OSINTProjects.com

Privacy Policy

Last updated: 10 June 2026

Overview

OSINT Projects (osintprojects.com) provides free, browser-based OSINT and cybersecurity tools. We are committed to privacy: we do not require accounts, we do not sell your data, and we collect as little as possible. This page explains what is and isn't collected.

How the tools handle your input

  • Client-side tools (Hash Generator, Base64, URL encoder, JWT Decoder, Password Strength Checker) run entirely in your browser. Your input is never sent to our servers.
  • Pwned Password Checker hashes your password in your browser and sends only the first five characters of the hash (k-anonymity) — never the password or full hash.
  • Lookup tools (WHOIS, DNS, IP, SSL, Subdomain Finder) send the domain, hostname or IP you enter to our server, which queries public data sources to answer. We do not store these queries beyond standard, short-lived server logs.

Analytics & cookies

We use Google Analytics (GA4) to understand aggregate usage (page views, approximate location, device and browser type). Google may set cookies for this purpose. This data is aggregated and is not used to personally identify you. You can block cookies in your browser or use an ad/tracker blocker without losing any functionality.

Server logs

Like most websites, our server may temporarily log standard request information (IP address, timestamp, requested URL, user agent) for security, abuse prevention and rate limiting. These logs are not used to build profiles and are retained only briefly.

Third-party services

To answer lookups, the relevant tool may query these public services, which receive only the data needed for that lookup:

  • RDAP registries and WHOIS servers (domain registration data)
  • Public DNS resolvers — Google (8.8.8.8) and Cloudflare (1.1.1.1)
  • ip-api.com (IP geolocation)
  • Certificate Transparency logs — crt.sh and Cert Spotter (subdomains)
  • Have I Been Pwned range API (breached-password check, prefix only)
  • Google Analytics (aggregate usage)

Your rights

Because we don't hold accounts or personal profiles, there is little personal data to access or delete. If you have a privacy question or request (including under GDPR/CCPA), contact us and we will respond.

Contact

Questions about this policy? Email admin@neelverse.org.

Changes

We may update this policy from time to time. Material changes will be reflected by the “last updated” date above.