Flowsint is an Open-source OSINT Graph Exploration Tool
Forget black-box tools that lock you into proprietary systems. Flowsint is different, built for real investigators, researchers, and security teams who value transparency, ethics, and precision.
What is Flowsint?
It’s a lightweight, open-source graph explorer designed from the ground up for ethical reconnaissance. No data harvesting. No hidden tracking. Just clean, visual intelligence, where every connection is traceable, explainable, and under your control.
At its core, Flowsint turns raw digital footprints into a living map of relationships. Enter an IP, domain, or email, and watch it unfold. It automatically pulls in context through smart enrichers:
- Reverse DNS lookup (what domains live on this IP?)
- Forward DNS resolution (where does this domain point?)
- Subdomain discovery (what hidden services are out there?)
All done locally or within your private network — no cloud dependency, no vendor risk.
Who Can Use It?
This isn’t about scraping. It’s about understanding. It’s for journalists verifying sources. For red teamers mapping attack surfaces.
For analysts tracing digital trails without crossing ethical lines.
Core modules
- flowsint-core: Core utilities, orchestrator, vault, celery tasks, and base classes
- flowsint-types: Pydantic models and type definitions
- flowsint-enrichers: Enricher modules, scanning logic, and tools
- flowsint-api: FastAPI server, API routes, and schemas only
- flowsint-app: Frontend application
Features
Domain Enrichers
- Reverse DNS Resolution - Find domains pointing to an IP
- DNS Resolution - Resolve domain to IP addresses
- Subdomain Discovery - Enumerate subdomains
- WHOIS Lookup - Get domain registration information
- Domain to Website - Convert domain to website entity
- Domain to Root Domain - Extract root domain
- Domain to ASN - Find ASN associated with domain
- Domain History - Retrieve historical domain data
IP Enrichers
- IP Information - Get geolocation and network details
- IP to ASN - Find ASN for IP address
ASN Enrichers
- ASN to CIDRs - Get IP ranges for an ASN
CIDR Enrichers
- CIDR to IPs - Enumerate IPs in a range
Social Media Enrichers
- Maigret - Username search across social platforms
Organization Enrichers
- Organization to ASN - Find ASNs owned by organization
- Organization Information - Get company details
- Organization to Domains - Find domains owned by organization
Cryptocurrency Enrichers
- Wallet to Transactions - Get transaction history
- Wallet to NFTs - Find NFTs owned by wallet
Website Enrichers
- Website Crawler - Crawl and map website structure
- Website to Links - Extract all links
- Website to Domain - Extract domain from URL
- Website to Webtrackers - Identify tracking scripts
- Website to Text - Extract text content
Email Enrichers
- Email to Gravatar - Find Gravatar profile
- Email to Breaches - Check data breach databases
- Email to Domains - Find associated domains
Phone Enrichers
- Phone to Breaches - Check phone number in breaches
Individual Enrichers
- Individual to Organization - Find organizational affiliations
- Individual to Domains - Find domains associated with person
Integration Enrichers
- N8n Connector - Connect to N8n workflows
flowsint-types
Pydantic models for all data types:
- Domain, IP, ASN, CIDR
- Individual, Organization, Email, Phone
- Website, Social profiles, Credentials
- Crypto wallets, Transactions, NFTs
- And many more...
flowsint-enrichers
Enricher modules that process data:
- Domain enrichers (subdomains, WHOIS, resolution)
- IP enrichers (geolocation, ASN lookup)
- Social media enrichers (Maigret, Sherlock)
- Email enrichers (breaches, Gravatar)
- Crypto enrichers (transactions, NFTs)
- And many more...
flowsint-api
FastAPI server providing:
- REST API endpoints
- Authentication and user management
- Graph database integration
- Real-time event streaming
flowsint-app
Frontend application.
- Modern and UI friendly interface
- Built for performance (no lag even on thousands of nodes)
Legal & Ethical Use
Flowsint is built for ethical, lawful investigation only. It’s designed to support cybersecurity researchers, journalists, law enforcement, and risk analysts in transparent, responsible intelligence work, such as threat detection, source verification, and digital footprint mapping.
It must never be used for:
- Unauthorized surveillance or data harvesting
- Harassment, doxxing, or targeting individuals
- Spreading misinformation or political manipulation
- Violating privacy laws
All users are required to follow the guidelines in ETHICS.md. Misuse is not allowed and violates the tool’s core principles of integrity, accountability, and open responsibility.
License
Built on AGPL-3.0, Flowsint is free to use, modify, and share. And it’s still growing, but only because the community shows up.
If you believe OSINT should be open, accountable, and powerful, not just flashy, then Flowsint is your next tool.
