Repository: chadi0x/TheBigBrother
Branch: main
Commit: 3e9569acead3
Files: 45
Total size: 460.4 KB

Directory structure:
gitextract_16rro3kj/

├── .dockerignore
├── .gitignore
├── Dockerfile
├── LICENSE
├── README.md
├── VERSION
├── docker-compose.yml
├── pyproject.toml
├── requirements.txt
└── the_big_brother/
    ├── __init__.py
    ├── __main__.py
    ├── gui/
    │   ├── __init__.py
    │   ├── main.py
    │   └── static/
    │       ├── 3.css
    │       └── index.html
    ├── image_grabber.py
    ├── modules/
    │   ├── __init__.py
    │   ├── ai_analyst.py
    │   ├── breach_vault.py
    │   ├── code_hunter.py
    │   ├── crypto_analyzer.py
    │   ├── dark_watch.py
    │   ├── digital_footprint.py
    │   ├── domain_oracle.py
    │   ├── dork_studio.py
    │   ├── exif_analyzer.py
    │   ├── flight_radar.py
    │   ├── geoint_spy.py
    │   ├── mail_tracer.py
    │   ├── network_mapper.py
    │   ├── paste_dragnet.py
    │   ├── phantom_id.py
    │   ├── shadow_map.py
    │   ├── sigint_sweep.py
    │   ├── ssl_sentinel.py
    │   └── wayback_spectre.py
    ├── notify.py
    ├── py.typed
    ├── resources/
    │   ├── data.json
    │   └── data.schema.json
    ├── result.py
    ├── reverse_search.py
    ├── scanner.py
    ├── sites.py
    └── validators/
        └── headless_validator.py

================================================
FILE CONTENTS
================================================

================================================
FILE: .dockerignore
================================================
__pycache__
*.pyc
*.pyo
*.pyd
.Python
env
venv
.venv
pip-log.txt
pip-delete-this-directory.txt
.tox
.coverage
.coverage.*
.cache
nosetests.xml
coverage.xml
*.cover
*.log
.git
.gitignore
.mypy_cache
.pytest_cache
.hydra
.DS_Store


================================================
FILE: .gitignore
================================================
__pycache__/
*.py[cod]
*$py.class

# C extensions
*.so

# Distribution / packaging
.Python
build/
develop-eggs/
dist/
downloads/
eggs/
.eggs/
lib/
lib64/
parts/
sdist/
var/
wheels/
share/python-wheels/
*.egg-info/
.installed.cfg
*.egg
MANIFEST

# PyInstaller
#  Usually these files are written by a python script from a template
#  before PyInstaller builds the exe, so as to inject date/other infos into it.
*.manifest
*.spec

# Installer logs
pip-log.txt
pip-delete-this-directory.txt

# Unit test / coverage reports
htmlcov/
.tox/
.nox/
.coverage
.coverage.*
.cache
nosetests.xml
coverage.xml
*.cover
*.py,cover
.hypothesis/
.pytest_cache/
cover/

# Translations
*.mo
*.pot

# Django stuff:
*.log
local_settings.py
db.sqlite3
db.sqlite3-journal

# Flask stuff:
instance/
.webassets-cache

# Scrapy stuff:
.scrapy

# Sphinx documentation
docs/_build/

# PyBuilder
.pybuilder/

# Jupyter Notebook
.ipynb_checkpoints

# IPython
profile_default/
ipython_config.py

# pyenv
#   For a library or package, you might want to ignore these files since the code is
#   intended to run in multiple environments; otherwise, check them in:
# .python-version

# pipenv
#   According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.
#   However, in case of collaboration, if having platform-specific dependencies or dependencies
#   with no cross-platform support, pipenv may install dependencies that don't work, or not
#   install all needed dependencies.
#Pipfile.lock

# poetry
#   Similar to Pipfile.lock, it is generally recommended to include poetry.lock in version control.
#   This is especially recommended for binary packages to ensure reproducibility, and is more
#   commonly ignored for libraries.
#   https://python-poetry.org/docs/basic-usage/#commit-your-poetrylock-file-to-version-control
#poetry.lock

# pdm
#   Similar to Pipfile.lock, it is generally recommended to include pdm.lock in version control.
#pdm.lock
#   pdm stores project-wide configurations in .pdm.toml, but it is recommended to not include it
#   in version control.
#   https://pdm.fming.dev/#use-with-ide
.pdm.toml

# PEP 582; used by e.g. github.com/David-OConnor/pyflow and github.com/pdm-project/pdm
__pypackages__/

# Celery stuff
celerybeat-schedule
celerybeat.pid

# SageMath parsed files
*.sage.py

# Environments
.env
.venv
env/
venv/
ENV/
env.bak/
venv.bak/

# Spyder project settings
.spyderproject
.spyproject

# Rope project settings
.ropeproject

# mkdocs documentation
/site

# mypy
.mypy_cache/
.dmypy.json
dmypy.json

# Pyre type checker
.pyre/

# pytype static type analyzer
.pytype/

# Cython debug symbols
cython_debug/

# PyCharm
.idea/

# VS Code
.vscode/

# MacOS
.DS_Store


================================================
FILE: Dockerfile
================================================
FROM mcr.microsoft.com/playwright/python:v1.49.0-jammy

WORKDIR /app

# Install Python dependencies
COPY requirements.txt .
RUN pip install --no-cache-dir -r requirements.txt

# Force-install Chromium that matches the pip-installed Playwright version.
# This guarantees the chromium_headless_shell binary path matches whatever
# playwright pip resolves to, even if the base image's bundled browser is
# from a different release.
RUN playwright install chromium

# Copy application code
COPY . .

EXPOSE 8000

CMD ["python", "-m", "uvicorn", "the_big_brother.gui.main:app", "--host", "0.0.0.0", "--port", "8000", "--reload"]


================================================
FILE: LICENSE
================================================
MIT License

Copyright (c) 2025 The Big Brother

Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:

The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.


================================================
FILE: README.md
================================================
<div align="center">

<br/>

# ◆ 👁️THE BIG BROTHER · V5.0 👁️◆
<br/>

<img width="3910" height="1088" alt="x" src="https://github.com/user-attachments/assets/94879543-dac9-40c0-ab1c-f0a583513ba1" />

<br/>

```text
               ╔══════════════════════════════════════════════════════════════════════════╗
               ║                                                                          ║
               ║             ████████╗██╗  ██╗███████╗    ██████╗ ██╗ ██████╗             ║
               ║             ╚══██╔══╝██║  ██║██╔════╝    ██╔══██╗██║██╔════╝             ║
               ║                ██║   ███████║█████╗      ██████╔╝██║██║  ███╗            ║
               ║                ██║   ██╔══██║██╔══╝      ██╔══██╗██║██║   ██║            ║
               ║                ██║   ██║  ██║███████╗    ██████╔╝██║╚██████╔╝            ║
               ║                ╚═╝   ╚═╝  ╚═╝╚══════╝    ╚═════╝ ╚═╝ ╚═════╝             ║
               ║                                                                          ║
               ║        ██████╗ ██████╗  ██████╗ ████████╗██╗  ██╗███████╗██████╗         ║
               ║        ██╔══██╗██╔══██╗██╔═══██╗╚══██╔══╝██║  ██║██╔════╝██╔══██╗        ║
               ║        ██████╔╝██████╔╝██║   ██║   ██║   ███████║█████╗  ██████╔╝        ║
               ║        ██╔══██╗██╔══██╗██║   ██║   ██║   ██╔══██║██╔══╝  ██╔══██╗        ║
               ║        ██████╔╝██║  ██║╚██████╔╝   ██║   ██║  ██║███████╗██║  ██║        ║
               ║        ╚═════╝ ╚═╝  ╚═╝ ╚═════╝    ╚═╝   ╚═╝  ╚═╝╚══════╝╚═╝  ╚═╝        ║
               ║                                                                          ║
               ║                   ◇ THE EYE THAT NEVER BLINKS — V5.0 ◇                   ║
               ║                   ULTRA-DEEP OSINT · 21 INTEL MODULES                    ║
               ║                                                                          ║
               ╚══════════════════════════════════════════════════════════════════════════╝
```

<br/>


**Advanced OSINT Framework · Premium Holographic Dashboard · 21 Intel Modules**

[![Version](https://img.shields.io/badge/version-5.0.0-ff0050.svg?style=for-the-badge&logo=v&logoColor=white)](https://github.com/chadi0x/the-big-brother/releases)
[![License](https://img.shields.io/badge/license-MIT-00f0ff.svg?style=for-the-badge)](LICENSE)
[![Python](https://img.shields.io/badge/python-3.10+-ff0050.svg?style=for-the-badge&logo=python&logoColor=white)](https://www.python.org/)
[![Docker](https://img.shields.io/badge/docker-ready-00f0ff.svg?style=for-the-badge&logo=docker&logoColor=white)](https://www.docker.com/)
[![Status](https://img.shields.io/badge/STATUS-OPERATIONAL-00ff8c.svg?style=for-the-badge)](https://github.com/chadi0x/)

[`★ WHAT'S NEW`](#-whats-new-in-v50) · [`★ MODULES`](#-the-21-modules) · [`★ INSTALL`](#-installation) · [`★ PREMIUM`](#-premium-projects) · [`★ TELEGRAM`](https://t.me/hisoka0morow)

</div>

---

## ⟦ OVERVIEW ⟧

**The Big Brother V5.0** is a weaponized OSINT framework. Built for Red Teams, Threat Hunters, and Cyber-Investigators — V5 introduces the **AI Analyst** orchestrator that runs every relevant module in parallel and synthesizes one unified threat profile per target.

```
   ┌─────────────────────────────────────────────────────────────┐
   │  21 MODULES   ·   1 UNIFIED ENGINE   ·   FULL DOCKER STACK  │
   │  HOLOGRAPHIC HUD · PARTICLE GRID · ANIMATED INTEL TIMELINE  │
   └─────────────────────────────────────────────────────────────┘
```

---

## 🆕 WHAT'S NEW IN V5.0

### ◆ Six brand-new intel modules

| Tool | Capability |
|:--|:--|
| 🤖 **AI ANALYST** | Auto-detects target type (email · domain · IP · username), fans out to every relevant module in parallel, synthesizes a unified 0-100 risk score + narrative findings + raw payload dump |
| 🌐 **DOMAIN ORACLE** | WHOIS (RDAP) · 7 DNS record types · SPF/DMARC/DKIM grading (A-F) · HTTP security-headers grade · TLS metadata · crt.sh subdomain enum · reverse-IP neighbors · global hygiene score |
| 📨 **MAIL TRACER** | MX validity · SPF/DMARC posture · disposable/role/free-provider detection · Gravatar identity bind · 0-100 deliverability trust score with factor breakdown |
| 🐙 **CODE HUNTER** | GitHub OSINT via public API · top repos · language stats · **public commit-email harvesting** · 24h activity heatmap · org enumeration · influence score |
| 🕰️ **WAYBACK SPECTRE** | Wayback Machine CDX timeline · yearly distribution bars · auto-flags sensitive historical paths (admin · `.env` · `.git` · backups · `.bak` · `id_rsa` · 25+ patterns) |
| 📋 **PASTE DRAGNET** | Multi-site paste hunter across 12 services (Pastebin · Ghostbin · Rentry · Paste.ee · 0bin · JustPaste · Hastebin · Ideone · DPaste · etc) via DDG dorking · auto-flags critical hits |


---

## ⚡ THE 21 MODULES

<div align="center">

```text
┌─────────────────────────────────────────────────────────────────┐
│  ⟦ SYNTHESIS ⟧                                                  │
├─────────────────────────────────────────────────────────────────┤
│  🤖  AI ANALYST       ── cross-module synthesis · NEW           │
├─────────────────────────────────────────────────────────────────┤
│  ⟦ IDENTITY ⟧                                                   │
├─────────────────────────────────────────────────────────────────┤
│  🔍  TARGET PROFILER  ── 200+ social enum + biometric capture   │
│  👻  PHANTOM ID       ── cross-platform identity correlation    │
│  🔓  BREACH VAULT     ── HaveIBeenPwned + paste-dump aggregator │
│  👣  DIGITAL FOOTPRINT ─ phone + email enumeration              │
│  📨  MAIL TRACER      ── email forensics · NEW                  │
│  🐙  CODE HUNTER      ── GitHub OSINT · NEW                     │
├─────────────────────────────────────────────────────────────────┤
│  ⟦ INTEL ⟧                                                      │
├─────────────────────────────────────────────────────────────────┤
│  📡  SIGINT SWEEP     ── Reddit · HN · News · X aggregator      │
│  🗺️   SHADOW MAP       ── AbuseIPDB · VT · URLhaus reputation    │
│  📋  PASTE DRAGNET    ── 12-site paste hunter · NEW             │
│  🧅  DARK WEB         ── Ahmia + ransomware leak feeds          │
│  🕰️   WAYBACK SPECTRE ── archive timeline + leak flags · NEW    │
├─────────────────────────────────────────────────────────────────┤
│  ⟦ INFRASTRUCTURE ⟧                                             │
├─────────────────────────────────────────────────────────────────┤
│  🌐  DOMAIN ORACLE    ── deep domain intel + posture · NEW      │
│  🕸️   NETWORK MAPPER  ── async ports + pyvis network graph      │
│  🔒  SSL SENTINEL     ── certificate chain + SAN extraction     │
│  🪙  CRYPTO           ── BTC/ETH blockchain wallet recon        │
├─────────────────────────────────────────────────────────────────┤
│  ⟦ MEDIA · GEO ⟧                                                │
├─────────────────────────────────────────────────────────────────┤
│  📸  EXIF X-RAY       ── metadata + GPS extraction              │
│  🛠️   DORK STUDIO     ── Google/Shodan/GitHub dork generator    │
│  🛰️   GEOINT SPY      ── multi-engine coordinate intel          │
│  ✈️   SKY RADAR       ── live OpenSky aircraft tracking          │
└─────────────────────────────────────────────────────────────────┘
```

</div>

---

## 🚀 INSTALLATION

### ⟦ PROTOCOL A · Docker (Recommended) ⟧

```bash
# 1. Clone the grid
git clone https://github.com/chadi0x/TheBigBrother.git
cd TheBigBrother

# 2. Boot the eye
docker-compose up --build -d
```

> ▸ **Access:** `http://localhost:8000`
> ▸ **Stop:** `docker-compose down`
> ▸ **Logs:** `docker-compose logs -f`

### ⟦ PROTOCOL B · Manual Bare-Metal ⟧

**Prerequisites:** Python `3.10+` · Playwright

```bash
# 1. Environment
python -m venv venv
source venv/bin/activate          # Windows: venv\Scripts\activate

# 2. Dependencies
pip install -r requirements.txt
playwright install chromium

# 3. Launch
uvicorn the_big_brother.gui.main:app --host 0.0.0.0 --port 8000
```

---

## 📸 SCREENSHOTS

<div align="center">

<img width="1675" height="840" alt="V5 dashboard" src="https://github.com/user-attachments/assets/548d4613-d53c-4d89-85ea-fb538b5bedff" />



</div>

---

## ◆ THE STACK

| Layer | Tech |
|:--|:--|
| **Backend** | FastAPI · Python 3.10+ · async-first orchestration |
| **Frontend** | Vanilla JS · Leaflet · custom particle engine |
| **Recon** | Playwright (headless validation) · pyvis · dnspython · python-whois · DuckDuckGo |
| **Container** | Docker + docker-compose · single-command deploy |

```
                      ┌──────────────┐
                      │   BROWSER    │
                      │  (HUD · JS)  │
                      └──────┬───────┘
                             │ /api/*
                             ▼
                      ┌──────────────┐
                      │   FASTAPI    │  ← 22 endpoints
                      └──────┬───────┘
                             │
            ┌────────────────┼────────────────┐
            ▼                ▼                ▼
       ┌─────────┐      ┌─────────┐     ┌─────────┐
       │ SCANNER │      │ MODULES │     │HEADLESS │
       │  (200+  │      │  (21)   │     │PLAYWRGHT│
       │  sites) │      │         │     │  valid. │
       └─────────┘      └─────────┘     └─────────┘
            │                │                │
            └────────────────▼────────────────┘
                  PUBLIC OSINT ENDPOINTS
            (rdap · crt.sh · wayback · github · etc)
```

---

## 🔥 PREMIUM PROJECTS

For operators who need the full arsenal — exclusive offerings via Telegram.

- 👁️ **TheBigBrother God-EYE** · Proprietary servers · extended API access · zero-key deep intel
- 🐦 **X GodMode** · Twitter/X automation suite — engagement & sentiment engineering
- 🎵 **Amplifior** · Autonomous TikTok empire builder
- 🎣 **Psychopath** · Engineered campaign deployment with AI conversational bots
- 🛠️ **Custom Builds** · 200+ ready-to-deploy operational frameworks. If it doesn't exist, we build it.

<div align="center">

**[▸ INQUIRE · Telegram @hisoka0morow](https://t.me/hisoka0morow)**

</div>

---

## ⚠️ DISCLAIMER

This framework is for **educational research and authorized security testing only**. Users are solely responsible for compliance with all applicable laws. The author assumes zero liability for misuse.

