Enter your domain below. We run a live passive reconnaissance scan — the same data sources a threat actor uses before any attack. No systems accessed. No credentials required.
Open Source Intelligence — OSINT — is the practice of gathering information exclusively from publicly available sources. No systems are accessed. No credentials are required. Everything surfaced in this scan is already visible to anyone who knows where to look.
Domain registrars, certificate transparency logs, DNS records, breach databases, government registries, paste sites, social networks and search engine indexes all contain information about your organisation — published, indexed and accessible right now. Passive OSINT is the discipline of systematically collecting and analysing that information to understand what is exposed.
This scan covers five intelligence categories: infrastructure and hosting, breach and credential exposure, technology stack and known vulnerabilities, Privacy Act compliance posture, and corporate entity intelligence. Each finding above is sourced from publicly available data only.