social-analyzer
Social Analyzer is an OSINT tool that searches for a person's profile across 1000+ social media websites using multiple detection techniques. It provides API, CLI, and web app interfaces with metadata extraction and correlation features for investigative purposes.
Key facts
Objective fields from the source. Values we can't verify are shown as “Unknown” rather than guessed.
| Field | Value |
|---|---|
| Repository | qeeqbox/social-analyzer |
| Owner | qeeqbox |
| Primary language | JavaScript |
| License | AGPL-3.0 — OSI-approved |
| Stars | 23.4k |
| Forks | 2.2k |
| Open issues | 28 |
| Latest release | Unknown |
| Last updated | 2026-01-12 |
| Source | https://github.com/qeeqbox/social-analyzer |
What social-analyzer is
Node.js/Python-based application using HTTPS libraries and WebDriver for profile detection across social platforms, with multi-layer detection (OCR, normal, advanced, special), metadata extraction, and force-directed graph visualization. Supports custom user-agents, proxies, and parallel workers.
Get the social-analyzer source
Clone the repository and explore it locally.
git clone https://github.com/qeeqbox/social-analyzer.gitcd social-analyzer# follow the project's README for install & configurationNeed it deployed, integrated, or customized instead? DEV.co ships production installs.
Best use cases
Implementation considerations
- Dependencies on Firefox ESR, Tesseract OCR, and Selenium WebDriver add system complexity; containerization (Docker Compose) recommended but not mandatory.
- Rate-limiting and timeout management critical to avoid IP bans; tool allows custom timeout and worker adjustment but no built-in backoff strategy documented.
- Database of 1000+ websites requires maintenance; README notes private modules for law enforcement have different detection databases, suggesting public list may diverge from production accuracy.
- Multi-profile correlation and metadata extraction rely on external APIs (Google, DuckDuckGo) which are optional; performance and coverage depend on availability and quota.
- Logging, screenshot capture, and JSON export can consume significant disk space; no retention policies or cleanup documented.
When to avoid it — and what to weigh
- Production SaaS / Multi-tenant Service — README explicitly states 'meant to be used locally, not as a service (It does not have any Access Control).' AGPL-3.0 license requires source disclosure if deployed over network, which complicates commercial hosting.
- High-volume Commercial Deployment — No rate-limiting, request throttling, or commercial API integrations mentioned. Queries 1000+ sites per search; unclear scaling or cost model for production workloads.
- Privacy-critical Contexts Without Legal Review — Tool performs surveillance-grade profile aggregation. Legal and ethical review required in jurisdictions with strict data protection (GDPR, CCPA). No built-in consent or privacy controls documented.
- Turnkey Third-party Integration — No stable release (latestRelease: n/a), 28 open issues, and lastPushed 2026-01-12 suggest active but unpredictable development. Requires continuous integration effort.
License & commercial use
Licensed under AGPL-3.0 (GNU Affero General Public License v3.0). This is a strong copyleft license requiring source code disclosure and copyleft compliance if the software is made available over a network or as a service, even internally.
AGPL-3.0 permits commercial use locally; however, any deployment accessible over a network (including internal company networks or hosting) triggers source disclosure obligations. Proprietary deployment or resale requires explicit licensing negotiation with copyright holder. Not a standard permissive OSI license for closed-source commercial distribution. Legal review required.
DEV.co evaluation signals
Editorial assessment — not user reviews. Directional, with an explicit confidence level.
| Signal | Assessment |
|---|---|
| Maintenance | Active |
| Documentation | Adequate |
| License clarity | Clear |
| Deployment complexity | Moderate |
| DEV.co fit | Possible |
| Assessment confidence | High |
Tool designed for reconnaissance and profile aggregation; inherent use case carries privacy and legal risk. No built-in audit logging, access controls, or encryption documented. Deployment localhost-only by design; network exposure requires operator discipline. Depends on external services (Google API, browser automation); injection and supply-chain risks possible. No security policy or CVE tracking visible; recommend security review before operational deployment.
Alternatives to consider
Maltego
Commercial OSINT platform with supported integrations, API, and enterprise access controls. Actively maintained and suitable for SaaS or commercial deployment; requires license cost.
Sherlock
Simpler, lightweight Python tool for username enumeration across social media. Easier to integrate, fewer dependencies, but narrower scope (username search only, no metadata extraction).
TheHarvester
OSINT framework for email, subdomain, and people search. Broader scope (not just social media), active maintenance, Python-based. Steeper learning curve; different use-case fit.
Build on social-analyzer with DEV.co software developers
Assess AGPL-3.0 licensing, local deployment constraints, and accuracy requirements with your security and legal teams before implementation.
Talk to DEV.coRelated open-source tools
Surfaced by semantic similarity across the DEV.co open-source index.
Related on DEV.co
Explore the category and the services that help you build with it.
social-analyzer FAQ
Can I deploy this as a hosted service for my team?
What is the detection accuracy and false-positive rate?
How do I integrate this with my OSINT workflow?
Is there a stable release or breaking-change policy?
Work with a software development agency
Adopting social-analyzer is usually one piece of a larger software development effort. As a software development agency, DEV.co provides software development services and web development expertise — pairing senior software developers and web developers with your team to design, build, and operate open-source security software in production.
Evaluate Social Analyzer for Your Investigation Needs
Assess AGPL-3.0 licensing, local deployment constraints, and accuracy requirements with your security and legal teams before implementation.