https://github.com/ninoseki/mitaka
A browser extension for OSINT search
https://github.com/ninoseki/mitaka
chrome-extension osint security threat-intelligence
Last synced: 2 months ago
JSON representation
A browser extension for OSINT search
- Host: GitHub
- URL: https://github.com/ninoseki/mitaka
- Owner: ninoseki
- License: mit
- Created: 2018-02-09T00:13:30.000Z (over 8 years ago)
- Default Branch: master
- Last Pushed: 2026-03-28T23:24:26.000Z (3 months ago)
- Last Synced: 2026-03-29T01:44:41.299Z (3 months ago)
- Topics: chrome-extension, osint, security, threat-intelligence
- Language: TypeScript
- Homepage:
- Size: 15 MB
- Stars: 1,753
- Watchers: 37
- Forks: 177
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- Contributing: contributing.md
- License: LICENSE
Awesome Lists containing this project
- cybersources - Mitaka
- awesome-starz - ninoseki/mitaka - A browser extension for OSINT search (TypeScript)
- Awesome-OSINT-List - mitaka - A browser extension for OSINT search (TOOLSET)
- awesome-iocs - ninoseki/mitaka - Browser extension to lookup IoCs/observables on many sources. (Tools / IOC Tools)
- awesome-hacking-lists - ninoseki/mitaka - A browser extension for OSINT search (TypeScript)
README
# Mitaka
[link-cws]: https://chromewebstore.google.com/detail/mitaka/bfjbejmeoibbdpfdbmbacmefcbannnbg
[link-amo]: https://addons.mozilla.org/en-US/firefox/addon/mitaka/
[](https://github.com/ninoseki/mitaka/actions?query=workflow%3A%22Node.js+CI%22)
[](https://www.codefactor.io/repository/github/ninoseki/mitaka)
[](https://coveralls.io/github/ninoseki/mitaka)
Mitaka is a browser extension that makes your OSINT (Open Source Intelligence) search & scan easier.
- Key features:
- Auto IoC (indicators of compromise) selection with refanging.
- E.g. `example[.]com` to `example.com`, `test[at]example.com` to `test@example.com`, `hxxp://example.com` to `http://example.com`, etc.
- Supports 65+ services.
## Install
[
][link-cws] [
][link-cws]
[
][link-amo] [
][link-amo]
## Features
### Supported IoCs (Indicators of Compromise)
| Name | Desc. | E.g. |
| :-------- | :-------------------------- | :------------------------------------------- |
| ANS | ASN | `AS13335` |
| BTC | BTC address | `1A1zP1eP5QGefi2DMPTfTL5SLmv7DivfNa` |
| CVE | CVE number | `CVE-2018-11776` |
| Domain | Domain name | `github.com` |
| Email | Email address | `test@test.com` |
| ETH | Ethereum address | `0x32be343b94f860124dc4fee278fdcbd38c102d88` |
| GaPubID | Google Adsense Publisher ID | `pub-9383614236930773` |
| GaTrackID | Google Analytics Tracker ID | `UA-67609351-1` |
| Hash | MD5, SHA1, SHA256 | `44d88612fea8a8f36de82e1278abb02f` |
| IP | IPv4 address | `8.8.8.8` |
| URL | URL | `https://github.com` |
### Supported Search Engines
| Name | URL | Supported types |
| :------------------- | :--------------------------------------- | :----------------------------- |
| AbuseIPDB | | IP |
| AnyRun | | Hash |
| archive.org | | URL |
| Blockchain.com | | BTC |
| BlockCypher | | BTC |
| Censys | | IP, domain, ASN, email |
| Checkphish | | IP, domain |
| Coalition | | CVE |
| crt.sh | | Domain |
| CVE | | CVE |
| DNS Coffee | | Domain |
| DNSlytics | | IP, domain |
| DomainTools | | IP, domain |
| EmailRep | | Email |
| FileScan.IO | | Hash |
| FortiGuard | | IP, URL, CVE |
| Google Safe Browsing | | Domain, URL |
| GreyNoise | | IP, domain, ASN, CVE |
| Host.io | | Domain |
| Hurricane Electric | | IP, domain, ASN |
| HybridAnalysis | | IP, domain, hash |
| Intezer | | Hash |
| IPinfo | | IP, ASN |
| IPIP | | IP, ASN |
