Phone Investigation free web

\u2022 Validation — valid/invalid, possible, country code detection
\u2022 Classification — mobile, fixed-line, VoIP, toll-free, premium rate
\u2022 Formats — national, international, E.164, URI for tel: links
\u2022 Lookup URLs — direct links to Truecaller, Sync.me, WhoCalld, Facebook, Telegram
\u2022 Google Dorks — 5 pre-built search queries (click to execute)
Sources: libphonenumber-js (offline, instant)

Email Investigation free web

\u2022 Gravatar — real name, location, bio, linked URLs, avatar photo
\u2022 Reputation — score (high/medium/low), suspicious flag, blacklisted, spam
\u2022 Breach data — credentials leaked, known data breaches, social profiles found
\u2022 Infostealer check — Hudson Rock/Cavalier API queries real malware logs. Shows computer name, OS, date compromised, malware path if found
\u2022 MX validation — mail server records to verify domain accepts email
\u2022 Disposable check — flags throwaway email domains (mailinator, tempmail, etc.)
\u2022 Investigation links — HIBP, IntelX, DeHashed, LeakPeek, OSINT Industries
\u2022 Google Dorks — 5 queries targeting LinkedIn, Pastebin, PDFs, leaks
Sources: Gravatar, emailrep.io, Hudson Rock Cavalier, Cloudflare DoH

Username Hunt free web

\u2022 100+ platforms with Sherlock-style body-content matching
\u2022 Confirmed (green) — body regex matched a known signature. Very high accuracy.
\u2022 Likely (amber) — HTTP status + manual redirect. May have false positives.
\u2022 Dev — GitHub, GitLab, Bitbucket, NPM, PyPI, Docker Hub, StackOverflow, LeetCode, Kaggle...
\u2022 Social — X, Instagram, TikTok, Reddit, YouTube, Facebook, Twitch, LinkedIn, Mastodon, Threads, Bluesky...
\u2022 Creative — SoundCloud, Spotify, Bandcamp, DeviantArt, Dribbble, Behance, ArtStation, 500px, VSCO...
\u2022 Gaming — Steam, Chess.com, Lichess, Roblox, Minecraft, Itch.io, MyAnimeList, Letterboxd...
\u2022 Crypto/Web3 — Keybase, OpenSea, Rarible, Foundation, Mirror.xyz, Farcaster, Lens
\u2022 Each found result links directly to the profile
\u2022 Deep links — WhatsMyName, OSINT Industries, Google dorks
Method: HEAD+redirect-aware for status sites, GET+regex for body-match sites

Domain Investigation free web

\u2022 DNS records — A, AAAA, MX, NS, TXT, CNAME, SOA, CAA (all 8 types)
\u2022 Email security — SPF, DMARC, DKIM, CAA presence scoring
\u2022 Subdomain enumeration — via certificate transparency (crt.sh), flags admin/staging/vpn/jenkins/etc
\u2022 WHOIS / RDAP — registrar, creation/expiry dates, registrant info, nameservers
\u2022 SSL certificates — issuer, validity dates, Subject Alternative Names
\u2022 Tech stack — server fingerprint (Cloudflare, Vercel, Netlify, AWS, Nginx...)
\u2022 Security headers — checks HSTS, X-Frame-Options, CSP, X-Content-Type-Options
\u2022 Malware check — URLhaus (abuse.ch) flags known malicious/phishing URLs
\u2022 Wayback Machine — latest archived snapshot with link
\u2022 Investigation links — VirusTotal, URLscan, SecurityTrails, Shodan, Archive.today
Sources: Cloudflare DoH, crt.sh, RDAP, who-dat, archive.org, URLhaus, target HTTP

BTC Wallet Investigation free web

\u2022 Balance — current balance, total received, total spent (BTC)
\u2022 Activity — transaction count, UTXO count, pending mempool txs
\u2022 Transaction history — 10 recent txs with hash, block, time, fee, input/output counts
\u2022 Risk flags — FULLY_DRAINED, HIGH_VOLUME, PENDING_TXS
\u2022 Clickable TX hashes — open directly in mempool.space
\u2022 Investigation links — mempool.space, Blockchair, Cielo, OXT.me, Arkham Intelligence, Chainabuse, WalletExplorer
Sources: mempool.space API, blockchain.info fallback

EVM Wallet Investigation free web

\u2022 Chains — Ethereum, Base, BNB, Arbitrum, Optimism, Polygon, Avalanche, Blast, Linea, Scroll, zkSync, Mantle, Fantom
\u2022 Balance — native token balance + USD value (when available)
\u2022 Identity — ENS name, contract name, verified contract status, creator address
\u2022 Token holdings — top 25 ERC-20 tokens with symbol, balance, contract address
\u2022 NFT count — total ERC-721 + ERC-1155 holdings
\u2022 Recent transactions — 10 txs with method name, value, status, fee
\u2022 Token transfers — ERC-20/721/1155 transfers with token, amount, from/to, type
\u2022 Activity stats — TX count, token transfer count, gas used, validations
\u2022 Risk flags — CONTRACT, ZERO_BALANCE, HIGH_ACTIVITY, NFT_HEAVY
\u2022 Investigation links — Explorer, Cielo, Arkham, MetaSleuth, DeBank, Chainabuse, Dune, Socketscan
Sources: Blockscout API v2 (ETH/Base/Arb/OP/zkSync), public RPC fallback

BTC Transaction Lookup free web

\u2022 Status — confirmed/pending, block height, timestamp
\u2022 Fee analysis — total fee (sats), fee rate (sat/vB), size, weight
\u2022 Flow — input count, output count, total BTC in, total BTC out
Source: mempool.space

EVM Transaction Lookup free web

\u2022 Status — SUCCESS/FAILED/PENDING, block number
\u2022 Addresses — from, to (or contract creation)
\u2022 Value — native token amount transferred
\u2022 Gas — gas used, gas price (gwei), total fee
Source: public RPC (3 fallbacks per chain)

Wallet Risk Analysis free web

\u2022 Risk score — 0 to 100 with visual meter
\u2022 Risk level — LOW_RISK / MEDIUM_RISK / HIGH_RISK
\u2022 Pattern flags — FULLY_DRAINED, EXTREME_VOLUME, HIGH_ACTIVITY, MANY_UTXOS, ZERO_BALANCE, CONTRACT
\u2022 Supports both BTC and ETH addresses (auto-detected)
\u2022 Investigation links — Chainabuse, Cielo, Arkham, MetaSleuth, DeBank, OXT.me
Sources: mempool.space (BTC), public RPC (ETH)

Password Breach Check free web

\u2022 Checks against Have I Been Pwned database (billions of breached passwords)
\u2022 k-anonymity — your password is hashed in the browser. Only the SHA-1 hash reaches TACHITRACK; only a 5-character prefix reaches HIBP
\u2022 Returns exact breach count + risk level (SAFE / LOW / MEDIUM / HIGH / CRITICAL)
Source: HIBP Pwned Passwords API (k-anonymity model)