Sherlock OSINT is an online open-source intelligence platform for cybersecurity and investigation scenarios. The copy says it offers 21+ OSINT tools covering identity profiling, network infrastructure reconnaissance, digital forensics, threat intelligence, blockchain analysis, and relationship visualization. It emphasizes the use of real backend engines and live data sources, such as Sherlock, Nmap, Shodan, VirusTotal, and AbuseIPDB, rather than simulated data.
In terms of protection category, it is more of a tool for reconnaissance, forensics, attack-surface discovery, and threat-intelligence support, rather than a traditional firewall, EDR, or vulnerability management platform. Features include username searches across 350+ platforms, email/phone/domain/IP analysis, port scanning, subdomain enumeration, data breach checks, email header forensics, EXIF extraction, reputation checks, and an Intelligence Map relationship graph. Deployment is primarily via a web platform, while the Enterprise plan provides REST API, webhooks, SSO, audit logs, data retention controls, and optional on-premise deployment.
Pricing is straightforward: the Free plan is $0 and suits basic investigations, but includes ads and limits advanced capabilities; Pro is $14.99/month and unlocks all tools, removes ads, and includes Shodan PRO tokens, priority email support, and API access; Enterprise is $49.99/month for teams, including 5 seats, a dedicated account manager, 24/7 priority support, a 99.9% SLA, white-label reports, and custom integrations. The only visible payment option is Stripe Checkout, with no other payment methods disclosed.
The main strengths are its high concentration of tools and coverage of collection, analysis, visualization, and reporting across the OSINT lifecycle. The free tier lowers the barrier to trial, and the enterprise features are friendly to team collaboration and system integration. The drawbacks are that the copy does not disclose the companyβs location, compliance certifications, or third-party audits; results depend on public sources and external APIs, so accuracy requires secondary verification; and features such as port scanning and Google Dorking carry compliance risks and must only be used within an authorized scope.
It is suitable for authorized penetration testing, threat intelligence, incident response, digital forensics, journalistic investigations, and corporate due diligence. It is not suitable as a standalone endpoint protection or compliance-focused security operations platform. The copy provides no information about access from mainland China, payment availability, or Chinese-language/local support, so these remain unknown. If using capabilities related to Shodan, Google, and similar services, the actual experience may be affected by the network environment. Comparable tools include Maltego, SpiderFoot, Shodan, as well as China-based FOFA, ZoomEye, and ThreatBook.
β This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on osintpro.net official site.
osintpro.net is an Unknown Cybersecurity provider. TG4G tracks its product information, an overall rating of 7.0/10, and a China-accessibility score of Workable. Click "Visit Official Site" to reach osintpro.net directly.