User Scanner

June 12, 2026 · View on GitHub

User Scanner Logo

kaifcodec%2Fuser-scanner | Trendshift

A powerful 2-in-1 OSINT suite engineered for deep Email and Username Intelligence.

With 240+ total scan vectors—including 100+ email-integrated sites and 140+ username platforms—you can map digital footprints, analyze target behavior, uncover interests, and verify account registrations in seconds.

The ultimate reconnaissance tool for hunting down targets using just an email or username—now fully integrated with Hudson Rock for instant data breach intelligence.

Features

  • Deep Email & Username OSINT: Look up email registrations and perform advanced username profiling across 240+ platforms.
  • Profile Data Extraction: Goes beyond basic availability checks to scrape and extract rich metadata, account details, and digital footprints from target profiles.
  • Dual-Mode Engine: Run targeted email campaigns, massive username sweeps, or simultaneous dual-identifier scans.
  • Granular Status Reporting: Get crystal-clear results (Registered/Available for emails; Found/Not Found/Error for usernames) backed by precise exception handling.
  • Modular & Extensible: Built on a highly decoupled, modular architecture, adding new platform modules takes just a few lines of code.
  • Mass Bulk Scanning: High-throughput processing for bulk lists of usernames and emails via structured input files.
  • Permutation Generator: Wildcard-based username variation generation to catch typosquatting or alternative aliases.
  • Multi-Format Export: Clean console output paired with structured, automated exports to JSON and CSV for easy pipeline integration.
  • Advanced Proxy Rotation: Built-in proxy pivoting with automated rotation and pre-scan health checks to bypass strict rate-limiting.
  • Smart Auto-Update System: Keeps your signatures and modules fresh with interactive, seamless PyPI update prompts.
# create venv
python -m venv .venv

Activate venv

# Linux / macOS
source .venv/bin/activate

# Windows (PowerShell)
.venv\Scripts\Activate.ps1

Installation

# upgrade pip
python -m pip install --upgrade pip

# install
pip install user-scanner

Important Flags

See Important flags here and use the tool powerfully

Usage

Basic username/email scan

Scan a single email or username across all available modules/platforms:

user-scanner -e johndoe@gmail.com   # single email scanning 
user-scanner -u johndoe             # single username scanning

Verbose mode

Use -v flag to show the url of the sites being checked

user-scanner -v -e johndoe@gmail.com -c dev

Output:

  ...
  [✔] Huggingface [https://huggingface.co] (johndoe@gmail.com): Registered
  [✔] Envato [https://account.envato.com] (johndoe@gmail.com): Registered
  [✔] Replit [https://replit.com] (johndoe@gmail.com): Registered
  [✔] Xda [https://xda-developers.com] (johndoe@gmail.com): Registered
  ...

Selective scanning

Scan only specific categories or single modules:

user-scanner -u johndoe -c dev                # developer platforms only
user-scanner -e johndoe@gmail.com -m github   # only GitHub

Bulk email/username scanning

Scan multiple emails/usernames from a file (one email/username per line):

  • Can also be combined with categories or modules using -c , -m and other flags
user-scanner -ef emails.txt     # bulk email scan
user-scanner -uf usernames.txt  # bulk username scan

Pattern generation

See Pattern Syntax for more details

Library mode for email_scan

Only available for user-scanner>=1.2.0

See full usage (eg. category checks, full scan) guide library usage

  • Email scan example (single module):
import asyncio
from user_scanner.core import engine
from user_scanner.email_scan.shopping import etsy

async def main():
    # Engine detects 'email_scan' path -> returns "Registered" status
    result = await engine.check(etsy, "test@gmail.com")
    json_data = result.to_json() # returns JSON output
    csv_data = result.to_csv()   # returns CSV output
    print(json_data)             # prints the json data

asyncio.run(main())

Output:

{
  "email": "test@gmail.com",
  "category": "Shopping",
  "site_name": "Etsy",
  "status": "Registered",
  "url": "https://www.etsy.com",
  "extra": {
    "id": 98832,
    "name": "test123",
    "username": "test123",
    "gender": "private",
    "is_seller": "No",
    "has_public_page": "No",
    "stats": "0 followers | 0 following | 0 favorites",
    "privacy": "Items are Public | Shops are Public",
    "joined": "2010-09-19 05:04:06",
    "last_profile_update": "2020-07-31 01:40:24",
    "avatar": "https://i.etsystatic.com/site-assets/images/avatars/default_avatar.png?width=400"
  },
  "reason": ""
}

Using Proxies

Validate proxies before scanning (tests each proxy against google.com):

user-scanner -u johndoe -P proxies.txt --validate-proxies # recommended

This will:

  1. Filter out non-working proxies
  2. Save working proxies to validated_proxies.txt
  3. Use only validated proxies for scanning

Support the project

If this project helps you, consider supporting its development: GitHub Sponsor

Sponsors

Huge thanks to our amazing sponsors who support the development of user-scanner!

soxoj
@soxoj

Screenshots:

Note: Screenshots might be outdated

1000188339

user-scanner_u_usage.webm

  • Use the --hudson flag to check if a username or email has been exposed in infostealer malware logs.
user-scanner -e johndoe@gmail.com --hudson   # for email check
user-scanner -u johndoe --hudson             # for username check
1000183041

Contributing

See detailed Contributing guidelines

⚠️ Disclaimer

This tool is provided strictly for educational purposes, authorized security research, and defensive OSINT investigations.

  • User Responsibility: The user assumes all responsibility for ensuring that their deployment and use of this software complies with all applicable local, national, and international laws, as well as the Terms of Service (ToS) of any scanned platforms.
  • Data Source & Methodology: This tool acts exclusively as an aggregator of publicly accessible information and legitimate third-party threat intelligence APIs. It does not bypass authentication mechanisms, exploit security vulnerabilities, or access non-public private data.
  • Information Aggregation: While this software extracts public metadata and references external breach intelligence feeds (e.g., Hudson Rock), the developers do not host, store, or maintain any underlying personal data. All data is processed locally on the user's machine in real-time.
  • Limitation of Liability: This software is provided "as is", without warranty of any kind, express or implied. The developers accept no liability and are not responsible for any misuse, unintended consequences, damage, or legal actions resulting from the use of this tool.

🛠️ Troubleshooting

Some sites may return 403 Forbidden or connection timeout errors, especially if they are blocked in your region (this is common with some adult sites).

  • If a site is blocked in your region, use a VPN and select a region where you know the site is accessible.
  • Then run the tool again.

These issues are caused by regional or network restrictions, not by the tool itself. If it still fails, report the error by opening an issue.