Discover and explore top open-source AI tools and projects—updated daily.
KatrielMosesAutomated dark web OSINT and threat intelligence platform
Top 94.1% on SourcePulse
A self-hosted, open-source platform for dark web Open Source Intelligence (OSINT), VoidAccess automates threat intelligence gathering from query to actionable graph in a 13-step pipeline. It serves as a free alternative to commercial platforms like Recorded Future, DarkOwl, and Flare, democratizing high-end dark web intelligence for security researchers and analysts.
How It Works
VoidAccess employs a 13-step autonomous pipeline to automate complex dark web investigations. It begins with LLM-powered query refinement and multilingual search across numerous Tor engines, paste sites, code repositories, and RSS feeds. The system filters relevant intelligence, enriches it with data from over 19 external threat intelligence sources, and recursively discovers .onion links. Content is scraped securely via Tor, with data merged and processed for advanced entity extraction (IOCs, wallets, CVEs, threat actors) using Regex, NER, and LLMs. Finally, it cross-references data historically, constructs a co-occurrence relationship graph, and generates an LLM-based technical briefing. This end-to-end automation streamlines the investigation workflow.
Quick Start & Requirements
pip install voidaccess, voidaccess configure, voidaccess investigate "query". Requires local Tor installation.git clone https://github.com/KatrielMoses/voidaccess, cd voidaccess, bash setup.sh.http://localhost:8000/docs when the Docker stack is running.Highlighted Details
Maintenance & Community
The project shows recent activity with updates to enrichment sources and collection methods. No specific community channels (e.g., Discord, Slack) or notable contributor information are detailed in the provided README.
Licensing & Compatibility
VoidAccess is released under the MIT License, permitting broad use, modification, and distribution, including for commercial purposes.
Limitations & Caveats
Dark web access via the CLI requires a separate local Tor installation. While many enrichment sources are free, some advanced features or higher rate limits necessitate API keys, with some requiring paid subscriptions (e.g., HaveIBeenPwned). The platform's Acceptable Use Policy restricts usage to authorized security research, threat intelligence gathering, and law enforcement. Mandatory content safety filters cannot be disabled.
3 days ago
Inactive
firecrawl