> **CLASSIFIED · AUTHORIZED PERSONNEL ONLY**

---

## 📞 SUPPORT · COMMUNITY

- **Creator / Architect** — `CHADI0X`
- **Telegram (direct inquiries)** — [@hisoka0morow](https://t.me/hisoka0morow)
- **GitHub** — [@chadi0x](https://github.com/chadi0x)

---

## 📜 LICENSE

MIT License — see [LICENSE](LICENSE)

---

<div align="center">

```
◆ ─────────────────────────────────────────────────── ◆
   "In the digital age, anonymity is a luxury.
    Information is the currency of power."
                              ── CHADI0X
◆ ─────────────────────────────────────────────────── ◆
```

**V5.0.0 ·  THE EYE THAT NEVER BLINKS  · ◇**

*Built by CHADI0X · Quantum OSINT Surveillance Grid*

</div>


================================================
FILE: VERSION
================================================
2.1.0


================================================
FILE: docker-compose.yml
================================================
services:
  the-big-brother:
    build: .
    ports:
      - "8000:8000"
    volumes:
      - .:/app
    environment:
      - PYTHONUNBUFFERED=1
    restart: unless-stopped


================================================
FILE: pyproject.toml
================================================
[build-system]
requires = ["setuptools>=61.0", "wheel"]
build-backend = "setuptools.build_meta"

[project]
name = "the-big-brother"
version = "2.1.0"
description = "Advanced OSINT Tool for Username Intelligence & Visual Reconnaissance"
readme = "README.md"
requires-python = ">=3.9"
license = {text = "MIT"}
authors = [
    {name = "CHADI0X", email = "chadi0x@example.com"}
]
keywords = ["osint", "reconnaissance", "username", "reverse-image-search", "intelligence"]
classifiers = [
    "Development Status :: 4 - Beta",
    "Intended Audience :: Information Technology",
    "License :: OSI Approved :: MIT License",
    "Programming Language :: Python :: 3",
    "Programming Language :: Python :: 3.9",
    "Programming Language :: Python :: 3.10",
    "Programming Language :: Python :: 3.11",
    "Programming Language :: Python :: 3.12",
    "Topic :: Security",
]

dependencies = [
    "fastapi>=0.104.0",
    "uvicorn>=0.24.0",
    "requests>=2.31.0",
    "beautifulsoup4>=4.12.0",
    "playwright>=1.40.0",
    "duckduckgo-search>=3.9.0",
    "tomli>=2.0.0; python_version<'3.11'",
    "pandas>=2.0.0",
    "requests-futures>=1.0.0",
    "colorama>=0.4.6",
    "openpyxl>=3.1.0",
]

[project.optional-dependencies]
dev = [
    "pytest>=7.0.0",
    "black>=23.0.0",
    "mypy>=1.0.0",
]

[project.urls]
Homepage = "https://github.com/chadi0x/the-big-brother"
Repository = "https://github.com/chadi0x/the-big-brother"
Issues = "https://github.com/chadi0x/the-big-brother/issues"

[project.scripts]
the-big-brother = "the_big_brother.__main__:main"

[tool.setuptools]
packages = ["the_big_brother"]

[tool.setuptools.package-data]
the_big_brother = ["py.typed", "gui/**/*", "resources/**/*"]


================================================
FILE: requirements.txt
================================================
fastapi>=0.104.0
uvicorn>=0.24.0
requests>=2.31.0
beautifulsoup4>=4.12.0
playwright==1.49.0
duckduckgo-search>=3.9.0
tomli>=2.0.0
pandas>=2.0.0
requests-futures>=1.0.0
colorama>=0.4.6
openpyxl>=3.1.0
holehe>=1.60
phonenumbers>=8.12.0
dnspython>=2.4.0
pyvis>=0.3.0
networkx>=3.0.0
Pillow>=9.0.0
python-whois>=0.9.0
python-multipart>=0.0.6
aiohttp>=3.9.0


================================================
FILE: the_big_brother/__init__.py
================================================
""" The Big Brother Module

This module contains the main logic to search for usernames at social
networks.

"""

from importlib.metadata import version as pkg_version, PackageNotFoundError
import pathlib
import tomli


def get_version() -> str:
    """Fetch the version number of the installed package."""
    try:
        return pkg_version("the_big_brother")
    except PackageNotFoundError:
        # Try reading from pyproject.toml (setuptools format)
        pyproject_path: pathlib.Path = pathlib.Path(__file__).resolve().parent.parent / "pyproject.toml"
        if pyproject_path.exists():
            with pyproject_path.open("rb") as f:
                pyproject_data = tomli.load(f)
            # Use setuptools format: project.version instead of tool.poetry.version
            if "project" in pyproject_data and "version" in pyproject_data["project"]:
                return pyproject_data["project"]["version"]
        
        # Fallback to VERSION file
        version_path: pathlib.Path = pathlib.Path(__file__).resolve().parent.parent / "VERSION"
        if version_path.exists():
            return version_path.read_text().strip()
        
        return "2.1.0"  # Final fallback

# This variable is only used to check for ImportErrors induced by users running as script rather than as module or package
import_error_test_var = None

__shortname__   = "The Big Brother"
__longname__    = "The Big Brother: Find Usernames Across Social Networks"
__version__     = get_version()

# Update check disabled for now or point to new repo if exists
forge_api_latest_release = ""


================================================
FILE: the_big_brother/__main__.py
================================================
#! /usr/bin/env python3

"""
Sherlock: Find Usernames Across Social Networks Module

This module contains the main logic to search for usernames at social
networks.
"""

import sys


if __name__ == "__main__":
    # Check if the user is using the correct version of Python
    python_version = sys.version.split()[0]

    if sys.version_info < (3, 9):
        print(f"The Big Brother requires Python 3.9+\nYou are using Python {python_version}, which is not supported by The Big Brother.")
        sys.exit(1)

    from the_big_brother import scanner
    scanner.main()


================================================
FILE: the_big_brother/gui/__init__.py
================================================


================================================
FILE: the_big_brother/gui/main.py
================================================
from fastapi import FastAPI, BackgroundTasks, Response, UploadFile, File, Form
from fastapi.staticfiles import StaticFiles
from fastapi.middleware.cors import CORSMiddleware
from pydantic import BaseModel
from uuid import uuid4
import os
import sys
import io
import csv
from typing import List, Optional

# Add parent directory to path to allow imports
sys.path.insert(0, os.path.abspath(os.path.join(os.path.dirname(__file__), "../..")))

from the_big_brother.scanner import scan, SitesInformation, QueryNotify, QueryStatus
from the_big_brother.image_grabber import fetch_images, fetch_images_with_diag
from the_big_brother.reverse_search import ReverseImageSearcher
from the_big_brother.validators.headless_validator import HeadlessValidator
from the_big_brother.modules.digital_footprint import get_phone_info, run_holehe
from the_big_brother.modules.network_mapper import scan_target, generate_network_map
from the_big_brother.modules.dark_watch import search_dark_web
from the_big_brother.modules.crypto_analyzer import analyze_crypto
from the_big_brother.modules.ssl_sentinel import get_ssl_info
from the_big_brother.modules.exif_analyzer import get_exif_data
from the_big_brother.modules.dork_studio import generate_dorks
from the_big_brother.modules.geoint_spy import get_geoint_data
from the_big_brother.modules.flight_radar import get_flight_radar

# New V4 modules
from the_big_brother.modules.phantom_id import phantom_id_search
from the_big_brother.modules.breach_vault import breach_vault_search
from the_big_brother.modules.sigint_sweep import sigint_sweep
from the_big_brother.modules.shadow_map import shadow_map_analyze

# New V5 modules
from the_big_brother.modules.domain_oracle import domain_oracle
from the_big_brother.modules.mail_tracer import mail_tracer
from the_big_brother.modules.code_hunter import code_hunter
from the_big_brother.modules.wayback_spectre import wayback_spectre
from the_big_brother.modules.paste_dragnet import paste_dragnet
from the_big_brother.modules.ai_analyst import ai_analyst

class FootprintRequest(BaseModel):
    query: str
    type: str # "email" or "phone"

class NetworkRequest(BaseModel):
    domain: str

class DarkRequest(BaseModel):
    query: str

class CryptoRequest(BaseModel):
    address: str
    coin: str

class SSLRequest(BaseModel):
    domain: str

class ExifRequest(BaseModel):
    url: str

class DorkRequest(BaseModel):
    target: str
    domain: str = ""

class DeepSearchRequest(BaseModel):
    image_url: str

class GeointRequest(BaseModel):
    lat: str
    lon: str

class FlightRequest(BaseModel):
    lat: float
    lon: float
    radius: float = 100

class PhantomRequest(BaseModel):
    username: str

class BreachRequest(BaseModel):
    query: str
    type: str = "email"

class SigintRequest(BaseModel):
    query: str

class ShadowMapRequest(BaseModel):
    target: str

class DomainOracleRequest(BaseModel):
    domain: str

class MailTracerRequest(BaseModel):
    email: str

class CodeHunterRequest(BaseModel):
    username: str

class WaybackRequest(BaseModel):
    target: str

class PasteRequest(BaseModel):
    query: str

class AIAnalystRequest(BaseModel):
    target: str
    mode: str = "auto"

app = FastAPI(title="The Big Brother V5 API")

app.add_middleware(
    CORSMiddleware,
    allow_origins=["*"],
    allow_methods=["*"],
    allow_headers=["*"],
)

# In-memory storage
class JobState:
    def __init__(self):
        self.status = "running"
        self.results = []
        self.images = []
        self.image_diag = ""
        self.stop_requested = False

jobs: dict[str, JobState] = {}

class ScanRequest(BaseModel):
    username: str

class NotifyQueue(QueryNotify):
    def __init__(self, job_id, jobs_dict):
        self.job_id = job_id
        self.jobs = jobs_dict
        super().__init__()

    def update(self, result):
        if self.jobs[self.job_id].stop_requested:
            raise InterruptedError("Stopped by user")

        if result.status == QueryStatus.CLAIMED:
            self.jobs[self.job_id].results.append({
                "site": result.site_name,
                "url": result.site_url_user,
                "status": "Found",
                "validation": "Pending",
                "context": result.context
            })
        elif result.status == QueryStatus.WAF:
             self.jobs[self.job_id].results.append({
                "site": result.site_name,
                "url": result.site_url_user,
                "status": "WAF Blocked",
                "validation": "Pending",
                "context": result.context
            })

    def start(self, message=None):
        pass
    
    def finish(self, message=None):
        pass

def run_scan_job(job_id: str, username: str):
    try:
        # Handle spaces: Check "John Doe" and "JohnDoe" (or replace space with nothing)
        usernames_to_check = [username]
        if " " in username:
            usernames_to_check.append(username.replace(" ", ""))

        # 1. Fetch Images (only for the primary username) — capture diagnostics
        try:
            images, diag = fetch_images_with_diag(username, limit=6)
            jobs[job_id].images = images
            jobs[job_id].image_diag = diag
        except Exception as e:
            print(f"Image fetch error: {e}")
            jobs[job_id].image_diag = f"fatal: {e}"

        # 2. Run Scan
        # Use local data.json file to ensure all sites are loaded
        # Get the path to the local data.json file
        data_file_path = os.path.join(os.path.dirname(__file__), "..", "resources", "data.json")
        sites_info = SitesInformation(data_file_path=data_file_path, honor_exclusions=False)
        site_data = {site.name: site.information for site in sites_info}
        
        notify = NotifyQueue(job_id, jobs)
        
        try:
            for u in usernames_to_check:
                if jobs[job_id].stop_requested: break
                scan(u, site_data, notify)
        except InterruptedError:
            jobs[job_id].status = "stopped"
            return

        if jobs[job_id].stop_requested:
             jobs[job_id].status = "stopped"
             return

        # 3. Validate
        jobs[job_id].status = "validating"
        validate_results(job_id)
        
        if jobs[job_id].stop_requested:
            jobs[job_id].status = "stopped"
        else:
            jobs[job_id].status = "completed"

    except Exception as e:
        import traceback
        traceback.print_exc()
        print(f"Error in scan job: {e}")
        jobs[job_id].status = "error"

def validate_results(job_id: str):
    results = jobs[job_id].results
    if not results:
        return

    to_validate = [r for r in results if r["status"] == "Found"]
    
    if not to_validate:
        return

    try:
        with HeadlessValidator(headless=True) as validator:
            for res in to_validate:
                if jobs[job_id].stop_requested:
                    break
                
                res["validation"] = "Checking..."
                val_res = validator.validate(res["url"])
                
                if val_res.is_profile:
                    res["validation"] = "Verified"
                    res["page_title"] = val_res.title
                    res["snippet"] = val_res.visible_text[:200] if val_res.visible_text else ""
                else:
                    res["validation"] = "False Positive"
                    res["reason"] = val_res.reason
    except Exception as e:
        print(f"Validation error: {e}")

@app.post("/api/scan")
async def start_scan(request: ScanRequest, background_tasks: BackgroundTasks):
    job_id = str(uuid4())
    jobs[job_id] = JobState()
    background_tasks.add_task(run_scan_job, job_id, request.username)
    return {"job_id": job_id}

@app.post("/api/stop/{job_id}")
async def stop_scan(job_id: str):
    if job_id in jobs:
        jobs[job_id].stop_requested = True
        return {"status": "stopping"}
    return {"error": "Job not found"}

@app.get("/api/results/{job_id}")
async def get_results(job_id: str):
    if job_id not in jobs:
        return {"error": "Job not found"}
    return {
        "status": jobs[job_id].status,
        "results": jobs[job_id].results,
        "images": jobs[job_id].images,
        "image_diag": jobs[job_id].image_diag,
    }

@app.get("/api/download/{job_id}")
async def download_report(job_id: str):
    if job_id not in jobs:
        return {"error": "Job not found"}
    
    results = jobs[job_id].results
    output = io.StringIO()
    writer = csv.writer(output)
    writer.writerow(["Site", "URL", "Status", "Validation", "Page Title"])
    
    for r in results:
        writer.writerow([
            r.get("site"), 
            r.get("url"), 
            r.get("status"), 
            r.get("validation"), 
            r.get("page_title", "")
        ])
    
    return Response(
        content=output.getvalue(),
        media_type="text/csv",
        headers={"Content-Disposition": f"attachment; filename=report_{job_id}.csv"}
    )

@app.post("/api/deep-search")
async def deep_search(request: DeepSearchRequest):
    searcher = ReverseImageSearcher(headless=True)
    results = await searcher.search(request.image_url)
    return results

@app.post("/api/footprint")
async def footprint_scan(request: FootprintRequest):
    if request.type == "phone":
        return get_phone_info(request.query)
    elif request.type == "email":
        return await run_holehe(request.query)
    elif request.type == "breach":
        # Redirect to new breach vault
        return await breach_vault_search(request.query, "email")
    return {"error": "Invalid type"}

@app.post("/api/phantom")
async def phantom_scan(request: PhantomRequest):
    return await phantom_id_search(request.username)

@app.post("/api/breach")
async def breach_scan(request: BreachRequest):
    return await breach_vault_search(request.query, request.type)

@app.post("/api/sigint")
async def sigint_scan(request: SigintRequest):
    return await sigint_sweep(request.query)

@app.post("/api/shadowmap")
async def shadowmap_scan(request: ShadowMapRequest):
    return await shadow_map_analyze(request.target)

@app.post("/api/network/scan")
async def network_scan(request: NetworkRequest):
    data = await scan_target(request.domain)
    # Generate map HTML
    if "error" not in data:
         graph_html = generate_network_map(data)
         data["map_html"] = graph_html
    return data

@app.post("/api/dark/search")
async def dark_search(request: DarkRequest):
    return await search_dark_web(request.query)

@app.post("/api/crypto/analyze")
async def crypto_analyze(request: CryptoRequest):
    return analyze_crypto(request.address, request.coin)

@app.post("/api/ssl/scan")
async def ssl_scan(request: SSLRequest):
    return get_ssl_info(request.domain)

@app.post("/api/tools/exif")
async def tool_exif(request: ExifRequest):
    return get_exif_data(request.url)

# FILE UPLOAD for EXIF
@app.post("/api/tools/exif/upload")
async def tool_exif_upload(file: UploadFile = File(...)):
    # Read bytes
    content = await file.read()
    # Modify get_exif_data to accept bytes. 
    # Since we can't easily modify the module function signature without breaking it elsewhere or refactoring,
    # let's duplicate the logic here or update the module.
    # Actually, let's update the module logic in-place via a helper if possible.
    # But for now, let's pass a byte stream if the module supports it or just use PIL directly here.
    
    from PIL import Image
    from PIL.ExifTags import TAGS, GPSTAGS
    from io import BytesIO
    
    results = {"source": file.filename, "basic": {}, "gps": {}, "error": None}
    try:
        image = Image.open(BytesIO(content))
        results["basic"]["format"] = image.format
        results["basic"]["mode"] = image.mode
        results["basic"]["size"] = f"{image.width}x{image.height}"
        
        exif_data = image._getexif()
        if exif_data:
            for tag_id, value in exif_data.items():
                tag = TAGS.get(tag_id, tag_id)
                if isinstance(value, bytes):
                    try: value = value.decode()
                    except: value = str(value)

                if tag == "GPSInfo":
                    gps_data = {}
                    for t in value:
                        sub_tag = GPSTAGS.get(t, t)
                        gps_data[sub_tag] = str(value[t])
                    results["gps"] = gps_data
                else:
                    if len(str(value)) < 500:
                        results["basic"][tag] = value
    except Exception as e:
        results["error"] = str(e)
    return results

