This repository contains no public code. All tools are restricted to verified government bodies, law enforcement agencies, and licensed security organisations.
A curated collection of operational security and OSINT tools designed for:
- Law enforcement investigations (identifying anonymous criminal actors)
- Authorized red-team and penetration testing engagements
- Government cybersecurity units
- Licensed private investigation firms operating under legal mandate
- Recognized open-source intelligence (OSINT) organisations such as Bellingcat, OCCRP, DFRLab, and similar entities whose work serves verified public interest (conflict documentation, war crimes evidence, corruption investigations, disinformation tracking)
Each tool in this collection has been built with a specific investigative purpose. None are shared publicly. Access is granted only after a formal verification process (see below).
Send a request to the maintainer via GitHub private message (@TFD-42) or the contact method listed in your invitation. Your message must include:
- Full name and title
- Organisation name and country
- Official organisation email address (personal Gmail / free email = automatic rejection)
- The specific tool or capability you are requesting
- A brief description of the investigation or use case context
You will be asked to supply at least two of the following:
| Document type | Examples |
|---|---|
| Official ID | Badge number, government-issued employee ID |
| Organisational proof | Official letterhead from your agency, signed by a superior |
| Legal mandate | Court order, warrant reference, official mission letter |
| Licence | Pen-test firm operating licence, private investigation licence |
| Digital verification | Email from an official .gov, .police, .mil, or equivalent TLD |
| OSINT org membership | Verifiable affiliation with a recognised open-source investigation organisation (Bellingcat, OCCRP, DFRLab, etc.) — confirmed via official org email or public staff/contributor page |
Documents are reviewed manually. No automated process.
Once documents are received:
- Review takes 3–7 business days
- You will receive a yes/no decision via the same channel
- If approved: you are added as a read-only collaborator on the specific tool repository only
- Access is time-limited (90 days default, renewable)
- Access can be revoked at any time without notice if misuse is suspected
Before access is granted you must agree in writing (reply to the approval message) to the following:
- The tool will be used only for the stated purpose
- The tool will not be redistributed, modified for non-investigative use, or shared with third parties
- You accept full legal responsibility for how the tool is deployed
- You will notify the maintainer if the investigation concludes or the tool is no longer needed
- You understand that misuse may be reported to your supervising authority
Requests will be automatically rejected if:
- No official organisation affiliation can be verified
- The use case described is outside law enforcement / authorised security research
- The requester cannot provide documentation within 14 days of the initial request
- The stated purpose raises legal or ethical concerns
If you have built a tool that fits the scope of this repository and want to contribute it:
- Open a GitHub issue titled
[CONTRIBUTION] <tool name> - Describe the tool, its purpose, and the investigative context it was designed for
- Do not attach code in the issue — code is reviewed privately after initial screening
The tools in this repository are provided for lawful investigative use only. The maintainer accepts no liability for misuse. Deploying any tool from this collection without proper legal authorisation in your jurisdiction is entirely your legal responsibility.
Relevant frameworks this repository is designed to comply with:
- EU General Data Protection Regulation (GDPR) — lawful basis: law enforcement / public interest
- Computer Fraud and Abuse Act (CFAA) — authorized access provisions
- UK Computer Misuse Act — authorised use exemptions
- Interpol / Europol investigative standards
This repository is private. If you can read this, you were given direct access or are the maintainer.