| Joe Sandbox | | Hash |
| Maltiverse | | Domain, hash |
| MalwareBazaar | | Hash |
| NVD | | CVE |
| ONYPHE | | IP |
| OOCPR | | Email |
| OpenTIP | | Hash |
| OTX | | IP, domain, CVE, URL, hash |
| Pulsedive | | IP, domain, URL, hash |
| Radar | | IP, domain |
| Robtex | | IP, domain |
| Scumware | | IP, domain, hash (MD5) |
| SecurityTrails | | IP, domain |
| Shodan | | IP, domain, ASN |
| Sploitus | | CVE |
| SpyOnWeb | | IP, domain, gaPubID, gaTrackID |
| Talos | | IP, domain |
| ThreatBook | | IP, domain |
| ThreatConnect | | IP, domain, email |
| ThreatMiner | | IP, domain, hash |
| TIP | | IP, domain |
| Triage | | Hash, URL |
| URLhaus | | IP, domain |
| urlscan.io | | IP, domain, ASN, URL |
| URLVoid | | Domain |
| ViewDNS | | IP, domain, email |
| VirusTotal | | IP, domain, URL, hash |
| VMRay | | Hash |
| Vulmon | | CVE |
| WebCheck | | Domain |
| X-Force Exchange | | IP, domain, hash |
| ZoomEye | | IP |
### Supported Scan Engines
| name | url | supported types |
| :------------- | :-------------------------------- | :-------------- |
| Browserling | | URL |
| HybridAnalysis | | URL |
| urlscan.io | | IP, domain, URL |
| VirusTotal | | URL |
## How To Use
- [Use Mitaka to Perform In-Browser OSINT to Identify Malware, Sketchy Sites, Shady Emails & More](https://null-byte.wonderhowto.com/how-to/use-mitaka-perform-browser-osint-identify-malware-sketchy-sites-shady-emails-more-0216352/)
**Note:** Please set your API keys in the options for enabling HybridAnalysis, urlscan.io and VirusTotal scans.
## Options
You can enable/disable a search engine on the options page based on your preference.
> [!NOTE]
> Basic preferences are stored in [storage.sync](https://developer.chrome.com/docs/extensions/reference/api/storage). Thus they will be synced across devices.
> But API keys are stored in `storage.local`. You have to set API keys per device.
## Permissions
> [!NOTE]
> I don't and will never collect any information from the users. You can verify it by reviewing the source code.
### Firefox
Please allow "Access your data for all websites" permission. Otherwise this extension does not work.
## Privacy Policy
- [Privacy policy for the extension](https://ninoseki.github.io/chrome-webstore/privacy-policy/)
## Common Questions
- Q. The context menu is not displayed.
- A. Sometimes it takes a while for the context menus to appear. Or something goes wrong while refreshing the context menus. This glitch can be solved by waiting for a second. Please take a breath after selecting and then right-click.
## Alternatives or Similar Tools
- [CrowdScrape](https://chromewebstore.google.com/detail/crowdscrape/jjplaeklnlddpkbbdbnogmppffokemej)
- [Gotanda](https://github.com/HASH1da1/Gotanda)
- [SOC Multi-tool](https://github.com/zdhenard42/SOC-Multitool)
- [Sputnik](https://github.com/mitchmoser/sputnik)
- [ThreatConnect Integrated Chrome Extension](https://chromewebstore.google.com/detail/threatconnect-integrated/lblgcphpihpadjdpjgjnnoikjdjcnkbh)
- [ThreatPinch Lookup](https://github.com/cloudtracer/ThreatPinchLookup)
- [VTchromizer](https://chromewebstore.google.com/detail/vtchromizer/efbjojhplkelaegfbieplglfidafgoka)
## How It Works
```mermaid
flowchart LR
CS[Content Script] --> |1 - Send Selection| BSW[Background Service Worker]
BSW --> |2 - Create Context Menus| CS
CS --> |3 - Click Context Menu| BSW
BSW --> |4 - Search/Scan| T[New Tab]
```
## Contribute
Read the [contribution guide](contributing.md) and join the [contributors](https://github.com/ninoseki/mitaka/graphs/contributors).