I’ve been building PRISM - a self-hosted OSINT toolkit you run yourself instead of pasting investigation targets into someone else’s web service.
Give it a domain, IP, email, phone, or username and it runs 22+ modules in parallel into one dashboard: WHOIS, DNS, crt.sh subdomains, GeoIP, threat intel (Shodan/VirusTotal/AbuseIPDB/Censys), breach data, username search across 3000+ sites (Blackbird + Maigret), dark-web mirror checks, and more. Results come with an entity graph, a GeoIP map, an OPSEC exposure score (0–100), and HTML/PDF/CSV/Markdown exports.
Your targets never leave your PC, and 14 of the 22 modules work with zero API keys (missing keys degrade gracefully instead of erroring).
Stack: FastAPI + Next.js 14, runs with one docker compose up. MIT licensed.
Demo: https://getprism.su/ Github: https://github.com/NovaCode37/Prism-platform
Built it solo - feedback welcome, especially on which modules you’d want added.
We all started at green. No shame.
So, yes OP is using Docker. Once you install Docker on your server, you ‘spin up’ the docker container using the Docker compose file:
https://github.com/NovaCode37/Prism-platform/blob/main/docker-compose.yml
…and the associated .env file that houses all your environmental variables:
https://github.com/NovaCode37/Prism-platform/blob/main/.env.example
Awesome, thank you for the help/info! This seems like a good first step, I’ll try it out!
Give it a go man. What’s the worst that can happen? …you have to drop back and do some studyin’. That’s pretty much how I learn. Read, Do, Fuck it up ad nauseam until it clicks, then I write that shit down.
Same here lol, I will for sure!