked credentials, a...

SKILL.md

Similar Skills

performing-osint-with-spiderfoot

5.9k

Automates OSINT collection via SpiderFoot REST API/CLI for target profiling, module-based reconnaissance, and structured analysis from 200+ sources. For security assessments.

4 files

cybersecurity-skills

performing-osint-with-spiderfoot

Automates OSINT reconnaissance using SpiderFoot REST API/CLI: scans targets like domains/IPs/emails, selects modules (footprint/investigate/passive), parses results into JSON threat intelligence reports.

3 files

cybersecurity-skills-zh

collecting-open-source-intelligence

Collects and synthesizes OSINT on threat actors, malicious infrastructure, and attack campaigns using public sources, passive recon tools like Maltego/Shodan/SpiderFoot, and dark web monitoring. For authorized recon and CTI reports.

asi

Stats

Parent Repo Stars16

Parent Repo Forks5

Last CommitApr 4, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Performing OSINT with SpiderFoot

Overview

When to Use

When conducting security assessments that involve performing osint with spiderfoot

When following incident response procedures for related security events

When performing scheduled security testing or auditing activities

When validating security controls through hands-on testing

Prerequisites

SpiderFoot 4.0+ installed or SpiderFoot HX cloud account

Python 3.8+ with requests library

SpiderFoot server running on default port 5001

Optional: API keys for VirusTotal, Shodan, HaveIBeenPwned modules

Steps

Connect to SpiderFoot REST API or use CLI interface

Create a new scan with target specification (domain, IP, email, name)

Select scan modules by use case (all, footprint, investigate, passive)

Monitor scan progress via API polling

Retrieve and parse scan results by data element type

Extract key findings: subdomains, IPs, emails, leaked credentials

Generate structured OSINT intelligence report

Expected Output

JSON report containing OSINT findings organized by data type (domains, IPs, emails, credentials, DNS records), module source attribution, and target profile summary with risk indicators.