The latest articles on DEV Community by Ruyynn (@ruyynn). https://dev.to/ruyynn https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3822729%2Fe7712c1f-3993-43a4-b24c-7e6b12e4e89e.jpeg https://dev.to/ruyynn en Ruyynn Mon, 30 Mar 2026 09:10:46 +0000 https://dev.to/ruyynn/ghostintel-v25-what-changed-since-i-first-posted-about-it-m3e https://dev.to/ruyynn/ghostintel-v25-what-changed-since-i-first-posted-about-it-m3e <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F880sh04l2zkgndsqkuga.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F880sh04l2zkgndsqkuga.png" alt="GhostIntel v2.5 Web UI — Username OSINT result for " width="800" height="486"></a> Found on 67 out of 129 platforms including Instagram, LinkedIn, <br> TikTok, GitHub, Discord, and more."/&gt;</p> <p>A few weeks ago I posted about GhostIntel — an OSINT tool I built to automate recon across 100+ platforms.</p> <p>A lot has changed since then. Here's what's new in v2.5.</p> <p>🔗 <a href="https://github.com/ruyynn/GhostIntel" rel="noopener noreferrer">https://github.com/ruyynn/GhostIntel</a></p> <h2> 🌐 Web UI </h2> <p>The biggest addition. Run <code>python ghostintel.py -web</code> and open <code>http://localhost:7331</code>.</p> <p>You get a full dashboard — dark/light theme, scan history, live entity detection as you type, and export to JSON/Markdown directly from the browser. No more staring at a terminal if you don't want to.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fe1l4kzu9jqqjhf03o596.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fe1l4kzu9jqqjhf03o596.png" alt="GhostIntel v2.5 Web UI — localhost dashboard with Quick Scan mode, scan history, and real-time OSINT results including platform breakdown, email hints, and found categories." width="800" height="413"></a></p> <h2> 🔥 Email Breach Detection </h2> <p>GhostIntel now checks email domains against a built-in breach database and returns a risk score from 0–100. It tells you what was leaked, when, and what to do about it.</p> <p>Includes Indonesian breaches too — Tokopedia, Bhinneka, JD.ID.</p> <h2> 📱 Phone OSINT — Now 8 Countries </h2> <p>Was 5, now 8. Added Australia, Singapore, and Philippines on top of ID, US, UK, MY, IDN.</p> <h2> 👤 Username Check — 129+ Platforms </h2> <p>Up from 100+. Added gaming, music, video, and more Indonesian-specific platforms.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F26rquwsjogs473y54c0z.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F26rquwsjogs473y54c0z.png" alt="GhostIntel v2.5 HTML Report — Username OSINT result showing found profiles across social, dev, and security platforms, alongside possible email variations, username variations, and categorized platform breakdown." width="800" height="677"></a></p> <h2> 📦 Batch Processing </h2> <p>Create a <code>.txt</code> with mixed targets — usernames, emails, phone numbers, domains, IPs — and run them all at once.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>python ghostintel.py <span class="nt">--batch</span> targets.txt <span class="nt">--format</span> all </code></pre> </div> <h2> ⚡ Performance </h2> <p>Async parallel scanning now makes it roughly 10x faster than before. Also added rotating User-Agent (14+ UAs) to reduce rate-limiting.</p> <h2> 📊 Reports — 4 Formats </h2> <p>JSON, HTML, TXT, and Markdown. Generate all at once with <code>--format all</code>.</p> <h2> Still zero API keys </h2> <p>Everything still runs on public data only. No signups, no paid APIs, no hidden costs.</p> <p>If you tried v2.0 before, this version is a significant step up. Feedback and PRs are always welcome 🙌</p> <p>⭐ <a href="https://github.com/ruyynn/GhostIntel" rel="noopener noreferrer">https://github.com/ruyynn/GhostIntel</a></p> opensource python cybersecurity infosec Ruyynn Fri, 27 Mar 2026 16:11:04 +0000 https://dev.to/ruyynn/i-built-an-osint-tool-to-automate-recon-across-100-platforms-4em3 https://dev.to/ruyynn/i-built-an-osint-tool-to-automate-recon-across-100-platforms-4em3 <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fracvuywo7qucvkx79fd7.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fracvuywo7qucvkx79fd7.png" alt="GhostIntel CLI output showing username search results" width="800" height="484"></a></p> <p>Manual reconnaissance is slow, repetitive, and honestly… pretty inefficient.</p> <p>So I built <strong>GhostIntel</strong> — a lightweight OSINT tool that automates recon across multiple platforms in one place.</p> <p>🔗 <a href="https://github.com/ruyynn/GhostIntel" rel="noopener noreferrer">https://github.com/ruyynn/GhostIntel</a></p> <h2> 🧠 What is GhostIntel? </h2> <p>GhostIntel is an open-source tool designed to simplify how you gather publicly available information.</p> <p>Instead of jumping between different tools or manually searching, GhostIntel helps automate the process and return structured results.</p> <h2> ⚙️ Features </h2> <ul> <li>🔍 Username enumeration across 100+ platforms</li> <li>📧 Email footprint analysis</li> <li>🌐 Domain reconnaissance</li> <li>📱 Basic phone lookup</li> <li>🧩 Modular and easy to extend</li> </ul> <h2> 💡 Why I built this </h2> <p>While learning about OSINT and reconnaissance, I noticed that most tools are either too complex or too fragmented.</p> <p>I wanted something that is:</p> <ul> <li>Simple</li> <li>Fast</li> <li>Actually useful</li> </ul> <p>So I built GhostIntel as a personal project to learn while solving a real problem.