OpenOSINT is an AI-powered OSINT agent exposed as an MCP server, CLI, REPL, and web UI. Its MCP server makes 18 investigation tools available for tasks like email, username, IP, domain, breach, phone, Shodan, VirusTotal, Censys, AbuseIPDB, GitHub, DNS, dork search, and URL scraping.
From the registry: AI-powered OSINT agent & MCP server. 16 tools: email, breach, IP, WHOIS, DNS, Shodan, GitHub & more.
$ pip install openosinthttps://pypi.org/project/openosint/$ pip install holehe && pip install sherlock-project && pip install sublist3r$ pip install "openosint[openai]"Please install the `openosint` MCP server into my current AI client (that's you).
Required prerequisites (do these first if not already done):
- **Install OpenOSINT from PyPI** — Install the recommended Python package. Run: `pip install openosint` (https://pypi.org/project/openosint/)
- **Set up an AI backend** — OpenOSINT needs an AI backend for its default MCP/agent behavior. Use Anthropic by default, or configure an OpenAI-compatible endpoint instead. Ollama is also supported but the README does not provide an MCP config example for selecting it in the server command.
Optional prerequisites:
- Install required external binaries — Some tools depend on external binaries being available in PATH. Missing binaries only disable the corresponding tools. Run: `pip install holehe && pip install sherlock-project && pip install sublist3r`
- Install PhoneInfoga — Phone number intelligence requires the phoneinfoga binary in PATH. (https://github.com/sundowndev/phoneinfoga/releases)
- Optional: install OpenAI-compatible backend extras — Needed if using an OpenAI-compatible backend for REPL/CLI according to the README. Run: `pip install "openosint[openai]"`
- Obtain optional API keys for integrated tools — Several tools need their own service credentials to function: HIBP, Shodan, VirusTotal, IP2Location, Censys, AbuseIPDB, GitHub, and Bright Data.
Canonical MCP server config (stdio transport):
- command: `python`
- args: ["-m","openosint.mcp_server"]
- required environment variables:
- `ANTHROPIC_API_KEY`: Anthropic API key for the default AI backend. Required unless you instead configure an OpenAI-compatible backend. (example: `<your-anthropic-api-key>`)
- optional environment variables:
- `OPENAI_BASE_URL`: Base URL of an OpenAI-compatible endpoint. When set and ANTHROPIC_API_KEY is absent, this backend is used instead of Anthropic. (example: `<your-openai-compatible-base-url>`)
- `OPENAI_API_KEY`: API key for the OpenAI-compatible endpoint. May be ignored by some local servers. (example: `<your-openai-api-key>`)
- `OPENAI_MODEL`: Model name to request from the OpenAI-compatible endpoint. (example: `<your-openai-model>`)
- `HIBP_API_KEY`: HaveIBeenPwned v3 API key for the search_breach tool. (example: `<your-hibp-api-key>`)
- `IPINFO_TOKEN`: ipinfo.io token for higher-rate IP intelligence queries. (example: `<your-ipinfo-token>`)
- `SHODAN_API_KEY`: Shodan API key for the search_shodan tool. (example: `<your-shodan-api-key>`)
- `VIRUSTOTAL_API_KEY`: VirusTotal API v3 key for the search_virustotal tool. (example: `<your-virustotal-api-key>`)
- `IP2LOCATION_API_KEY`: IP2Location.io API key for the search_ip2location tool. (example: `<your-ip2location-api-key>`)
- `CENSYS_API_ID`: Censys API ID for the search_censys tool. (example: `<your-censys-api-id>`)
- `CENSYS_SECRET`: Censys API secret for the search_censys tool. (example: `<your-censys-secret>`)
- `ABUSEIPDB_API_KEY`: AbuseIPDB API key for the search_abuseipdb tool. (example: `<your-abuseipdb-api-key>`)
- `GITHUB_TOKEN`: GitHub token for higher API rate limits in the search_github tool. (example: `<your-github-token>`)
- `BRIGHTDATA_API_KEY`: Bright Data API key for search_dorks_live and scrape_url. (example: `<your-brightdata-api-key>`)
- `BRIGHTDATA_SERP_ZONE`: Bright Data SERP API zone name for the search_dorks_live tool. (example: `<your-brightdata-serp-zone>`)
- `BRIGHTDATA_UNLOCKER_ZONE`: Bright Data Web Unlocker zone name for the scrape_url tool. (example: `<your-brightdata-unlocker-zone>`)
Note: The README shows MCP examples using a direct file path to mcp_server.py from a cloned repo, but the simplest portable install path is PyPI. Canonical stdio launch is represented as running the installed module via Python. Default backend is Anthropic; if ANTHROPIC_API_KEY is omitted, OPENAI_BASE_URL can activate an OpenAI-compatible backend instead. External binaries in PATH enable additional tools but are not required for the server process to start.
Add this MCP server to my current client's config in the correct format for you. If you need secrets or credentials I haven't provided, ASK me — do not invent values or leave raw placeholders. After adding it, tell me how to verify the server is connected.ANTHROPIC_API_KEYrequiredAnthropic API key for the default AI backendOPENAI_BASE_URLBase URL for an OpenAI-compatible endpoint when using that backendOPENAI_API_KEYAPI key for an OpenAI-compatible endpointOPENAI_MODELModel name requested from the OpenAI-compatible endpointHIBP_API_KEYHaveIBeenPwned API key for breach searchesIPINFO_TOKENipinfo.io token for higher-rate IP lookupsSHODAN_API_KEYShodan API keyVIRUSTOTAL_API_KEYVirusTotal API keyIP2LOCATION_API_KEYIP2Location.io API keyCENSYS_API_IDCensys Search API IDCENSYS_SECRETCensys Search API secretABUSEIPDB_API_KEYAbuseIPDB API keyGITHUB_TOKENGitHub token to raise API rate limitsBRIGHTDATA_API_KEYBright Data API key for live dork search and URL scrapingBRIGHTDATA_SERP_ZONEBright Data SERP zone name for live dork searchBRIGHTDATA_UNLOCKER_ZONEBright Data Web Unlocker zone name for URL scrapingEncrypted secrets for Next.js. AES-256-GCM with no vault needed.