@app.post("/api/tools/dork")
async def tool_dork(request: DorkRequest):
    return generate_dorks(request.target, request.domain)

@app.post("/api/tools/geoint")
async def tool_geoint(request: GeointRequest):
    return get_geoint_data(request.lat, request.lon)

@app.post("/api/tools/flight")
async def tool_flight(request: FlightRequest):
    return get_flight_radar(request.lat, request.lon, request.radius)


# === V5 endpoints ===

@app.post("/api/oracle")
async def oracle_scan(request: DomainOracleRequest):
    return await domain_oracle(request.domain)

@app.post("/api/mailtracer")
async def mail_scan(request: MailTracerRequest):
    return await mail_tracer(request.email)

@app.post("/api/codehunter")
async def code_scan(request: CodeHunterRequest):
    return await code_hunter(request.username)

@app.post("/api/wayback")
async def wayback_scan(request: WaybackRequest):
    return await wayback_spectre(request.target)

@app.post("/api/paste")
async def paste_scan(request: PasteRequest):
    return await paste_dragnet(request.query)

@app.post("/api/analyst")
async def analyst_scan(request: AIAnalystRequest):
    return await ai_analyst(request.target, request.mode)


# Serve static files for frontend
static_dir = os.path.join(os.path.dirname(__file__), "static")
if os.path.exists(static_dir):
    app.mount("/", StaticFiles(directory=static_dir, html=True), name="static")


================================================
FILE: the_big_brother/gui/static/3.css
================================================
/* ============================================================
   THE BIG BROTHER V5 — EVOLVED CYBERPUNK
   Premium HUD theme · holographic glass · max-FX motion layer
   ============================================================ */

@import url('https://fonts.googleapis.com/css2?family=Share+Tech+Mono&family=Orbitron:wght@400;500;700;800;900&family=JetBrains+Mono:wght@400;600&family=Inter:wght@300;400;500;600;700&display=swap');

/* ---------- design tokens ---------- */
:root {
    --bg-0: #030308;
    --bg-1: #07070f;
    --bg-2: #0c0c18;
    --bg-3: #131325;
    --panel: rgba(10, 10, 22, 0.72);
    --panel-2: rgba(14, 14, 30, 0.85);
    --panel-edge: rgba(255, 0, 80, 0.28);
    --panel-edge-cyan: rgba(0, 240, 255, 0.28);

    --text: #e6e9f5;
    --text-mute: #8a8fa8;
    --text-dim: #5a5e75;

    --red: #ff0050;
    --red-bright: #ff3a73;
    --red-deep: #b8002f;
    --cyan: #00f0ff;
    --cyan-bright: #6cfcff;
    --magenta: #ff00d4;
    --green: #00ff8c;
    --amber: #ffb800;
    --violet: #a259ff;

    --grad-hot:   linear-gradient(135deg, #ff0050 0%, #ff00d4 100%);
    --grad-cool:  linear-gradient(135deg, #00f0ff 0%, #a259ff 100%);
    --grad-warn:  linear-gradient(135deg, #ffb800 0%, #ff0050 100%);
    --grad-ok:    linear-gradient(135deg, #00ff8c 0%, #00f0ff 100%);
    --grad-holo:  linear-gradient(135deg, #ff0050, #a259ff 25%, #00f0ff 55%, #00ff8c 80%, #ffb800);
    --grad-panel: linear-gradient(135deg, rgba(255,0,80,0.06), rgba(0,240,255,0.06));

    --shadow-neon: 0 0 24px rgba(255, 0, 80, 0.35), 0 0 60px rgba(255, 0, 80, 0.12);
    --shadow-cyan: 0 0 24px rgba(0, 240, 255, 0.35), 0 0 60px rgba(0, 240, 255, 0.12);
    --shadow-panel: 0 14px 40px -16px rgba(0,0,0,0.7), inset 0 1px 0 rgba(255,255,255,0.04);

    --radius: 14px;
    --radius-sm: 8px;
    --radius-pill: 999px;

    --transition: 220ms cubic-bezier(0.2, 0.8, 0.2, 1);
    --transition-slow: 480ms cubic-bezier(0.2, 0.8, 0.2, 1);

    --font-display: 'Orbitron', sans-serif;
    --font-mono: 'JetBrains Mono', 'Share Tech Mono', monospace;
    --font-ui: 'Inter', system-ui, sans-serif;
}

* { box-sizing: border-box; }
*::selection { background: var(--red); color: #000; }

html, body {
    margin: 0; padding: 0; height: 100%;
    background: var(--bg-0);
    color: var(--text);
    font-family: var(--font-ui);
    overflow: hidden;
    -webkit-font-smoothing: antialiased;
    text-rendering: optimizeLegibility;
}

body::before, body::after {
    content: ''; position: fixed; inset: 0; pointer-events: none; z-index: 0;
}
body::before {
    background:
        radial-gradient(60% 50% at 10% 10%, rgba(255, 0, 80, 0.18), transparent 60%),
        radial-gradient(50% 40% at 90% 20%, rgba(0, 240, 255, 0.15), transparent 60%),
        radial-gradient(40% 40% at 50% 95%, rgba(162, 89, 255, 0.16), transparent 60%);
    animation: auroraDrift 22s ease-in-out infinite alternate;
    filter: blur(20px);
}
body::after {
    background:
        linear-gradient(rgba(255, 0, 80, 0.05) 1px, transparent 1px) 0 0 / 48px 48px,
        linear-gradient(90deg, rgba(0, 240, 255, 0.05) 1px, transparent 1px) 0 0 / 48px 48px;
    mask-image: radial-gradient(ellipse at center, black 30%, transparent 75%);
    animation: gridPan 40s linear infinite;
}
@keyframes auroraDrift {
    0%   { transform: translate(0, 0)   scale(1); }
    100% { transform: translate(-3%, 2%) scale(1.06); }
}
@keyframes gridPan {
    from { background-position: 0 0, 0 0; }
    to   { background-position: 480px 480px, 480px 480px; }
}

.scanlines {
    position: fixed; inset: 0; pointer-events: none; z-index: 1;
    background: repeating-linear-gradient(to bottom, rgba(255,255,255,0.012) 0 1px, transparent 1px 3px);
    mix-blend-mode: overlay;
}
.vignette {
    position: fixed; inset: 0; pointer-events: none; z-index: 2;
    box-shadow: inset 0 0 220px rgba(0, 0, 0, 0.85);
}
#particle-canvas {
    position: fixed; inset: 0; pointer-events: none; z-index: 1; opacity: 0.55;
}

.app-container {
    position: relative; z-index: 5;
    display: grid;
    grid-template-columns: 280px 1fr;
    width: 100%; height: 100vh;
}

.sidebar {
    background: linear-gradient(180deg, rgba(8,8,18,0.92), rgba(8,8,18,0.78));
    backdrop-filter: blur(18px) saturate(140%);
    -webkit-backdrop-filter: blur(18px) saturate(140%);
    border-right: 1px solid var(--panel-edge);
    display: flex; flex-direction: column; overflow: hidden;
    position: relative;
}
.sidebar::before {
    content: ''; position: absolute; top: 0; right: -1px;
    width: 1px; height: 100%;
    background: linear-gradient(180deg, transparent, var(--red), var(--cyan), transparent);
    opacity: 0.7; animation: edgePulse 6s ease-in-out infinite;
}
@keyframes edgePulse {
    0%, 100% { opacity: 0.35; } 50% { opacity: 0.95; }
}

.sidebar-header {
    padding: 26px 20px 22px;
    border-bottom: 1px solid var(--panel-edge);
    text-align: center; position: relative;
}

.brand-mark {
    width: 64px; height: 64px; margin: 0 auto 12px;
    border-radius: 50%;
    background: var(--grad-holo);
    background-size: 300% 300%;
    animation: holoShift 8s linear infinite;
    position: relative; display: grid; place-items: center;
    box-shadow: 0 0 24px rgba(255, 0, 80, 0.45), inset 0 0 24px rgba(0, 240, 255, 0.25);
}
.brand-mark::after {
    content: ''; position: absolute; inset: 4px;
    border-radius: 50%;
    background: radial-gradient(circle at 50% 35%, #1a1a2e, #050510);
}
.brand-mark span {
    position: relative; font-size: 28px; z-index: 2;
    filter: drop-shadow(0 0 8px var(--red));
}
.brand-mark svg {
    position: relative;
    z-index: 2;
    width: 40px;
    height: 40px;
    filter: drop-shadow(0 0 10px rgba(255, 0, 80, 0.7))
            drop-shadow(0 0 18px rgba(0, 240, 255, 0.35));
    animation: markFloat 6s ease-in-out infinite;
}
@keyframes markFloat {
    0%, 100% { transform: rotate(0deg) scale(1); }
    50%      { transform: rotate(2deg) scale(1.04); }
}
@keyframes holoShift {
    0%   { background-position: 0% 50%; }
    50%  { background-position: 100% 50%; }
    100% { background-position: 0% 50%; }
}

.sidebar-header h1 {
    margin: 0;
    font-family: var(--font-display);
    font-weight: 900; font-size: 1.35rem; letter-spacing: 4px;
    background: var(--grad-hot);
    -webkit-background-clip: text; background-clip: text;
    color: transparent; position: relative;
    text-shadow: 0 0 18px rgba(255, 0, 80, 0.3);
}
.sidebar-header h1.glitch::before,
.sidebar-header h1.glitch::after {
    content: attr(data-text);
    position: absolute; top: 0; left: 0; width: 100%; height: 100%;
    background: var(--grad-hot);
    -webkit-background-clip: text; background-clip: text;
    color: transparent; overflow: hidden;
}
.sidebar-header h1.glitch::before { animation: glitchTop 2.4s infinite linear alternate-reverse; }
.sidebar-header h1.glitch::after  { animation: glitchBot 3.2s infinite linear alternate-reverse; }
@keyframes glitchTop {
    0%   { transform: translate(0, 0); clip-path: inset(0 0 80% 0); }
    20%  { transform: translate(-2px, 1px); clip-path: inset(0 0 70% 0); }
    40%  { transform: translate(1px, -1px); clip-path: inset(10% 0 60% 0); }
    60%  { transform: translate(-1px, 1px); clip-path: inset(20% 0 50% 0); }
    100% { transform: translate(0, 0); clip-path: inset(0 0 80% 0); }
}
@keyframes glitchBot {
    0%   { transform: translate(0, 0); clip-path: inset(80% 0 0 0); }
    25%  { transform: translate(2px, -1px); clip-path: inset(70% 0 0 0); }
    50%  { transform: translate(-1px, 1px); clip-path: inset(60% 0 10% 0); }
    75%  { transform: translate(1px, -1px); clip-path: inset(50% 0 20% 0); }
    100% { transform: translate(0, 0); clip-path: inset(80% 0 0 0); }
}

.sidebar-header .subtitle {
    font-family: var(--font-mono); font-size: 0.65rem;
    color: var(--text-mute); margin-top: 10px;
    letter-spacing: 3px; text-transform: uppercase;
}

.status-strip {
    margin-top: 14px;
    display: flex; gap: 8px; justify-content: center;
    font-family: var(--font-mono); font-size: 0.55rem;
    color: var(--text-mute); letter-spacing: 1.5px;
}
.status-dot { display: inline-flex; align-items: center; gap: 5px; }
.status-dot::before {
    content: ''; width: 6px; height: 6px; border-radius: 50%;
    background: var(--green); box-shadow: 0 0 10px var(--green);
    animation: pulse 1.5s ease-in-out infinite;
}
.status-dot.warn::before { background: var(--amber); box-shadow: 0 0 10px var(--amber); }
@keyframes pulse {
    0%, 100% { opacity: 1; transform: scale(1); }
    50%      { opacity: 0.4; transform: scale(0.85); }
}

.nav-section-title {
    padding: 18px 16px 8px;
    font-family: var(--font-mono); font-size: 0.6rem;
    color: var(--text-dim);
    letter-spacing: 2px; text-transform: uppercase;
    display: flex; align-items: center; gap: 8px;
}
.nav-section-title::after {
    content: ''; flex: 1; height: 1px;
    background: linear-gradient(90deg, var(--panel-edge), transparent);
}

.sidebar-nav {
    flex: 1; overflow-y: auto;
    padding: 6px 10px 16px;
    display: flex; flex-direction: column; gap: 3px;
    scrollbar-width: thin; scrollbar-color: var(--red) transparent;
}
.sidebar-nav::-webkit-scrollbar { width: 4px; }
.sidebar-nav::-webkit-scrollbar-thumb {
    background: linear-gradient(180deg, var(--red), var(--cyan));
    border-radius: 4px;
}

.tab-btn {
    display: flex; align-items: center; gap: 12px;
    padding: 11px 14px;
    background: transparent;
    border: 1px solid transparent; border-left: 2px solid transparent;
    border-radius: var(--radius-sm);
    color: var(--text-mute);
    font-family: var(--font-ui);
    font-size: 0.78rem; font-weight: 500; letter-spacing: 1.2px;
    text-align: left; cursor: pointer;
    transition: var(--transition);
    position: relative; overflow: hidden;
}
.tab-btn > span:first-child {
    font-size: 1.05rem; width: 22px; text-align: center;
    filter: grayscale(0.4); transition: var(--transition);
}
.tab-btn:hover {
    color: var(--text);
    border-color: var(--panel-edge);
    background: rgba(255, 0, 80, 0.05);
    transform: translateX(2px);
}
.tab-btn:hover > span:first-child { filter: grayscale(0) drop-shadow(0 0 4px var(--red)); }
.tab-btn.active {
    color: #fff; border-left-color: var(--red);
    background: linear-gradient(90deg, rgba(255, 0, 80, 0.18), rgba(255, 0, 80, 0.02) 80%);
    box-shadow: inset 0 0 18px rgba(255, 0, 80, 0.08);
}
.tab-btn.active > span:first-child { filter: grayscale(0) drop-shadow(0 0 6px var(--red)); }
.tab-btn.active::after {
    content: ''; position: absolute; right: 10px; top: 50%;
    width: 4px; height: 4px;
    background: var(--red); border-radius: 50%;
    box-shadow: 0 0 8px var(--red);
    transform: translateY(-50%); animation: pulse 1.4s ease-in-out infinite;
}
.tab-btn .new-badge {
    margin-left: auto;
    padding: 2px 6px;
    font-family: var(--font-mono); font-size: 0.55rem; font-weight: 700; letter-spacing: 1px;
    background: var(--grad-cool); color: #000;
    border-radius: var(--radius-pill);
    box-shadow: 0 0 12px rgba(0, 240, 255, 0.5);
}

.nav-premium-btn {
    margin: 12px 10px;
    padding: 13px 16px;
    background: var(--grad-hot); background-size: 200% 200%;
    border: 1px solid rgba(255, 255, 255, 0.15);
    border-radius: var(--radius-sm);
    color: #fff;
    font-family: var(--font-display); font-weight: 700; font-size: 0.78rem; letter-spacing: 2px;
    cursor: pointer;
    box-shadow: 0 0 24px rgba(255, 0, 80, 0.45);
    animation: holoShift 5s linear infinite;
    transition: var(--transition);
    text-align: center;
    display: flex; align-items: center; justify-content: center; gap: 8px;
}
.nav-premium-btn:hover {
    transform: translateY(-2px) scale(1.02);
    box-shadow: 0 0 32px rgba(255, 0, 80, 0.7);
}

.main-content {
    display: flex; flex-direction: column;
    overflow: hidden; min-width: 0;
}

.topbar {
    height: 72px;
    background: var(--panel);
    backdrop-filter: blur(16px) saturate(140%);
    -webkit-backdrop-filter: blur(16px) saturate(140%);
    border-bottom: 1px solid var(--panel-edge);
    display: flex; align-items: center; padding: 0 28px;
    justify-content: space-between;
    position: relative;
}
.topbar::after {
    content: ''; position: absolute; bottom: -1px; left: 0;
    height: 1px; width: 100%;
    background: linear-gradient(90deg, transparent, var(--red), var(--cyan), transparent);
    opacity: 0.6;
}

.topbar-title {
    display: flex; align-items: center; gap: 14px;
    font-family: var(--font-display);
    font-weight: 800; font-size: 1.05rem; letter-spacing: 3px;
    color: #fff;
}
.topbar-title .crosshair {
    width: 22px; height: 22px;
    border: 1.5px solid var(--red); border-radius: 50%;
    position: relative; animation: spin 8s linear infinite;
}
.topbar-title .crosshair::before,
.topbar-title .crosshair::after {
    content: ''; position: absolute; background: var(--red);
}
.topbar-title .crosshair::before { top: 50%; left: -4px; right: -4px; height: 1px; transform: translateY(-50%); }
.topbar-title .crosshair::after  { left: 50%; top: -4px; bottom: -4px; width: 1px; transform: translateX(-50%); }
@keyframes spin { to { transform: rotate(360deg); } }

