Table of contents

  • Sylva . . . Novel OSINT utility automating the link between User ID and Real ID
  • Sherlock . . . No. 1 most trafficked OSINT utility on GitHub
  • Service Manager . . . Graphical service manager for systemd (indev)
  • Windex . . . Windows de-Microsoftization tool focused on virtualization

Licenses vary, but most projects are governed by MIT Expat or GPLv3.

Free as in speech ~ and ~ free as in beer.

Sylva

https://github.com/ppfeister/sylva

Sylva is a novel OSINT utility that is meant to address many of the shortcomings that existing solutions present. Many tools only provide the first step of a search, querying known usernames, email addresses, etc, or do a poor job of combining solutions, a la maigret, flooded with false positives and poor detections. Commercial solutions that do this properly are costly.

The target audience for Sylva is quite wide, encompassing everything from law enforcement to trust and safety departments and cybersecurity professionals.

Technical: Python / Selenium / FlareSolverr / Pandas / Bot-detection circumvention

Sherlock

https://github.com/sherlock-project/sherlock

Sherlock is the #1 most starred, trafficked, and forked OSINT tool available on GitHub, allowing researchers and investigators to hunt down social media accounts by username across 400+ curated platforms and websites.

Sherlock has been packaged for penetration testing distributions Kali, Parrot, and BlackArch, along with new officially supported images on Fedora, EPEL, DockerHub and PyPI. We have community-supported packages available for Debian, Homebrew, PureOS, Raspbian, NixOS, and others.

Siddharth Dushantha is the original author of the project, where I am now a primary maintainer and developer alongside.

Technical: Python / Regression / Bot-detection circumvention / Packaging

Service Manager

https://github.com/svcman/svcman

svcman (Service Manager) is a current work in progress.

Working to develop the first user friendly graphical service monitor + manager for systemd to be available via the official respositories.

Technical: C++ / Qt / CMake / Linux kernel / systemd / dbus

Windex

https://github.com/ppfeister/Windex

Windex can be used to clean Windows of as much bloat and telemetry as possible without impeding normal function. Windex was built with stable and easily auditable virtualization in mind, and we’re beginning to expand use internally to workstations as well, with a noticeable quality of life improvement for those users.

While other tools exist to perform similar jobs… none met the auditability and transparency needs of our environment. Windex has been written in a way to favor native playbooks and modules, allowing for easy review and extension by sysadmins.

Windex has zero dependency on additional software (unlike Atlas and others), and can be ran through most PSA and RMM solutions without issue. Being written in PowerShell, it can be ran on fresh builds without any additional configuration at the endpoint.

Despite PowerShell not having native support for YAML, Windex can be used to parse and execute Ansible-style playbooks, allowing for unbelievably easy extension and customization.

Technical: PowerShell / Automation / Windows kernel