Intrigue Core

LSE top 100LSE top 100Intrigue Core (74)Intrigue Core (74)

Tool and Usage

Project details

BSD 3-clause
Programming language
Jonathan Cran
Latest release
Latest release date

Project health

This score is calculated by different factors, like project age, last release date, etc.

Why this tool?

Intrigue Core provides a framework to measure the attack surface of an environment. This includes discovering infrastructure and applications, performing security research, and doing vulnerability discovery.

Intrigue also allows enriching available data and perform OSINT research (open source intelligence). The related scans include DNS subdomain brute-forcing, email harvesting, IP geolocation, port scanning, and using public search engines like Censys, Shodan, and Bing.

How it works

Intrigue has a set of scripts or tasks that it uses to find information. Some of the collected data is used for vulnerability discovery, while other pieces are part of the OSINT research.

Usage and audience

Intrigue Core is commonly used for OSINT research, asset discovery, attack surface measurement, intelligence gathering, penetration testing, or security assessment. Target users for this tool are pentesters and security professionals.


  • Application programming interface (API) available
  • Command line interface
  • Docker support
  • Support for Vagrant
  • Web interface

Tool review and remarks

The review and analysis of this project resulted in the following remarks for this security tool:


  • + More than 500 GitHub stars
  • + The source code of this software is available

Author and Maintainers

Intrigue Core is under development by Jonathan Cran.


Supported operating systems

Intrigue Core is known to work on Linux and macOS.

Intrigue Core alternatives

Similar tools to Intrigue Core:



Archery is a Django-based application to perform vulnerability assessments and do vulnerability management.



Dagda is a security tool to perform static analysis of known vulnerabilities, malware and threats in Docker images and containers. It monitors both the Docker daemon and running containers to find anomalies and suspicious activities.



OpenVAS is a framework of several services and tools offering a vulnerability scanning and vulnerability management solution.

All Intrigue Core alternatives

This tool page was updated at . Found an improvement? Help the community by submitting an update.

Related tool information


OSINT is short for open source intelligence, the practice of gathering data from publicly available resources. The open source in this context is not the same as in software development. Instead, it means that the data is available to anyone with the right knowledge or abilities to discover it.