.topbar-meta {
    display: flex; gap: 22px;
    font-family: var(--font-mono);
    font-size: 0.7rem; color: var(--text-mute);
    letter-spacing: 1.5px;
}
.topbar-meta strong { color: var(--cyan); font-weight: 500; }
.topbar-meta .live-dot {
    display: inline-block; width: 6px; height: 6px;
    border-radius: 50%;
    background: var(--green); box-shadow: 0 0 8px var(--green);
    margin-right: 6px; animation: pulse 1.2s ease-in-out infinite;
}

.content-area {
    flex: 1; overflow-y: auto; padding: 28px;
    scroll-behavior: smooth;
    scrollbar-width: thin; scrollbar-color: var(--red) transparent;
}
.content-area::-webkit-scrollbar { width: 8px; }
.content-area::-webkit-scrollbar-track { background: transparent; }
.content-area::-webkit-scrollbar-thumb {
    background: linear-gradient(180deg, var(--red), var(--cyan));
    border-radius: 4px;
}

.tab-content { display: none; animation: tabEnter 480ms cubic-bezier(0.2, 0.8, 0.2, 1); }
.tab-content.active { display: block; }
@keyframes tabEnter {
    0%   { opacity: 0; transform: translateY(8px) scale(0.99); filter: blur(4px); }
    100% { opacity: 1; transform: translateY(0)    scale(1);    filter: blur(0); }
}

.hud-panel {
    background: var(--panel);
    backdrop-filter: blur(18px) saturate(140%);
    -webkit-backdrop-filter: blur(18px) saturate(140%);
    border: 1px solid var(--panel-edge);
    box-shadow: var(--shadow-panel);
    padding: 22px; margin-bottom: 22px;
    border-radius: var(--radius);
    position: relative; overflow: hidden;
    transition: var(--transition);
}
.hud-panel::before {
    content: ''; position: absolute; inset: 0;
    background: var(--grad-panel); opacity: 0.6; pointer-events: none;
}
.hud-panel:hover {
    border-color: rgba(255, 255, 255, 0.15);
    transform: translateY(-2px);
    box-shadow: 0 22px 50px -20px rgba(255, 0, 80, 0.35), var(--shadow-panel);
}
.hud-panel .bracket {
    position: absolute; width: 14px; height: 14px;
    border: 1.5px solid var(--red);
    pointer-events: none; opacity: 0.6;
}
.hud-panel .bracket.tl { top: 6px; left: 6px; border-right: 0; border-bottom: 0; }
.hud-panel .bracket.tr { top: 6px; right: 6px; border-left: 0; border-bottom: 0; }
.hud-panel .bracket.bl { bottom: 6px; left: 6px; border-right: 0; border-top: 0; }
.hud-panel .bracket.br { bottom: 6px; right: 6px; border-left: 0; border-top: 0; }

.panel-title {
    font-family: var(--font-display);
    font-weight: 700; font-size: 0.9rem; letter-spacing: 2px;
    color: var(--text); margin: 0 0 16px;
    display: flex; align-items: center; gap: 10px;
    text-transform: uppercase;
}
.panel-title::before {
    content: ''; width: 3px; height: 14px;
    background: var(--grad-hot); border-radius: 2px;
    box-shadow: 0 0 10px var(--red);
}

.search-area {
    display: flex; gap: 10px; margin-bottom: 18px;
    flex-wrap: wrap; align-items: stretch;
}

input, select, textarea {
    flex: 1; min-width: 180px;
    padding: 13px 18px;
    background: rgba(5, 5, 14, 0.7);
    border: 1px solid var(--panel-edge);
    border-radius: var(--radius-sm);
    color: var(--text);
    font-family: var(--font-mono);
    font-size: 0.88rem; letter-spacing: 0.5px;
    outline: none; transition: var(--transition);
}
input::placeholder { color: var(--text-dim); font-family: var(--font-mono); letter-spacing: 1px; }
input:focus, select:focus, textarea:focus {
    border-color: var(--red);
    background: rgba(5, 5, 14, 0.95);
    box-shadow: 0 0 0 2px rgba(255, 0, 80, 0.15), 0 0 24px rgba(255, 0, 80, 0.25);
}

.glitch-btn {
    padding: 13px 26px;
    background: transparent;
    color: var(--cyan);
    border: 1px solid var(--cyan);
    border-radius: var(--radius-sm);
    font-family: var(--font-display);
    font-weight: 700; font-size: 0.85rem; letter-spacing: 2px;
    cursor: pointer; position: relative; overflow: hidden;
    transition: var(--transition); text-transform: uppercase;
    box-shadow: inset 0 0 14px rgba(0, 240, 255, 0.1);
    z-index: 1;
}
.glitch-btn::before {
    content: ''; position: absolute; inset: 0;
    background: var(--grad-cool);
    transform: scaleX(0); transform-origin: left;
    transition: var(--transition); z-index: -1;
}
.glitch-btn:hover::before { transform: scaleX(1); }
.glitch-btn:hover {
    color: #000; border-color: transparent;
    box-shadow: 0 0 28px rgba(0, 240, 255, 0.55), 0 0 8px rgba(0, 240, 255, 0.35);
    transform: translateY(-1px);
}
.glitch-btn:active { transform: translateY(0); }
.glitch-btn.hot {
    color: var(--red); border-color: var(--red);
    box-shadow: inset 0 0 14px rgba(255, 0, 80, 0.1);
}
.glitch-btn.hot::before { background: var(--grad-hot); }
.glitch-btn.hot:hover { box-shadow: 0 0 28px rgba(255, 0, 80, 0.55); }
.glitch-btn.ok { color: var(--green); border-color: var(--green); }
.glitch-btn.ok::before { background: var(--grad-ok); }
.glitch-btn:disabled { opacity: 0.35; cursor: not-allowed; pointer-events: none; }

.ctrl-btn {
    background: rgba(5, 5, 14, 0.6);
    color: var(--text);
    border: 1px solid var(--panel-edge);
    padding: 10px 18px; border-radius: var(--radius-sm);
    cursor: pointer;
    font-family: var(--font-mono);
    font-size: 0.78rem; letter-spacing: 1.5px;
    transition: var(--transition);
    height: 44px; text-transform: uppercase;
}
.ctrl-btn:hover { background: rgba(255, 0, 80, 0.08); border-color: var(--red); }
.ctrl-btn.stop {
    color: var(--red);
    border-color: rgba(255, 0, 80, 0.45);
    background: rgba(255, 0, 80, 0.05);
}
.ctrl-btn.stop:hover { background: var(--red); color: #fff; box-shadow: 0 0 18px rgba(255, 0, 80, 0.5); }
.ctrl-btn.download {
    color: var(--green);
    border-color: rgba(0, 255, 140, 0.45);
    background: rgba(0, 255, 140, 0.05);
}
.ctrl-btn.download:hover { background: var(--green); color: #000; box-shadow: 0 0 18px rgba(0, 255, 140, 0.5); }
.ctrl-btn:disabled { opacity: 0.35; cursor: not-allowed; }

.controls {
    display: flex; gap: 12px; margin-bottom: 18px;
    flex-wrap: wrap;
    padding-top: 14px; border-top: 1px solid var(--panel-edge);
}

.results, .results-grid {
    display: grid;
    grid-template-columns: repeat(auto-fill, minmax(260px, 1fr));
    gap: 14px;
}

.result-card {
    background: linear-gradient(160deg, rgba(20, 20, 36, 0.85), rgba(8, 8, 18, 0.85));
    border: 1px solid var(--panel-edge);
    border-radius: var(--radius);
    padding: 18px;
    position: relative; overflow: hidden;
    transform-style: preserve-3d;
    transition: var(--transition);
    will-change: transform;
}
.result-card::before {
    content: ''; position: absolute;
    top: -1px; left: -1px; right: -1px; height: 2px;
    background: var(--grad-hot); opacity: 0.7;
}
.result-card::after {
    content: ''; position: absolute; inset: 0;
    background: radial-gradient(400px circle at var(--mx, 50%) var(--my, 50%), rgba(255, 0, 80, 0.12), transparent 40%);
    pointer-events: none; opacity: 0; transition: var(--transition);
}
.result-card:hover {
    transform: translateY(-4px);
    border-color: rgba(255, 255, 255, 0.18);
    box-shadow: 0 18px 40px -16px rgba(255, 0, 80, 0.35);
}
.result-card:hover::after { opacity: 1; }

.result-card .card-title {
    font-family: var(--font-display);
    font-weight: 700; font-size: 0.9rem; letter-spacing: 1px;
    color: var(--text); margin: 0 0 6px;
}
.result-card .card-url {
    font-family: var(--font-mono);
    font-size: 0.72rem; color: var(--cyan);
    text-decoration: none; word-break: break-all;
    display: block; margin-bottom: 6px;
}
.result-card .card-url:hover { text-decoration: underline; }

.status-badge {
    display: inline-flex; align-items: center; gap: 5px;
    padding: 3px 10px;
    border: 1px solid currentColor;
    border-radius: var(--radius-pill);
    font-family: var(--font-mono);
    font-size: 0.62rem; letter-spacing: 1.5px;
    text-transform: uppercase;
    background: rgba(0, 0, 0, 0.4);
    color: var(--text-mute);
}
.status-badge::before {
    content: ''; width: 5px; height: 5px; border-radius: 50%;
    background: currentColor; box-shadow: 0 0 6px currentColor;
}
.status-badge.verified { color: var(--green); }
.status-badge.check    { color: var(--amber); animation: pulse 1.2s ease-in-out infinite; }
.status-badge.false    { color: var(--red); }
.status-badge.critical { color: var(--red); }
.status-badge.high     { color: #ff5e2b; }
.status-badge.medium   { color: var(--amber); }
.status-badge.low      { color: var(--green); }
.status-badge.clean    { color: var(--text-dim); }
.status-badge.info     { color: var(--cyan); }

[id$="-status"], .status {
    font-family: var(--font-mono);
    font-size: 0.78rem; letter-spacing: 1px;
    color: var(--text-mute);
    padding: 8px 0; min-height: 24px;
    display: flex; align-items: center; gap: 8px;
}
[id$="-status"]:not(:empty)::before, .status:not(:empty)::before {
    content: '>'; color: var(--red); font-weight: 700;
}

.score-shell {
    display: flex; flex-direction: column; gap: 6px;
    padding: 14px;
    border: 1px solid var(--panel-edge);
    border-radius: var(--radius);
    background: rgba(5, 5, 14, 0.55);
    position: relative; overflow: hidden;
}
.score-bar {
    height: 14px;
    background: rgba(255, 255, 255, 0.04);
    border-radius: var(--radius-pill);
    overflow: hidden; position: relative;
}
.score-fill {
    height: 100%;
    background: var(--grad-warn);
    background-size: 200% 100%;
    border-radius: var(--radius-pill);
    transition: width 1.4s cubic-bezier(0.2, 0.8, 0.2, 1);
    animation: gaugeShift 4s linear infinite;
    box-shadow: 0 0 14px currentColor;
    position: relative;
}
.score-fill::after {
    content: ''; position: absolute; inset: 0;
    background: linear-gradient(90deg, transparent, rgba(255,255,255,0.3), transparent);
    animation: scoreShine 2.4s linear infinite;
}
@keyframes gaugeShift {
    0%, 100% { background-position: 0% 0; }
    50%      { background-position: 100% 0; }
}
@keyframes scoreShine {
    from { transform: translateX(-100%); }
    to   { transform: translateX(100%); }
}
.score-meta {
    display: flex; justify-content: space-between;
    font-family: var(--font-mono);
    font-size: 0.72rem; letter-spacing: 1.5px;
    color: var(--text-mute);
}
.score-meta strong { font-family: var(--font-display); font-size: 1.05rem; color: var(--text); }

.dork-wrapper {
    display: flex; align-items: center;
    background: rgba(5, 5, 14, 0.6);
    border: 1px solid var(--panel-edge);
    border-radius: var(--radius-sm);
    overflow: hidden; height: 44px;
}
.dork-select {
    background: transparent; color: var(--text);
    border: none; padding: 0 14px;
    font-family: var(--font-mono);
    font-size: 0.78rem; letter-spacing: 1px;
    outline: none; cursor: pointer;
    min-width: auto;
}
.dork-select option { background: var(--bg-1); color: var(--text); }
.dork-btn {
    background: rgba(0, 240, 255, 0.1);
    color: var(--cyan); border: none;
    border-left: 1px solid var(--panel-edge);
    padding: 0 16px; height: 100%;
    cursor: pointer;
    font-family: var(--font-display);
    font-weight: 700; font-size: 0.74rem; letter-spacing: 1.5px;
    transition: var(--transition);
}
.dork-btn:hover { background: var(--cyan); color: #000; }

.images-container {
    display: flex; justify-content: center; gap: 18px;
    margin-bottom: 22px; min-height: 180px;
    perspective: 1200px; flex-wrap: wrap;
}
.image-wrapper {
    position: relative;
    width: 190px; height: 190px;
    border-radius: var(--radius);
    overflow: hidden;
    transform-style: preserve-3d;
    transition: var(--transition-slow);
    border: 1px solid var(--panel-edge);
    box-shadow: 0 12px 30px -12px rgba(0, 0, 0, 0.7);
    cursor: pointer;
}
.image-wrapper::after {
    content: ''; position: absolute; inset: 0;
    background: linear-gradient(160deg, transparent 40%, rgba(255, 0, 80, 0.18));
    pointer-events: none;
}
.image-wrapper:hover {
    transform: translateY(-6px) rotateY(8deg) rotateX(-4deg) scale(1.04);
    border-color: var(--red);
    box-shadow: 0 24px 48px -12px rgba(255, 0, 80, 0.5);
    z-index: 10;
}
.captured-image {
    width: 100%; height: 100%;
    object-fit: cover; background: #000;
    transition: var(--transition);
}
.image-wrapper:hover .captured-image { transform: scale(1.06); filter: contrast(1.1); }

.btn-deep, .dl-btn {
    position: absolute;
    background: rgba(0, 0, 0, 0.75);
    color: var(--cyan);
    border: 1px solid var(--cyan);
    padding: 5px 10px;
    font-family: var(--font-mono);
    font-size: 0.65rem; letter-spacing: 1px;
    cursor: pointer;
    border-radius: var(--radius-sm);
    opacity: 0; transition: var(--transition);
}
.image-wrapper:hover .btn-deep,
.image-wrapper:hover .dl-btn { opacity: 1; }
.btn-deep { bottom: 8px; left: 8px; }
.dl-btn { bottom: 8px; right: 8px; color: var(--green); border-color: var(--green); }

.deepModal {
    position: fixed; inset: 0;
    background: rgba(2, 2, 8, 0.92);
    backdrop-filter: blur(14px);
    -webkit-backdrop-filter: blur(14px);
    z-index: 1000;
    display: none;
    flex-direction: column;
    padding: 28px;
}
.deepModal.active { display: flex; animation: tabEnter 320ms ease-out; }
.deepModal h3 {
    font-family: var(--font-display);
    letter-spacing: 3px; color: var(--cyan); margin: 0 0 18px;
}
.deep-grid {
    flex: 1; display: grid;
    grid-template-columns: repeat(4, 1fr); gap: 16px;
    overflow: hidden;
}
.deep-col {
    background: var(--panel);
    border: 1px solid var(--panel-edge);
    border-radius: var(--radius);
    padding: 14px; overflow-y: auto;
}
.deep-col h4 {
    margin: 0 0 10px;
    font-family: var(--font-display);
    font-size: 0.78rem; letter-spacing: 2px;
    color: var(--red);
}
.deep-col img {
    width: 100%;
    border-radius: var(--radius-sm);
    margin-bottom: 8px;
    border: 1px solid var(--panel-edge);
    transition: var(--transition);
}
.deep-col img:hover { transform: scale(1.02); border-color: var(--cyan); }
.target-scan {
    color: var(--green); font-family: var(--font-mono);
    letter-spacing: 1.5px; animation: pulse 1s ease-in-out infinite;
}

.reveal {
    opacity: 0; transform: translateY(14px);
    transition: opacity 600ms ease, transform 600ms cubic-bezier(0.2, 0.8, 0.2, 1);
}
.reveal.visible { opacity: 1; transform: translateY(0); }

.typing::after {
    content: '_'; color: var(--red);
    animation: caretBlink 1s steps(2) infinite;
}
@keyframes caretBlink { 50% { opacity: 0; } }

#boot {
    position: fixed; inset: 0;
    background: #03030a;
    z-index: 5000;
    display: flex; flex-direction: column; align-items: center; justify-content: center;
    gap: 22px;
    font-family: var(--font-mono); color: var(--green);
    transition: opacity 600ms ease, visibility 0s linear 600ms;
}
#boot.done { opacity: 0; visibility: hidden; }
#boot .boot-logo {
    font-family: var(--font-display);
    font-size: 2.4rem; letter-spacing: 8px;
    background: var(--grad-hot);
    -webkit-background-clip: text; background-clip: text; color: transparent;
    filter: drop-shadow(0 0 18px rgba(255, 0, 80, 0.5));
    animation: pulse 1.6s ease-in-out infinite;
}
#boot .boot-bar {
    width: min(420px, 60vw); height: 4px;
    border-radius: var(--radius-pill);
    background: rgba(255, 255, 255, 0.06); overflow: hidden;
}
#boot .boot-bar > div {
    height: 100%; width: 0;
    background: var(--grad-cool);
    animation: bootLoad 1.6s cubic-bezier(0.65, 0, 0.35, 1) forwards;
}
@keyframes bootLoad { to { width: 100%; } }
#boot .boot-lines {
    font-size: 0.74rem; letter-spacing: 1.5px;
    color: var(--text-mute); min-height: 110px;
    text-align: left; width: min(420px, 60vw);
}
#boot .boot-lines span { display: block; opacity: 0; }
#boot .boot-lines span.show { opacity: 1; transition: opacity 200ms ease; }
#boot .boot-lines .ok  { color: var(--green); }
#boot .boot-lines .err { color: var(--amber); }