</p> <h2> 🛠️ Tech Stack </h2> <ul> <li>Python</li> <li>CLI-based interface</li> <li>JSON-based configs</li> </ul> <h2> 🚀 Getting Started </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>git clone https://github.com/ruyynn/GhostIntel <span class="nb">cd </span>GhostIntel pip <span class="nb">install</span> <span class="nt">-r</span> requirements.txt python ghostintel.py <span class="nt">-h</span> </code></pre> </div> <h2> 📌 What’s next? </h2> <p>I’m currently working on:</p> <ul> <li>Report generation (HTML / PDF)</li> <li>Better data correlation</li> <li>Graph visualization</li> <li>More platform integrations</li> </ul> <h2> 🤝 Feedback </h2> <p>This project is still evolving, and I’d really appreciate feedback from the community 🙌</p> <p>If you find it useful, consider giving it a ⭐ on GitHub</p> <p>Thanks for reading 👀</p> opensource python cybersecurity infosec Ruyynn Wed, 25 Mar 2026 09:26:24 +0000 https://dev.to/ruyynn/vulndraft-open-source-bug-report-generator-for-bug-bounty-pentesting-1eh3 https://dev.to/ruyynn/vulndraft-open-source-bug-report-generator-for-bug-bounty-pentesting-1eh3 <p><strong>TL;DR</strong>: Stop wasting 30-45 minutes formatting bug reports. VulnDraft helps bug bounty hunters and pentesters generate professional security reports in minutes.</p> <h2> Why VulnDraft? </h2> <p>You find a bug. You have the PoC. But then comes the report:</p> <ul> <li>Which platform? HackerOne, Bugcrowd, Intigriti?</li> <li>What sections do they require?</li> <li>Where's that CVSS calculator?</li> <li>Did I include all the steps?</li> </ul> <p><strong>The result:</strong> Time lost formatting, when you could have found more bugs.</p> <h2> What VulnDraft Does </h2> <p>✅ HackerOne / Bugcrowd / Intigriti templates — no more format guessing<br> ✅ Built-in CVSS v3.1 calculator<br> ✅ CLI + Web interface — use it your way<br> ✅ Export to Markdown, HTML, JSON<br> ✅ Multi-vulnerability support — one report, multiple findings</p> <blockquote> <p>Spend less time formatting, more time finding real security issues.</p> </blockquote> <h2> Tech Stack </h2> <ul> <li>Python 3.8+</li> <li>FastAPI (web interface)</li> <li>Pydantic (validation)</li> <li>Questionary (CLI prompts)</li> <li>TailwindCSS (styling)</li> </ul> <h2> Try It Yourself </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>git clone https://github.com/ruyynn/VulnDraft.git <span class="nb">cd </span>VulnDraft pip <span class="nb">install</span> <span class="nt">-r</span> requirements.txt python main.py </code></pre> </div> <p>Start the web interface:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>python main.py <span class="nt">--web</span> </code></pre> </div> <blockquote> <p>Open <a href="http://localhost:8000" rel="noopener noreferrer">http://localhost:8000</a></p> </blockquote> <h2> Feedback &amp; Contributions </h2> <p>Try it. Break it. Tell me what sucks — <strong>open to suggestions, improvements, and contributions!</strong></p> <p>🔗 <a href="https://github.com/ruyynn/VulnDraft" rel="noopener noreferrer">VulnDraft on GitHub</a><br> ⭐ Star it if you find it useful!</p> opensource productivity security showdev Ruyynn Fri, 13 Mar 2026 16:48:03 +0000 https://dev.to/ruyynn/building-open-source-cybersecurity-tools-with-python-bd4 https://dev.to/ruyynn/building-open-source-cybersecurity-tools-with-python-bd4 <p>Introduction</p> <p>Cybersecurity and open source have always gone hand in hand.<br> Recently, I've been working on several small tools focused on reconnaissance, OSINT, and security research.</p> <p>Most of these tools are written in Python and designed to be simple, practical, and useful for researchers, developers, and bug bounty hunters.</p> <p>Why I Built These Tools</p> <p>While learning more about reconnaissance workflows, I noticed that many tools are either:</p> <p>too complex for beginners</p> <p>not flexible enough</p> <p>or difficult to integrate into simple workflows</p> <p>So I started building my own tools to experiment with automation and information gathering.</p> <p>Some of My Projects</p> <p><strong>hxr</strong></p> <p>A security reconnaissance framework focused on gathering useful data during early stages of security research.</p> <p><strong>RYN27</strong></p> <p>A CLI tool for information gathering including:</p> <p>WHOIS lookup</p> <p>DNS records</p> <p>IP geolocation</p> <p>port scanning</p> <p>technology detection</p> <p><strong>IP-Hunter</strong></p> <p>A defensive security tool designed to help website owners identify potential risks and misconfigurations.</p> <p>Open Source and Learning</p> <p>All of these projects are open source and part of my learning process in cybersecurity and Python development.</p> <p>I believe sharing tools openly helps others learn and improve their workflows.</p> <p><strong>Projects</strong></p> <p>You can explore all projects here:</p> <p>GitHub:<br> <a href="https://github.com/ruyynn" rel="noopener noreferrer">https://github.com/ruyynn</a></p> <p>Feedback</p> <p>If you work in cybersecurity, OSINT, or bug bounty, I’d love to hear your feedback.</p> <p>What tools do you rely on the most?</p> <p>What features are often missing from reconnaissance tools?</p> <p>Suggestions are always welcome.</p> cybersecurity opensource python showdev