.row { display: flex; gap: 12px; flex-wrap: wrap; align-items: center; }
.col { display: flex; flex-direction: column; gap: 10px; }
.spread { display: flex; justify-content: space-between; align-items: center; gap: 12px; flex-wrap: wrap; }
.mono { font-family: var(--font-mono); }
.dim { color: var(--text-mute); }
.bright { color: var(--text); }
.h-cyan { color: var(--cyan); }
.h-red { color: var(--red); }
.h-green { color: var(--green); }
.h-amber { color: var(--amber); }
.hide { display: none !important; }

.tag {
    display: inline-block;
    padding: 3px 9px;
    background: rgba(0, 240, 255, 0.08);
    border: 1px solid rgba(0, 240, 255, 0.3);
    border-radius: var(--radius-sm);
    color: var(--cyan);
    font-family: var(--font-mono);
    font-size: 0.66rem; letter-spacing: 1px;
    margin: 2px;
}
.tag.hot { background: rgba(255, 0, 80, 0.08); border-color: rgba(255, 0, 80, 0.35); color: var(--red); }
.tag.ok  { background: rgba(0, 255, 140, 0.08); border-color: rgba(0, 255, 140, 0.35); color: var(--green); }
.tag.warn{ background: rgba(255, 184, 0, 0.08); border-color: rgba(255, 184, 0, 0.35); color: var(--amber); }

.mini-bar { height: 6px; background: rgba(255,255,255,0.04); border-radius: var(--radius-pill); overflow: hidden; margin-top: 6px; }
.mini-bar > div { height: 100%; background: var(--grad-cool); border-radius: var(--radius-pill); transition: width 1s ease; }

@media (max-width: 980px) {
    .app-container { grid-template-columns: 1fr; }
    .sidebar { position: fixed; top: 0; left: -300px; bottom: 0; width: 280px; z-index: 200; transition: left var(--transition); }
    .sidebar.open { left: 0; }
}

.leaflet-popup-content-wrapper {
    background: var(--panel-2) !important;
    color: var(--text) !important;
    border: 1px solid var(--panel-edge) !important;
    border-radius: var(--radius) !important;
    font-family: var(--font-mono) !important;
}
.leaflet-popup-tip { background: var(--panel-2) !important; }
.leaflet-container { background: var(--bg-1) !important; }


================================================
FILE: the_big_brother/gui/static/index.html
================================================
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>THE BIG BROTHER · V5.0 // GOD'S EYE PROTOCOL</title>
    <link rel="stylesheet" href="https://unpkg.com/leaflet@1.9.4/dist/leaflet.css">
    <link rel="stylesheet" href="3.css?v=7.0.0">
</head>
<body>

<!-- ============================================================
     BOOT OVERLAY
     ============================================================ -->
<div id="boot">
    <div class="boot-logo">THE BIG BROTHER</div>
    <div class="boot-bar"><div></div></div>
    <div class="boot-lines" id="boot-lines"></div>
</div>

<!-- ============================================================
     AMBIENT BACKDROP LAYERS
     ============================================================ -->
<canvas id="particle-canvas"></canvas>
<div class="scanlines"></div>
<div class="vignette"></div>

<!-- ============================================================
     APP SHELL
     ============================================================ -->
<div class="app-container">

    <!-- ===== SIDEBAR ===== -->
    <aside class="sidebar">
        <div class="sidebar-header">
            <div class="brand-mark">
                <svg viewBox="0 0 64 64" xmlns="http://www.w3.org/2000/svg" aria-hidden="true">
                    <defs>
                        <linearGradient id="bm-edge" x1="0" y1="0" x2="64" y2="64" gradientUnits="userSpaceOnUse">
                            <stop offset="0%"   stop-color="#ff0050"/>
                            <stop offset="55%"  stop-color="#a259ff"/>
                            <stop offset="100%" stop-color="#00f0ff"/>
                        </linearGradient>
                        <linearGradient id="bm-fill" x1="0" y1="0" x2="64" y2="64" gradientUnits="userSpaceOnUse">
                            <stop offset="0%"   stop-color="#ff0050" stop-opacity="0.95"/>
                            <stop offset="100%" stop-color="#a259ff" stop-opacity="0.9"/>
                        </linearGradient>
                        <radialGradient id="bm-core" cx="0.5" cy="0.5" r="0.5">
                            <stop offset="0%"   stop-color="#ffffff" stop-opacity="1"/>
                            <stop offset="60%"  stop-color="#00f0ff" stop-opacity="0.9"/>
                            <stop offset="100%" stop-color="#00f0ff" stop-opacity="0"/>
                        </radialGradient>
                    </defs>
                    <!-- crosshair ticks -->
                    <g stroke="url(#bm-edge)" stroke-width="1.6" stroke-linecap="round">
                        <path d="M32 3 L32 9"/>
                        <path d="M32 55 L32 61"/>
                        <path d="M3 32 L9 32"/>
                        <path d="M55 32 L61 32"/>
                    </g>
                    <!-- outer diamond -->
                    <path d="M32 7 L57 32 L32 57 L7 32 Z"
                          fill="none" stroke="url(#bm-edge)" stroke-width="1.8" stroke-linejoin="miter"/>
                    <!-- inner diamond -->
                    <path d="M32 18 L46 32 L32 46 L18 32 Z"
                          fill="url(#bm-fill)" opacity="0.92"/>
                    <!-- core glow -->
                    <circle cx="32" cy="32" r="12" fill="url(#bm-core)" opacity="0.65"/>
                    <!-- inner accent line -->
                    <path d="M22 32 L42 32" stroke="#ffffff" stroke-width="0.8" opacity="0.55"/>
                    <!-- center diamond pip -->
                    <path d="M32 28 L36 32 L32 36 L28 32 Z" fill="#ffffff" opacity="0.95"/>
                </svg>
            </div>
            <h1 class="glitch" data-text="BIG BROTHER">BIG BROTHER</h1>
            <div class="subtitle">V5 · GOD'S EYE PROTOCOL</div>
            <div class="status-strip">
                <span class="status-dot">CORE</span>
                <span class="status-dot">NEURAL</span>
                <span class="status-dot">UPLINK</span>
            </div>
        </div>

        <nav class="sidebar-nav" id="main-nav">

            <div class="nav-section-title">Synthesis</div>
            <button class="tab-btn" onclick="switchTab('tab-analyst', 'AI ANALYST')">
                <span>🤖</span> AI ANALYST <span class="new-badge">NEW</span>
            </button>

            <div class="nav-section-title">Identity</div>
            <button class="tab-btn active" onclick="switchTab('tab-profiler', 'TARGET PROFILER')">
                <span>🔍</span> PROFILER
            </button>
            <button class="tab-btn" onclick="switchTab('tab-phantom', 'PHANTOM IDENTITY')">
                <span>👻</span> PHANTOM ID
            </button>
            <button class="tab-btn" onclick="switchTab('tab-breach', 'BREACH VAULT')">
                <span>🔓</span> BREACH VAULT
            </button>
            <button class="tab-btn" onclick="switchTab('tab-footprint', 'DIGITAL FOOTPRINT')">
                <span>👣</span> FOOTPRINT
            </button>
            <button class="tab-btn" onclick="switchTab('tab-mailtracer', 'MAIL TRACER')">
                <span>📨</span> MAIL TRACER <span class="new-badge">NEW</span>
            </button>
            <button class="tab-btn" onclick="switchTab('tab-codehunter', 'CODE HUNTER')">
                <span>🐙</span> CODE HUNTER <span class="new-badge">NEW</span>
            </button>

            <div class="nav-section-title">Intel</div>
            <button class="tab-btn" onclick="switchTab('tab-sigint', 'SIGINT SWEEP')">
                <span>📡</span> SIGINT SWEEP
            </button>
            <button class="tab-btn" onclick="switchTab('tab-shadowmap', 'SHADOW MAP')">
                <span>🗺️</span> SHADOW MAP
            </button>
            <button class="tab-btn" onclick="switchTab('tab-paste', 'PASTE DRAGNET')">
                <span>📋</span> PASTE DRAGNET <span class="new-badge">NEW</span>
            </button>
            <button class="tab-btn" onclick="switchTab('tab-darkwatch', 'DARK WEB WATCH')">
                <span>🧅</span> DARK WEB
            </button>
            <button class="tab-btn" onclick="switchTab('tab-wayback', 'WAYBACK SPECTRE')">
                <span>🕰️</span> WAYBACK <span class="new-badge">NEW</span>
            </button>

            <div class="nav-section-title">Infrastructure</div>
            <button class="tab-btn" onclick="switchTab('tab-oracle', 'DOMAIN ORACLE')">
                <span>🌐</span> DOMAIN ORACLE <span class="new-badge">NEW</span>
            </button>
            <button class="tab-btn" onclick="switchTab('tab-network', 'NETWORK MAPPER')">
                <span>🕸️</span> NET SCAN
            </button>
            <button class="tab-btn" onclick="switchTab('tab-ssl', 'SSL SENTINEL')">
                <span>🔒</span> SSL
            </button>
            <button class="tab-btn" onclick="switchTab('tab-crypto', 'CRYPTO ANALYZER')">
                <span>🪙</span> CRYPTO
            </button>

            <div class="nav-section-title">Media / Geo</div>
            <button class="tab-btn" onclick="switchTab('tab-exif', 'EXIF X-RAY')">
                <span>📸</span> EXIF
            </button>
            <button class="tab-btn" onclick="switchTab('tab-dorks', 'DORK STUDIO')">
                <span>🛠️</span> DORKS
            </button>
            <button class="tab-btn" onclick="switchTab('tab-geoint', 'GEOINT SPY')">
                <span>🛰️</span> GEOINT
            </button>
            <button class="tab-btn" onclick="switchTab('tab-flight', 'SKY RADAR')">
                <span>✈️</span> SKY RADAR
            </button>
        </nav>

        <button class="nav-premium-btn" onclick="switchTab('tab-premium', 'PREMIUM CATALOG')">
            🔥 PREMIUM CATALOG
        </button>
    </aside>

    <!-- ===== MAIN COLUMN ===== -->
    <main class="main-content">
        <header class="topbar">
            <div class="topbar-title">
                <div class="crosshair"></div>
                <span id="active-module-title">TARGET PROFILER</span>
            </div>
            <div class="topbar-meta">
                <span><span class="live-dot"></span><strong>LIVE</strong></span>
                <span>SESSION <strong id="session-id">—</strong></span>
                <span><strong id="clock">UTC 00:00:00</strong></span>
            </div>
        </header>

        <div class="content-area" id="content-area">

            <!-- ============================================================
                 TAB: AI ANALYST (NEW)
                 ============================================================ -->
            <div id="tab-analyst" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">AI Analyst · Cross-Module Synthesis</div>
                    <div class="dim mono" style="font-size:0.78rem; margin-bottom:14px;">
                        Auto-detects target type (email · domain · IP · username), fans out to every relevant module in parallel, and produces a unified risk profile with a single threat score.
                    </div>
                    <div class="search-area">
                        <input type="text" id="analyst-input" placeholder="ENTER TARGET (email, domain, ip, or @username)" onkeydown="if(event.key==='Enter') runAnalyst()">
                        <select id="analyst-mode" class="dork-select" style="min-width:120px;">
                            <option value="auto">AUTO</option>
                            <option value="email">EMAIL</option>
                            <option value="domain">DOMAIN</option>
                            <option value="ip">IP</option>
                            <option value="username">USERNAME</option>
                        </select>
                        <button onclick="runAnalyst()" class="glitch-btn hot">EXECUTE</button>
                    </div>
                    <div id="analyst-status"></div>
                </div>

                <div id="analyst-summary" class="hide"></div>
                <div id="analyst-findings" class="hide"></div>
                <div id="analyst-modules" class="hide"></div>
            </div>

            <!-- ============================================================
                 TAB: TARGET PROFILER
                 ============================================================ -->
            <div id="tab-profiler" class="tab-content active">
                <div id="images-panel" class="hud-panel reveal hide">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="spread" style="margin-bottom:14px;">
                        <div class="panel-title" style="margin:0;">Biometric Capture · Visual Intel</div>
                        <span id="images-count" class="status-badge info">0 IMAGES</span>
                    </div>
                    <div class="dim mono" style="font-size:0.74rem; margin-bottom:14px;">Auto-pulled from DuckDuckGo · Bing · Google Images · click any thumb for reverse-image search across 4 engines</div>
                    <div id="images-container" class="images-container"></div>
                </div>

                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Target Profiler</div>
                    <div class="search-area">
                        <input type="text" id="username" placeholder="ENTER TARGET IDENTIFIER..."
                            onkeydown="if(event.key==='Enter') startScan()">
                        <button onclick="startScan()" id="btn-scan" class="glitch-btn hot">INITIATE</button>
                    </div>

                    <div class="controls">
                        <button id="btn-stop" class="ctrl-btn stop" onclick="stopScan()" disabled>[ X ] ABORT</button>
                        <button id="btn-download" class="ctrl-btn download" onclick="downloadReport()" disabled>[ ↓ ] EXPORT CSV</button>

                        <div class="dork-wrapper">
                            <select id="dork-select" class="dork-select">
                                <option value="linkedin">LINKEDIN</option>
                                <option value="instagram">INSTAGRAM</option>
                                <option value="twitter">TWITTER</option>
                                <option value="facebook">FACEBOOK</option>
                                <option value="tiktok">TIKTOK</option>
                                <option value="pinterest">PINTEREST</option>
                                <option value="github">GITHUB</option>
                                <option value="gitlab">GITLAB</option>
                                <option value="stackoverflow">STACKOVERFLOW</option>
                                <option value="pastebin">PASTEBIN</option>
                                <option value="reddit">REDDIT</option>
                                <option value="pdf">FILETYPE: PDF</option>
                                <option value="doc">FILETYPE: DOC</option>
                                <option value="txt">FILETYPE: TXT</option>
                                <option value="intext">INTEXT SCAN</option>
                                <option value="intitle">INTITLE SCAN</option>
                                <option value="inurl">INURL SCAN</option>
                                <option value="password">BREACH CHECK</option>
                                <option value="email">EMAIL CHECK</option>
                                <option value="phone">PHONE CHECK</option>
                            </select>
                            <button class="dork-btn" onclick="executeDork()">DEPLOY ›</button>
                        </div>
                    </div>

                    <div id="status">SYSTEM STANDBY.</div>
                </div>

                <div id="results" class="results"></div>
            </div>

            <!-- ============================================================
                 TAB: PHANTOM ID
                 ============================================================ -->
            <div id="tab-phantom" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Phantom Identity</div>
                    <div class="search-area">
                        <input type="text" id="phantom-input" placeholder="ENTER TARGET USERNAME" onkeydown="if(event.key==='Enter') scanPhantom()">
                        <button onclick="scanPhantom()" class="glitch-btn hot">HUNT</button>
                    </div>
                    <div class="score-shell" style="margin-top:14px;">
                        <div class="score-meta">
                            <span>EXPOSURE SCORE</span>
                            <strong id="phantom-score-text">STANDBY</strong>
                        </div>
                        <div class="score-bar"><div id="phantom-score-bar" class="score-fill" style="width:0%;"></div></div>
                    </div>
                    <div id="phantom-status">WAITING FOR TARGET.</div>
                </div>

                <div id="phantom-results" class="results-grid" style="display:block;">
                    <div id="phantom-meta" class="hide hud-panel" style="margin-bottom:18px;">
                        <span class="bracket tl"></span><span class="bracket tr"></span>
                        <span class="bracket bl"></span><span class="bracket br"></span>
                        <div class="row" style="align-items:center;">
                            <img id="phantom-avatar" src="" style="width:84px; height:84px; border-radius:50%; border:2px solid var(--cyan); box-shadow:0 0 22px rgba(0,240,255,0.5);">
                            <div id="phantom-cats" style="display:flex; gap:6px; flex-wrap:wrap;"></div>
                        </div>
                    </div>
                    <div id="phantom-grid" class="results"></div>
                </div>
            </div>

            <!-- ============================================================
                 TAB: BREACH VAULT
                 ============================================================ -->
            <div id="tab-breach" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Breach Vault</div>
                    <div class="search-area">
                        <input type="text" id="breach-input" placeholder="ENTER EMAIL OR PASSWORD" onkeydown="if(event.key==='Enter') scanBreach()">
                        <select id="breach-type" class="dork-select" style="min-width:160px;">
                            <option value="email">EMAIL</option>
                            <option value="password">PASSWORD (HASHED)</option>
                        </select>
                        <button onclick="scanBreach()" class="glitch-btn hot">AUDIT</button>
                    </div>
                    <div id="breach-status">READY TO CHECK LEAKS.</div>
                </div>

                <div id="breach-summary" style="margin-bottom:18px;"></div>
                <div id="breach-results" class="results"></div>
                <div id="paste-dump-results" style="margin-top:18px; display:grid; gap:10px;"></div>
            </div>

            <!-- ============================================================
                 TAB: FOOTPRINT
                 ============================================================ -->
            <div id="tab-footprint" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Digital Footprint</div>
                    <div class="search-area">
                        <input type="text" id="footprint-input" placeholder="ENTER EMAIL OR PHONE (e.g. +1415...)">
                        <select id="footprint-type" class="dork-select" style="min-width:140px;">
                            <option value="email">EMAIL</option>
                            <option value="phone">PHONE</option>
                        </select>
                        <button onclick="scanFootprint()" class="glitch-btn">TRACK</button>
                    </div>
                    <div id="footprint-status">READY TO TRACK.</div>
                </div>
                <div id="footprint-results" class="results-grid" style="display:block;"></div>
            </div>

            <!-- ============================================================
                 TAB: MAIL TRACER (NEW)
                 ============================================================ -->
            <div id="tab-mailtracer" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Mail Tracer · Email Forensics</div>
                    <div class="dim mono" style="font-size:0.76rem; margin-bottom:12px;">MX validity · SPF/DMARC posture · disposable/role detection · gravatar lookup · trust score</div>
                    <div class="search-area">
                        <input type="text" id="mail-input" placeholder="ENTER EMAIL (e.g. someone@example.com)" onkeydown="if(event.key==='Enter') scanMail()">
                        <button onclick="scanMail()" class="glitch-btn">TRACE</button>
                    </div>
                    <div id="mail-status">AWAITING TARGET.</div>
                </div>
                <div id="mail-results"></div>
            </div>

            <!-- ============================================================
                 TAB: CODE HUNTER (NEW)
                 ============================================================ -->
            <div id="tab-codehunter" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Code Hunter · GitHub OSINT</div>
                    <div class="dim mono" style="font-size:0.76rem; margin-bottom:12px;">Profile · repos · commit-email harvesting · language stats · activity heatmap</div>
                    <div class="search-area">
                        <input type="text" id="code-input" placeholder="ENTER GITHUB USERNAME (without @)" onkeydown="if(event.key==='Enter') scanCode()">
                        <button onclick="scanCode()" class="glitch-btn">HUNT</button>
                    </div>
                    <div id="code-status">READY.</div>
                </div>
                <div id="code-results"></div>
            </div>

            <!-- ============================================================
                 TAB: SIGINT SWEEP
                 ============================================================ -->
            <div id="tab-sigint" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Sigint Sweep</div>
                    <div class="search-area">
                        <input type="text" id="sigint-input" placeholder="ENTER BRAND, PERSON, OR KEYWORD" onkeydown="if(event.key==='Enter') scanSigint()">
                        <button onclick="scanSigint()" class="glitch-btn">SWEEP</button>
                    </div>
                    <div class="row" id="sigint-sentiment" style="margin-top:12px; padding:12px; background:rgba(0,0,0,0.35); border-radius:8px; gap:24px; justify-content:center;">
                        <div class="h-green mono">▲ POSITIVE: <span id="sig-pos">0</span></div>
                        <div class="h-amber mono">● NEUTRAL: <span id="sig-neu">0</span></div>
                        <div class="h-red mono">▼ NEGATIVE: <span id="sig-neg">0</span></div>
                    </div>
                    <div id="sigint-status">AWAITING DIRECTIVES.</div>
                </div>
                <div id="sigint-results" style="display:flex; flex-direction:column; gap:12px;"></div>
            </div>

            <!-- ============================================================
                 TAB: SHADOW MAP
                 ============================================================ -->
            <div id="tab-shadowmap" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Shadow Map</div>
                    <div class="search-area">
                        <input type="text" id="shadow-input" placeholder="ENTER IP OR DOMAIN TO INVESTIGATE" onkeydown="if(event.key==='Enter') scanShadow()">
                        <button onclick="scanShadow()" class="glitch-btn hot">TRACE</button>
                    </div>
                    <div id="shadow-status">REPUTATION ENGINE NOMINAL.</div>
                </div>

                <div id="shadow-dashboard" class="hide" style="grid-template-columns: 1fr 2fr; gap:16px;">
                    <div class="result-card" style="text-align:center; display:flex; flex-direction:column; align-items:center; justify-content:center;">
                        <div class="dim mono" style="margin-bottom:14px;">THREAT SCORE</div>
                        <div id="shadow-score" style="font-size:4.5rem; font-weight:900; line-height:1; font-family:var(--font-display);">0</div>
                        <div id="shadow-level" class="status-badge" style="margin-top:12px; font-size:0.8rem; padding:6px 14px;">CLEAN</div>
                        <div id="shadow-factors" class="col" style="margin-top:18px; width:100%; text-align:left; font-size:0.78rem;"></div>
                    </div>
                    <div class="col">
                        <div class="result-card" id="shadow-abuse"></div>
                        <div class="result-card" id="shadow-vt"></div>
                        <div class="result-card" id="shadow-geo"></div>
                    </div>
                </div>
            </div>

            <!-- ============================================================
                 TAB: PASTE DRAGNET (NEW)
                 ============================================================ -->
            <div id="tab-paste" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Paste Dragnet · Multi-Site Hunter</div>
                    <div class="dim mono" style="font-size:0.76rem; margin-bottom:12px;">Pastebin · Ghostbin · Rentry · Paste.ee · 0bin · JustPaste · Hastebin · Ideone · DPaste — via DuckDuckGo dorks</div>
                    <div class="search-area">
                        <input type="text" id="paste-input" placeholder="ENTER QUERY (email · domain · keyword)" onkeydown="if(event.key==='Enter') scanPaste()">
                        <button onclick="scanPaste()" class="glitch-btn hot">DRAGNET</button>
                    </div>
                    <div id="paste-status">READY TO HUNT.</div>
                </div>
                <div id="paste-summary"></div>
                <div id="paste-results" class="results"></div>
            </div>

            <!-- ============================================================
                 TAB: DARK WEB
                 ============================================================ -->
            <div id="tab-darkwatch" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Dark Web Watch</div>
                    <div class="search-area">
                        <input type="text" id="dark-input" placeholder="ENTER KEYWORD (e.g. leak, database)">
                        <button onclick="scanDarkWeb()" class="glitch-btn hot">SEARCH ONION</button>
                    </div>
                    <div id="dark-status">CAUTION: ONION NETWORK GATEWAY.</div>
                </div>
                <div id="dark-results" class="results"></div>
            </div>

            <!-- ============================================================
                 TAB: WAYBACK SPECTRE (NEW)
                 ============================================================ -->
            <div id="tab-wayback" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Wayback Spectre · Time-Machine Recon</div>
                    <div class="dim mono" style="font-size:0.76rem; margin-bottom:12px;">Wayback Machine CDX timeline · year buckets · sensitive-path flagging (admin · .env · .git · backups)</div>
                    <div class="search-area">
                        <input type="text" id="wayback-input" placeholder="ENTER DOMAIN OR URL" onkeydown="if(event.key==='Enter') scanWayback()">
                        <button onclick="scanWayback()" class="glitch-btn">RECALL</button>
                    </div>
                    <div id="wayback-status">READY.</div>
                </div>
                <div id="wayback-results"></div>
            </div>

            <!-- ============================================================
                 TAB: DOMAIN ORACLE (NEW)
                 ============================================================ -->
            <div id="tab-oracle" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Domain Oracle · Deep Intel</div>
                    <div class="dim mono" style="font-size:0.76rem; margin-bottom:12px;">WHOIS (RDAP) · full DNS · SPF/DMARC/DKIM grade · HTTP security headers · TLS · crt.sh subs · reverse-IP</div>
                    <div class="search-area">
                        <input type="text" id="oracle-input" placeholder="ENTER DOMAIN (e.g. example.com)" onkeydown="if(event.key==='Enter') scanOracle()">
                        <button onclick="scanOracle()" class="glitch-btn hot">DIVINE</button>
                    </div>
                    <div id="oracle-status">READY.</div>
                </div>
                <div id="oracle-results"></div>
            </div>

            <!-- ============================================================
                 TAB: NETWORK MAPPER
                 ============================================================ -->
            <div id="tab-network" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Network Mapper</div>
                    <div class="search-area">
                        <input type="text" id="network-input" placeholder="ENTER DOMAIN (e.g. example.com)">
                        <button onclick="scanNetwork()" class="glitch-btn">MAP NETWORK</button>
                    </div>
                    <div id="network-status">READY TO SCAN.</div>
                </div>
                <div id="network-results" style="display:block; min-height:500px;">
                    <div id="network-graph" style="width:100%; height:500px; border:1px solid var(--panel-edge); border-radius:var(--radius); background:#000; overflow:hidden;"></div>
                    <div id="network-ports" style="margin-top:18px;"></div>
                </div>
            </div>

            <!-- ============================================================
                 TAB: SSL SENTINEL
                 ============================================================ -->
            <div id="tab-ssl" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">SSL Sentinel</div>
                    <div class="search-area">
                        <input type="text" id="ssl-input" placeholder="ENTER DOMAIN (e.g. secure.com)">
                        <button onclick="scanSSL()" class="glitch-btn">INSPECT SSL</button>
                    </div>
                    <div id="ssl-status">TLS HANDSHAKE PROTOCOL READY.</div>
                </div>
                <div id="ssl-results"></div>
            </div>

            <!-- ============================================================
                 TAB: CRYPTO
                 ============================================================ -->
            <div id="tab-crypto" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Crypto Analyzer</div>
                    <div class="search-area">
                        <input type="text" id="crypto-input" placeholder="ENTER WALLET ADDRESS">
                        <select id="crypto-type" class="dork-select" style="min-width:140px;">
                            <option value="btc">BITCOIN</option>
                            <option value="eth">ETHEREUM</option>
                        </select>
                        <button onclick="scanCrypto()" class="glitch-btn">ANALYZE</button>
                    </div>
                    <div id="crypto-status">LEDGER CONNECTION ESTABLISHED.</div>
                </div>
                <div id="crypto-results"></div>
            </div>

            <!-- ============================================================
                 TAB: EXIF
                 ============================================================ -->
            <div id="tab-exif" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">EXIF X-Ray</div>
                    <div class="search-area">
                        <input type="text" id="exif-input" placeholder="ENTER IMAGE URL (http://...)">
                        <span class="mono dim" style="align-self:center;">OR</span>
                        <input type="file" id="exif-file" style="min-width:200px;">
                    </div>
                    <div class="row" style="margin-top:12px;">
                        <button onclick="analyzeExif()" class="glitch-btn">EXTRACT (URL)</button>
                        <button onclick="analyzeExifFile()" class="glitch-btn ok">EXTRACT (FILE)</button>
                    </div>
                    <div id="exif-status">WAITING FOR VISUAL DATA.</div>
                </div>
                <div id="exif-results"></div>
            </div>

            <!-- ============================================================
                 TAB: DORKS
                 ============================================================ -->
            <div id="tab-dorks" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Dork Studio</div>
                    <div class="search-area">
                        <input type="text" id="dork-target" placeholder="TARGET KEYWORD (e.g. Tesla)">
                        <input type="text" id="dork-domain" placeholder="DOMAIN (Optional)">
                        <button onclick="generateDorks()" class="glitch-btn">GENERATE</button>
                    </div>
                    <div id="dork-status">HACKING QUERIES READY.</div>
                </div>
                <div id="dork-results" class="results" style="grid-template-columns: 1fr;"></div>
            </div>

            <!-- ============================================================
                 TAB: GEOINT
                 ============================================================ -->
            <div id="tab-geoint" class="tab-content">
                <div class="hud-panel reveal">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <div class="panel-title">Geoint Spy</div>
                    <div class="search-area">
                        <input type="text" id="geo-lat" placeholder="LATITUDE (e.g. 40.7128)">
                        <input type="text" id="geo-lon" placeholder="LONGITUDE (e.g. -74.0060)">
                        <button onclick="runGeoint()" class="glitch-btn ok">SAT RECON</button>
                    </div>
                    <div id="geo-status">SATELLITE UPLINK STANDBY.</div>
                </div>
                <div id="geo-results"></div>
            </div>

            <!-- ============================================================
                 TAB: SKY RADAR
                 ============================================================ -->
            <div id="tab-flight" class="tab-content" style="height: calc(100vh - 160px); min-height:600px;">
                <div style="display:flex; flex-direction:column; height:100%;">
                    <div class="hud-panel" style="margin-bottom:10px; flex-shrink:0;">
                        <span class="bracket tl"></span><span class="bracket tr"></span>
                        <span class="bracket bl"></span><span class="bracket br"></span>
                        <div class="panel-title">Sky Radar</div>
                        <div class="search-area" style="flex-wrap: wrap; gap:8px;">
                            <select id="sky-country" class="dork-select" onchange="updateSkyRegion()" style="min-width:160px;">
                                <option value="">SELECT REGION...</option>
                                <option value="uk">UNITED KINGDOM</option>
                                <option value="usa_east">USA (EAST)</option>
                                <option value="usa_west">USA (WEST)</option>
                                <option value="france">FRANCE</option>
                                <option value="germany">GERMANY</option>
                                <option value="russia">RUSSIA (MOSCOW)</option>
                                <option value="china">CHINA (EAST)</option>
                                <option value="japan">JAPAN</option>
                                <option value="dubai">UAE (DUBAI)</option>
                            </select>
                            <input type="text" id="sky-lat" placeholder="LAT" style="max-width:120px;">
                            <input type="text" id="sky-lon" placeholder="LON" style="max-width:120px;">
                            <input type="text" id="sky-rad" value="100" placeholder="RAD (KM)" style="max-width:120px;">
                            <button onclick="scanSky()" class="glitch-btn">RADAR SCAN</button>
                            <button onclick="if(navigator.geolocation) navigator.geolocation.getCurrentPosition(p=>{document.getElementById('sky-lat').value=p.coords.latitude; document.getElementById('sky-lon').value=p.coords.longitude;})" class="ctrl-btn">📍 MY LOC</button>
                        </div>
                        <div id="sky-status">OPENSKY NETWORK LINKED.</div>
                    </div>

                    <div style="display:flex; gap:14px; flex:1; min-height:0;">
                        <div id="sky-map" style="flex:3; height:100%; background:var(--bg-1); border:1px solid var(--panel-edge); border-radius:var(--radius); overflow:hidden;"></div>
                        <div style="flex:1; height:100%; overflow-y:auto; border:1px solid var(--panel-edge); border-radius:var(--radius); background:var(--panel); padding:14px;">
                            <div class="panel-title" style="margin-bottom:10px;">LIVE TRAFFIC</div>
                            <div id="sky-results">
                                <div class="dim mono" style="text-align:center;">NO DATA FEED</div>
                            </div>
                        </div>
                    </div>
                </div>
            </div>

            <!-- ============================================================
                 TAB: PREMIUM
                 ============================================================ -->
            <div id="tab-premium" class="tab-content">
                <div class="hud-panel reveal" style="text-align:center;">
                    <span class="bracket tl"></span><span class="bracket tr"></span>
                    <span class="bracket bl"></span><span class="bracket br"></span>
                    <h2 class="panel-title" style="justify-content:center; font-size:1.1rem;">PREMIUM PROJECT CATALOG</h2>
                    <div class="dim mono" style="font-size:0.84rem;">UNLOCK ADVANCED CAPABILITIES WITH THESE EXCLUSIVE MODULES.</div>
                </div>

                <div class="results" style="grid-template-columns: repeat(auto-fill, minmax(320px, 1fr));">
                    <div class="result-card">
                        <div class="spread" style="margin-bottom:10px;">
                            <h3 class="card-title">TheBigBrother God-EYE</h3>
                            <span class="status-badge critical">PREMIUM</span>
                        </div>
                        <div class="dim" style="font-size:0.86rem; margin-bottom:18px;">The ultimate evolution of OSINT operations. Direct access to proprietary servers and global data APIs for unprecedented deep-level intelligence.</div>
                        <button class="glitch-btn hot" style="width:100%;" onclick="window.open('https://t.me/hisoka0morow', '_blank')">GET IT</button>
                    </div>
                    <div class="result-card">
                        <div class="spread" style="margin-bottom:10px;">
                            <h3 class="card-title">X GodMode</h3>
                            <span class="status-badge info">AUTOMATION</span>
                        </div>
                        <div class="dim" style="font-size:0.86rem; margin-bottom:18px;">Deploy fully automated farms across the X ecosystem — auto-publish, RT, like, comment, engineer sentiment.</div>
                        <button class="glitch-btn" style="width:100%;" onclick="window.open('https://t.me/hisoka0morow', '_blank')">GET IT</button>
                    </div>
                    <div class="result-card">
                        <div class="spread" style="margin-bottom:10px;">
                            <h3 class="card-title">Amplifior</h3>
                            <span class="status-badge medium">TIKTOK BOT</span>
                        </div>
                        <div class="dim" style="font-size:0.86rem; margin-bottom:18px;">Hands-free TikTok empire builder. Autonomous download → edit → publish loops for explosive organic growth.</div>
                        <button class="glitch-btn ok" style="width:100%;" onclick="window.open('https://t.me/hisoka0morow', '_blank')">GET IT</button>
                    </div>
                    <div class="result-card">
                        <div class="spread" style="margin-bottom:10px;">
                            <h3 class="card-title">Psychopath</h3>
                            <span class="status-badge low">PHISHING</span>
                        </div>
                        <div class="dim" style="font-size:0.86rem; margin-bottom:18px;">Definitive engineered phishing platform — 100+ targets, SMTP bridging, conversational AI bots.</div>
                        <button class="glitch-btn ok" style="width:100%;" onclick="window.open('https://t.me/hisoka0morow', '_blank')">GET IT</button>
                    </div>
                    <div class="result-card">
                        <div class="spread" style="margin-bottom:10px;">
                            <h3 class="card-title">Custom Project</h3>
                            <span class="status-badge critical">DEVELOPMENT</span>
                        </div>
                        <div class="dim" style="font-size:0.86rem; margin-bottom:18px;">Arsenal of 200+ operational tools. If a capability doesn't exist, we engineer it. Nothing is impossible.</div>
                        <button class="glitch-btn hot" style="width:100%;" onclick="window.open('https://t.me/hisoka0morow', '_blank')">GET IT</button>
                    </div>
                </div>
            </div>

        </div><!-- /content-area -->
    </main>
</div><!-- /app-container -->

<!-- ============================================================
     DEEP SEARCH MODAL
     ============================================================ -->
<div id="deepModal" class="deepModal">
    <div class="spread" style="margin-bottom:14px;">
        <h3>DEEP VISUAL INTEL</h3>
        <button class="ctrl-btn stop" onclick="closeDeepModal()">[ X ] CLOSE</button>
    </div>
    <div class="row" style="margin-bottom:14px; align-items:center;">
        <img id="deep-target-img" src="" style="width:84px; height:84px; object-fit:cover; border-radius:var(--radius); border:1px solid var(--cyan); box-shadow:0 0 22px rgba(0,240,255,0.4);">
        <div class="target-scan">⚲ SCANNING TARGET ACROSS VISUAL SEARCH ENGINES...</div>
    </div>
    <div id="deep-status" class="mono dim" style="margin-bottom:14px;">READY</div>
    <div class="deep-grid">
        <div class="deep-col"><h4>GOOGLE IMAGES</h4><div id="google-results"></div></div>
        <div class="deep-col"><h4>BING VISUAL</h4><div id="bing-results"></div></div>
        <div class="deep-col"><h4>YANDEX VISION</h4><div id="yandex-results"></div></div>
        <div class="deep-col"><h4>TINEYE TRACKER</h4><div id="tineye-results"></div></div>
    </div>
</div>

<!-- ============================================================
     SCRIPTS
     ============================================================ -->
<script src="https://unpkg.com/leaflet@1.9.4/dist/leaflet.js"></script>
<script>
/* ---------- boot sequence ---------- */
(function() {
    const lines = [
        '[OK] core kernel · online',
        '[OK] neural mesh · linked',
        '[OK] crypt engines · primed',
        '[OK] phantom net · ready',
        '[OK] sigint relay · open',
        '[!!] uplink · god\'s eye protocol engaged'
    ];
    const host = document.getElementById('boot-lines');
    lines.forEach((line, i) => {
        const span = document.createElement('span');
        span.textContent = line;
        if (line.includes('[!!]')) span.classList.add('err');
        else span.classList.add('ok');
        host.appendChild(span);
        setTimeout(() => span.classList.add('show'), 180 + i * 200);
    });
    setTimeout(() => document.getElementById('boot').classList.add('done'), 1700);
})();

/* ---------- clock + session ---------- */
function pad(n) { return String(n).padStart(2, '0'); }
function tickClock() {
    const d = new Date();
    document.getElementById('clock').textContent =
        `UTC ${pad(d.getUTCHours())}:${pad(d.getUTCMinutes())}:${pad(d.getUTCSeconds())}`;
}
setInterval(tickClock, 1000); tickClock();
document.getElementById('session-id').textContent =
    '#' + Math.random().toString(36).slice(2, 8).toUpperCase();

/* ---------- particle canvas ---------- */
(function() {
    const c = document.getElementById('particle-canvas');
    const ctx = c.getContext('2d');
    let w, h, particles = [];
    const COUNT = 80;

    function resize() {
        w = c.width = innerWidth;
        h = c.height = innerHeight;
    }
    resize();
    addEventListener('resize', resize);

    for (let i = 0; i < COUNT; i++) {
        particles.push({
            x: Math.random() * w,
            y: Math.random() * h,
            vx: (Math.random() - 0.5) * 0.25,
            vy: (Math.random() - 0.5) * 0.25,
            r: Math.random() * 1.6 + 0.4,
            hue: Math.random() < 0.5 ? '255, 0, 80' : '0, 240, 255'
        });
    }

    function frame() {
        ctx.clearRect(0, 0, w, h);
        for (const p of particles) {
            p.x += p.vx; p.y += p.vy;
            if (p.x < 0 || p.x > w) p.vx *= -1;
            if (p.y < 0 || p.y > h) p.vy *= -1;
            ctx.beginPath();
            ctx.arc(p.x, p.y, p.r, 0, Math.PI * 2);
            ctx.fillStyle = `rgba(${p.hue}, 0.6)`;
            ctx.fill();
        }
        // connect close particles
        for (let i = 0; i < particles.length; i++) {
            for (let j = i + 1; j < particles.length; j++) {
                const a = particles[i], b = particles[j];
                const dx = a.x - b.x, dy = a.y - b.y;
                const d = Math.sqrt(dx * dx + dy * dy);
                if (d < 120) {
                    ctx.beginPath();
                    ctx.moveTo(a.x, a.y);
                    ctx.lineTo(b.x, b.y);
                    ctx.strokeStyle = `rgba(255, 0, 80, ${0.08 * (1 - d / 120)})`;
                    ctx.lineWidth = 0.5;
                    ctx.stroke();
                }
            }
        }
        requestAnimationFrame(frame);
    }
    frame();
})();

/* ---------- tilt + cursor-glow on cards ---------- */
function bindTilt(scope) {
    (scope || document).querySelectorAll('.result-card').forEach(card => {
        if (card.dataset.tiltBound) return;
        card.dataset.tiltBound = '1';
        card.addEventListener('mousemove', e => {
            const r = card.getBoundingClientRect();
            const x = e.clientX - r.left, y = e.clientY - r.top;
            const rx = ((y / r.height) - 0.5) * -6;
            const ry = ((x / r.width) - 0.5) * 6;
            card.style.transform = `translateY(-4px) perspective(900px) rotateX(${rx}deg) rotateY(${ry}deg)`;
            card.style.setProperty('--mx', x + 'px');
            card.style.setProperty('--my', y + 'px');
        });
        card.addEventListener('mouseleave', () => {
            card.style.transform = '';
        });
    });
}

/* ---------- scroll reveal ---------- */
const revealObserver = new IntersectionObserver(entries => {
    for (const e of entries) {
        if (e.isIntersecting) {
            e.target.classList.add('visible');
            revealObserver.unobserve(e.target);
        }
    }
}, { threshold: 0.05 });
function bindReveal(scope) {
    (scope || document).querySelectorAll('.reveal').forEach(el => revealObserver.observe(el));
}
bindReveal();

/* re-bind after each tab switch and after any innerHTML update on results */
function refreshFX(scope) { bindTilt(scope); bindReveal(scope); }

/* ---------- tab switching ---------- */
function switchTab(tabId, title) {
    document.querySelectorAll('.tab-content').forEach(el => el.classList.remove('active'));
    document.querySelectorAll('.tab-btn').forEach(btn => btn.classList.remove('active'));

    const target = document.getElementById(tabId);
    if (target) target.classList.add('active');

    if (event && event.currentTarget) event.currentTarget.classList.add('active');
    if (title) {
        const tEl = document.getElementById('active-module-title');
        tEl.textContent = '';
        let i = 0;
        const interval = setInterval(() => {
            if (i >= title.length) { clearInterval(interval); return; }
            tEl.textContent += title[i++];
        }, 22);
    }
    refreshFX(target);
}

/* ============================================================
   STATE + HELPERS
   ============================================================ */
let jobId = null, pollInterval = null, currentUsername = "";

function renderDict(obj, opts = {}) {
    if (!obj || typeof obj !== 'object') return '';
    return Object.entries(obj).map(([k, v]) => {
        if (v === null || v === undefined || v === '') return '';
        if (Array.isArray(v)) v = v.join(', ') || '—';
        if (typeof v === 'object') v = JSON.stringify(v);
        return `<div style="display:flex; gap:8px; padding:3px 0; font-size:0.82rem;"><span class="dim mono" style="min-width:120px;">${k}:</span><span>${v}</span></div>`;
    }).join('');
}

function gradeBadgeClass(g) {
    if (g === 'A') return 'verified';
    if (g === 'B') return 'low';
    if (g === 'C') return 'medium';
    if (g === 'D') return 'high';
    return 'critical';
}

function fillScore(barEl, scoreEl, value, invert = false) {
    barEl.style.width = value + '%';
    scoreEl.textContent = value + '%';
    let c = 'var(--green)';
    if (invert) {
        if (value > 70) c = 'var(--red)';
        else if (value > 40) c = 'var(--amber)';
    } else {
        if (value < 30) c = 'var(--red)';
        else if (value < 60) c = 'var(--amber)';
    }
    barEl.style.background = c;
    barEl.style.color = c;
}

/* ============================================================
   PROFILER
   ============================================================ */
async function startScan() {
    const username = document.getElementById('username').value.trim();
    if (!username) return;
    currentUsername = username;

    document.getElementById('results').innerHTML = '';
    document.getElementById('images-panel').classList.remove('hide');
    document.getElementById('images-count').textContent = 'SEARCHING...';
    document.getElementById('images-count').className = 'status-badge check';
    document.getElementById('images-container').dataset.last = '';
    document.getElementById('images-container').innerHTML = `
        <div class="mono h-cyan" style="padding:30px; text-align:center; width:100%; letter-spacing:2px;">
            <div style="font-size:0.9rem; margin-bottom:10px;">⚲ ACQUIRING BIOMETRIC DATA</div>
            <div class="dim" style="font-size:0.74rem;">querying ddg · bing · google images for "${username}"</div>
        </div>`;
    document.getElementById('status').textContent = 'INITIALIZING NEURAL LINK...';
    document.getElementById('btn-scan').disabled = true;
    document.getElementById('btn-stop').disabled = false;
    document.getElementById('btn-download').disabled = true;
    document.getElementById('username').disabled = true;

    try {
        const res = await fetch('/api/scan', {
            method: 'POST',
            headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ username })
        });
        const data = await res.json();
        jobId = data.job_id;
        if (pollInterval) clearInterval(pollInterval);
        pollInterval = setInterval(poll, 1500);
    } catch (e) {
        console.error(e);
        alert('SYSTEM FAILURE: CONNECTION REFUSED');
        resetState();
    }
}

async function stopScan() {
    if (!jobId) return;
    try {
        await fetch(`/api/stop/${jobId}`, { method: 'POST' });
        document.getElementById('status').textContent = 'ABORTING SEQUENCE...';
    } catch (e) { console.error(e); }
}

function downloadReport() {
    if (!jobId) return;
    window.location.href = `/api/download/${jobId}`;
}

function executeDork() {
    const u = (document.getElementById('username').value.trim() || currentUsername).trim();
    if (!u) return alert('ENTER TARGET IDENTIFIER FIRST');
    const type = document.getElementById('dork-select').value;
    const map = {
        linkedin: `site:linkedin.com "${u}"`, instagram: `site:instagram.com "${u}"`,
        twitter: `site:twitter.com "${u}"`,  facebook: `site:facebook.com "${u}"`,
        tiktok: `site:tiktok.com "${u}"`,    pinterest: `site:pinterest.com "${u}"`,
        github: `site:github.com "${u}"`,    gitlab: `site:gitlab.com "${u}"`,
        stackoverflow: `site:stackoverflow.com "${u}"`,
        pastebin: `site:pastebin.com "${u}"`, reddit: `site:reddit.com "${u}"`,
        pdf: `filetype:pdf "${u}"`, doc: `filetype:doc "${u}"`, txt: `filetype:txt "${u}"`,
        intext: `intext:"${u}"`, intitle: `intitle:"${u}"`, inurl: `inurl:"${u}"`,
        password: `"${u}" "password"`, email: `"${u}" email`, phone: `"${u}" phone`
    };
    const q = map[type];
    if (q) window.open(`https://www.google.com/search?q=${encodeURIComponent(q)}`, '_blank');
}

function downloadImage(url) {
    const a = document.createElement('a');
    a.href = url; a.download = `target_${currentUsername}.jpg`; a.target = '_blank';
    a.click();
}

async function poll() {
    if (!jobId) return;
    try {
        const res = await fetch(`/api/results/${jobId}`);
        const data = await res.json();
        renderImages(data.images || []);
        renderResults(data.results);
        const statusMap = {
            running: 'SCANNING GLOBAL NETWORKS...',
            validating: 'VERIFYING TARGET VULNERABILITIES [HEADLESS]...',
            stopped: 'SEQUENCE ABORTED BY USER.',
            completed: 'TARGET ACQUISITION COMPLETE.',
            error: 'CRITICAL SYSTEM FAILURE.'
        };
        document.getElementById('status').textContent = statusMap[data.status] || data.status;
        if (['completed', 'error', 'stopped'].includes(data.status)) {
            clearInterval(pollInterval);
            if (!data.images || !data.images.length) setImagesEmpty(data.image_diag);
            resetState(true);
        }
    } catch (e) { console.error(e); }
}

function renderImages(images) {
    const container = document.getElementById('images-container');
    const countEl = document.getElementById('images-count');
    if (!images || !images.length) return;
    // Only re-render when the set changes
    if (container.dataset.last === String(images.length)) return;
    container.dataset.last = String(images.length);

    countEl.textContent = `${images.length} IMAGE${images.length === 1 ? '' : 'S'} FOUND`;
    countEl.className = 'status-badge verified';

    container.innerHTML = images.map((src, i) => `
        <div class="image-wrapper" onclick="triggerDeepSearch('${src}', this)" style="animation: tabEnter 480ms ${i * 80}ms both;">
            <img src="${src}" class="captured-image" onerror="this.parentElement.style.display='none'">
            <div style="position:absolute; top:8px; left:8px; padding:3px 8px; background:rgba(0,0,0,0.7); border:1px solid var(--cyan); border-radius:var(--radius-pill); font-family:var(--font-mono); font-size:0.62rem; letter-spacing:1px; color:var(--cyan);">#${String(i + 1).padStart(2, '0')}</div>
            <button class="btn-deep">⚲ DEEP SEARCH</button>
            <button class="dl-btn" onclick="event.stopPropagation(); downloadImage('${src}')">↓</button>
        </div>
    `).join('');
}

function setImagesEmpty(diag) {
    const container = document.getElementById('images-container');
    const countEl = document.getElementById('images-count');
    if (container.children.length > 0 && !container.querySelector('.h-cyan')) return;
    countEl.textContent = 'NO IMAGES';
    countEl.className = 'status-badge clean';

    const d = (diag || '').toLowerCase();
    let hint = '';
    if (d.includes('chromium-missing') || d.includes('browser-missing')) {
        hint = `<div class="h-red mono" style="font-size:0.74rem; margin-top:6px;">⚠ Playwright Chromium is missing inside the container.<br>Fix: rebuild with <span class="h-cyan">docker-compose build --no-cache</span> (the V5 Dockerfile re-runs <span class="h-cyan">playwright install chromium</span>).</div>`;
    } else if (d.includes('rate-limited')) {
        hint = `<div class="h-amber mono" style="font-size:0.74rem; margin-top:6px;">⚠ DuckDuckGo rate-limited this IP. Wait a minute and retry, or run from a different IP.</div>`;
    } else if (d.includes('timeout')) {
        hint = `<div class="h-amber mono" style="font-size:0.74rem; margin-top:6px;">⚠ Network timeout reaching image engines.</div>`;
    } else if (d) {
        hint = `<div class="dim mono" style="font-size:0.7rem; margin-top:6px;">diag: ${diag}</div>`;
    }
    container.innerHTML = `
        <div style="padding:20px; text-align:center; width:100%;">
            <div class="dim mono" style="font-size:0.82rem;">[ NO PUBLIC IMAGES FOUND FOR THIS TARGET ]</div>
            ${hint}
        </div>`;
}

function renderResults(results) {
    const container = document.getElementById('results');
    const rank = s => s === 'Verified' ? 0 : s === 'Checking...' ? 1 : s === 'Pending' ? 2 : 3;
    const sorted = [...results].sort((a, b) => rank(a.validation) - rank(b.validation));
    container.innerHTML = sorted.map(r => `
        <div class="result-card">
            <div class="spread" style="margin-bottom:8px;">
                <h3 class="card-title">${r.site}</h3>
                ${renderBadge(r)}
            </div>
            <a href="${r.url}" target="_blank" class="card-url">${r.url}</a>
            ${r.page_title ? `<div class="dim mono" style="font-size:0.74rem;">TITLE: ${r.page_title}</div>` : ''}
            ${r.reason ? `<div class="h-red mono" style="font-size:0.74rem;">ERR: ${r.reason}</div>` : ''}
        </div>
    `).join('');
    refreshFX(container);
}

function renderBadge(res) {
    if (res.validation === 'Pending') return '<span class="status-badge">PENDING</span>';
    if (res.validation === 'Checking...') return '<span class="status-badge check">CHECKING</span>';
    if (res.validation === 'Verified') return '<span class="status-badge verified">VERIFIED</span>';
    if (res.validation === 'False Positive') return '<span class="status-badge false">FALSE+</span>';
    return '';
}

function resetState(finished = false) {
    document.getElementById('btn-scan').disabled = false;
    document.getElementById('btn-stop').disabled = true;
    document.getElementById('btn-download').disabled = !finished;
    document.getElementById('username').disabled = false;
}

/* ============================================================
   DEEP SEARCH MODAL
   ============================================================ */
async function triggerDeepSearch(url, wrapper) {
    document.getElementById('deep-target-img').src = url;
    const modal = document.getElementById('deepModal');
    modal.classList.add('active');
    document.getElementById('deep-status').textContent = 'DEPLOYING MULTI-VECTOR VISUAL SEARCH...';
    ['google-results', 'bing-results', 'yandex-results', 'tineye-results'].forEach(id => {
        document.getElementById(id).innerHTML = '<div class="h-green mono" style="animation: pulse 1.2s ease-in-out infinite;">[ ESTABLISHING UPLINK... ]</div>';
    });

    try {
        const res = await fetch('/api/deep-search', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ image_url: url })
        });
        const data = await res.json();
        document.getElementById('deep-status').textContent = 'TARGET VISUAL MATCHES ACQUIRED.';
        renderDeepResults('google-results', data.google);
        renderDeepResults('bing-results', data.bing);
        renderDeepResults('yandex-results', data.yandex);
        renderDeepResults('tineye-results', data.tineye);
    } catch (e) {
        console.error(e);
        document.getElementById('deep-status').textContent = 'VISUAL SEARCH FAILURE.';
    }
}

function renderDeepResults(divId, images) {
    const c = document.getElementById(divId);
    if (!images || images.length === 0) {
        c.innerHTML = '<div class="dim">NO MATCHES FOUND</div>';
        return;
    }
    c.innerHTML = images.map(src => `<img src="${src}" onclick="window.open('${src}')">`).join('');
}

function closeDeepModal() {
    document.getElementById('deepModal').classList.remove('active');
}

/* ============================================================
   PHANTOM ID
   ============================================================ */
async function scanPhantom() {
    const username = document.getElementById('phantom-input').value.trim();
    if (!username) return;
    document.getElementById('phantom-status').textContent = 'HUNTING USERNAME ACROSS 200+ PLATFORMS...';
    document.getElementById('phantom-grid').innerHTML = '<div class="mono h-cyan" style="text-align:center; padding:40px; width:100%;">SCANNING NETWORKS...</div>';
    document.getElementById('phantom-meta').classList.add('hide');
    try {
        const res = await fetch('/api/phantom', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ username })
        });
        const data = await res.json();

        const bar = document.getElementById('phantom-score-bar');
        const text = document.getElementById('phantom-score-text');
        fillScore(bar, text, data.risk_score || 0, true);

        document.getElementById('phantom-avatar').src = data.gravatar || '';
        document.getElementById('phantom-meta').classList.remove('hide');
        document.getElementById('phantom-cats').innerHTML =
            Object.entries(data.categories || {}).map(([c, n]) => `<span class="tag">${c.toUpperCase()}: ${n}</span>`).join('');

        const grid = document.getElementById('phantom-grid');
        if (!data.profiles || !data.profiles.length) {
            grid.innerHTML = '<div class="dim mono" style="text-align:center; padding:30px;">NO PROFILES FOUND.</div>';
        } else {
            grid.innerHTML = data.profiles.map(p => `
                <div class="result-card" style="cursor:pointer;" onclick="window.open('${p.url}')">
                    <h3 class="card-title">${p.platform}</h3>
                    <div class="dim mono" style="font-size:0.74rem;">STATUS ${p.status} · ${p.cat || 'general'}</div>
                </div>
            `).join('');
        }
        document.getElementById('phantom-status').textContent =
            `FOUND PRESENCE ON ${data.found} / ${data.total_checked} PLATFORMS.`;
        refreshFX(grid);
    } catch (e) {
        console.error(e);
        document.getElementById('phantom-status').textContent = 'PHANTOM IDENTIFICATION FAILED.';
    }
}

/* ============================================================
   BREACH VAULT
   ============================================================ */
async function scanBreach() {
    const query = document.getElementById('breach-input').value.trim();
    const type = document.getElementById('breach-type').value;
    if (!query) return;
    document.getElementById('breach-status').textContent = 'QUERYING DARK VAULTS...';
    document.getElementById('breach-results').innerHTML = '<div class="mono h-cyan" style="text-align:center; padding:40px;">ANALYZING LEAKS...</div>';
    document.getElementById('breach-summary').innerHTML = '';
    document.getElementById('paste-dump-results').innerHTML = '';

    try {
        const res = await fetch('/api/breach', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ query, type })
        });
        const data = await res.json();

        if (data.type === 'password') {
            if (data.pwned) {
                document.getElementById('breach-results').innerHTML = `
                <div class="result-card" style="border-color:var(--red); text-align:center;">
                    <h3 class="card-title h-red">PASSWORD COMPROMISED</h3>
                    <div class="mono" style="font-size:1.2rem;">SEEN ${data.count} TIMES</div>
                    <div class="dim mono" style="font-size:0.78rem; margin-top:8px;">DO NOT USE THIS PASSWORD</div>
                </div>`;
                document.getElementById('breach-status').textContent = 'WARNING: HIGH SEVERITY.';
            } else {
                document.getElementById('breach-results').innerHTML = `
                <div class="result-card" style="border-color:var(--green); text-align:center;">
                    <h3 class="card-title h-green">PASSWORD SAFE</h3>
                    <div class="mono">NO MATCHES IN KNOWN DATABASES.</div>
                </div>`;
                document.getElementById('breach-status').textContent = 'NO KNOWN EXPOSURE.';
            }
            refreshFX(document.getElementById('breach-results'));
            return;
        }

        document.getElementById('breach-summary').innerHTML = `
            <div class="result-card" style="display:flex; gap:24px; justify-content:center; text-align:center;">
                <div><div style="font-size:2rem; font-family:var(--font-display);" class="h-red">${data.breach_count}</div><div class="dim mono" style="font-size:0.7rem;">DATABASES</div></div>
                <div><div style="font-size:2rem; font-family:var(--font-display);" class="h-amber">${data.paste_count}</div><div class="dim mono" style="font-size:0.7rem;">PASTES</div></div>
                <div><div style="font-size:2rem; font-family:var(--font-display);" class="h-cyan">${(data.total_records_exposed||0).toLocaleString()}</div><div class="dim mono" style="font-size:0.7rem;">RECORDS</div></div>
            </div>`;

        let html = "";
        (data.breaches || []).forEach(b => {
            if (b._note) { html += `<div class="dim mono" style="text-align:center;">${b._note}</div>`; return; }
            const sev = (b.severity || 'LOW').toLowerCase();
            html += `
            <div class="result-card">
                <div class="spread" style="margin-bottom:8px;">
                    <h3 class="card-title">${b.name}</h3>
                    <span class="status-badge ${sev}">${b.severity}</span>
                </div>
                <div class="row" style="gap:14px;">
                    ${b.logo ? `<img src="${b.logo}" style="width:48px; height:48px; object-fit:contain; border-radius:6px;" onerror="this.style.display='none'">` : ''}
                    <div style="flex:1;">
                        <div class="dim mono" style="font-size:0.74rem; margin-bottom:6px;">${b.date} · ${b.domain || 'unknown'}</div>
                        <div style="font-size:0.85rem; margin-bottom:8px;">${b.description}</div>
                        <div class="row" style="gap:4px;">${(b.data_classes || []).map(d => `<span class="tag hot">${d}</span>`).join('')}</div>
                    </div>
                </div>
            </div>`;
        });
        if (!data.breaches || !data.breaches.length) {
            html = '<div class="result-card" style="border-color:var(--green); text-align:center;"><h3 class="card-title h-green">CLEAN REPUTATION</h3><div>NO BREACHES DETECTED.</div></div>';
        }
        document.getElementById('breach-results').innerHTML = html;

        if (data.paste_dumps && data.paste_dumps.length) {
            const pd = data.paste_dumps.map(p => `
                <div class="result-card" style="display:flex; justify-content:space-between; align-items:center;">
                    <div>
                        <strong class="h-amber">Pastebin ID: ${p.id}</strong>
                        <div class="dim mono" style="font-size:0.74rem;">Indexed: ${new Date(p.date * 1000).toISOString().split('T')[0]}</div>
                    </div>
                    <button class="dork-btn" onclick="window.open('${p.url}')">VIEW CACHE ›</button>
                </div>
            `).join('');
            document.getElementById('paste-dump-results').innerHTML = pd;
        }
        document.getElementById('breach-status').textContent = 'AUDIT COMPLETE.';
        refreshFX(document.getElementById('breach-results'));
    } catch (e) {
        console.error(e);
        document.getElementById('breach-status').textContent = 'VAULT CONNECTION TERMINATED.';
    }
}

/* ============================================================
   FOOTPRINT
   ============================================================ */
async function scanFootprint() {
    const query = document.getElementById('footprint-input').value.trim();
    const type = document.getElementById('footprint-type').value;
    if (!query) return;
    document.getElementById('footprint-status').textContent = 'SCANNING DIGITAL TRACE...';
    document.getElementById('footprint-results').innerHTML = '<div class="mono h-cyan" style="text-align:center; padding:30px;">ACCESSING DATABASES...</div>';
    try {
        const res = await fetch('/api/footprint', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ query, type })
        });
        const data = await res.json();
        if (data.error) {
            document.getElementById('footprint-results').innerHTML = `<div class="result-card" style="border-color:var(--red);">${data.error}</div>`;
            document.getElementById('footprint-status').textContent = 'ERROR.';
            return;
        }
        if (type === 'phone') {
            const p = data;
            document.getElementById('footprint-results').innerHTML = `
                <div class="result-card">
                    <h3 class="card-title h-green">PHONE INTELLIGENCE</h3>
                    ${renderDict({
                        'VALID NUMBER': p.valid,
                        'FORMAT': p.number,
                        'COUNTRY': p.country,
                        'CARRIER': p.carrier,
                        'LINE TYPE': p.line_type,
                        'TIMEZONES': (p.timezones || []).join(', ')
                    })}
                </div>`;
            document.getElementById('footprint-status').textContent = 'PHONE TRACE COMPLETE.';
        } else {
            let html = '';
            if (data.found_on && data.found_on.length) {
                html += `<div class="result-card"><h3 class="card-title h-green">DIGITAL FOOTPRINT DETECTED</h3>
                    <div class="results" style="grid-template-columns: repeat(auto-fill, minmax(140px, 1fr)); gap:8px; margin-top:10px;">
                    ${data.found_on.map(s => `<div class="tag ok" style="text-align:center; padding:8px;">${s}</div>`).join('')}
                    </div></div>`;
            } else {
                html += `<div class="result-card" style="text-align:center;"><h3 class="card-title dim">NO PUBLIC TRACE</h3><div class="dim">TARGET EMAIL APPEARS CLEAN.</div></div>`;
            }
            html += `<div class="result-card" style="margin-top:12px; border-color:${data.valid_mx ? 'var(--green)' : 'var(--red)'};">
                <h3 class="card-title">MX RECORDS</h3>
                <div class="mono" style="font-size:1.05rem;">${data.valid_mx ? 'VALID MAIL SERVER' : 'INVALID / UNREACHABLE'}</div>
                <div class="dim mono" style="font-size:0.78rem;">${(data.mx_records || []).length} SERVERS</div>
            </div>`;
            document.getElementById('footprint-results').innerHTML = html;
            document.getElementById('footprint-status').textContent =
                (data.found_on || []).length ? `EMAIL FOUND ON ${data.found_on.length} PLATFORMS.` : 'NO PUBLIC TRACE.';
        }
        refreshFX(document.getElementById('footprint-results'));
    } catch (e) {
        document.getElementById('footprint-status').textContent = 'ERROR EXECUTING TRACE.';
    }
}

/* ============================================================
   NETWORK MAPPER
   ============================================================ */
async function scanNetwork() {
    const domain = document.getElementById('network-input').value.trim();
    if (!domain) return;
    document.getElementById('network-status').textContent = 'MAPPING TOPOLOGY...';
    document.getElementById('network-graph').innerHTML = '<div class="mono h-cyan" style="text-align:center; padding:100px;">ESTABLISHING CONNECTIONS...</div>';
    document.getElementById('network-ports').innerHTML = '';
    try {
        const res = await fetch('/api/network/scan', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ domain })
        });
        const data = await res.json();
        if (data.error) { document.getElementById('network-status').textContent = 'ERROR: ' + data.error; return; }
        if (data.map_html) {
            const blob = new Blob([data.map_html], { type: 'text/html' });
            const url = URL.createObjectURL(blob);
            document.getElementById('network-graph').innerHTML = `<iframe src="${url}" style="width:100%; height:100%; border:none;"></iframe>`;
        }
        let intel = '<div class="results" style="grid-template-columns: 1fr 1fr 1fr; gap:14px;">';
        intel += `<div class="result-card"><h3 class="card-title">OPEN PORTS</h3>${
            (data.ports || []).length
                ? data.ports.map(p => `<div class="row" style="font-family:var(--font-mono); font-size:0.84rem;"><span class="h-red mono">${p.port}</span><span>${p.service}</span></div>`).join('')
                : '<div class="dim">NO OPEN PORTS DETECTED</div>'
        }</div>`;
        intel += `<div class="result-card"><h3 class="card-title">GEO / WHOIS</h3>${
            renderDict({
                LOC: data.geoip && data.geoip.country ? `${data.geoip.country} (${data.geoip.countryCode})` : null,
                ISP: data.geoip && data.geoip.isp,
                ORG: data.geoip && data.geoip.org,
                REG: data.whois && data.whois.registrar,
                DATE: data.whois && data.whois.creation_date
            })
        }</div>`;
        intel += `<div class="result-card"><h3 class="card-title">DNS RECORDS</h3>${
            renderDict({
                MX: (data.dns && data.dns.MX || []).join(', ') || null,
                NS: (data.dns && data.dns.NS || []).join(', ') || null,
                A:  (data.dns && data.dns.A  || []).join(', ') || null,
                TXT: (data.dns && data.dns.TXT && data.dns.TXT.length) ? `${data.dns.TXT.length} records` : null
            })
        }</div></div>`;
        document.getElementById('network-ports').innerHTML = intel;
        document.getElementById('network-status').textContent = 'SCAN COMPLETE.';
        refreshFX(document.getElementById('network-ports'));
    } catch (e) {
        document.getElementById('network-status').textContent = 'NETWORK ERROR.';
    }
}

/* ============================================================
   DARK WEB
   ============================================================ */
async function scanDarkWeb() {
    const query = document.getElementById('dark-input').value.trim();
    if (!query) return;
    document.getElementById('dark-status').textContent = 'ROUTING THROUGH TOR GATEWAYS...';
    document.getElementById('dark-results').innerHTML = '<div class="mono h-amber" style="text-align:center;">DECYPHERING...</div>';
    try {
        const res = await fetch('/api/dark/search', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ query })
        });
        const data = await res.json();
        if (data.error) { document.getElementById('dark-results').innerHTML = `<div class="h-red">ERROR: ${data.error}</div>`; return; }
        if (!data.results.length) { document.getElementById('dark-results').innerHTML = '<div class="dim mono" style="text-align:center;">NO HIDDEN SERVICES FOUND.</div>'; return; }
        document.getElementById('dark-results').innerHTML = data.results.map(item => {
            const isRansom = (item.title || '').includes('Ransomware');
            return `
            <div class="result-card">
                <div class="spread" style="margin-bottom:8px;">
                    <h3 class="card-title h-red">${item.title}</h3>
                    <span class="status-badge ${isRansom ? 'critical' : 'high'}">${isRansom ? 'LEAK' : 'ONION'}</span>
                </div>
                <div class="dim mono" style="font-size:0.74rem;">${item.date || ''}</div>
                <div style="font-size:0.86rem; margin:8px 0;">${item.snippet || ''}</div>
                <a href="${item.link}" target="_blank" class="card-url">${item.link}</a>
            </div>`;
        }).join('');
        document.getElementById('dark-status').textContent = `FOUND ${data.count} ONION SERVICES.`;
        refreshFX(document.getElementById('dark-results'));
    } catch (e) { document.getElementById('dark-status').textContent = 'CONNECTION FAILURE.'; }
}

/* ============================================================
   CRYPTO
   ============================================================ */
async function scanCrypto() {
    const address = document.getElementById('crypto-input').value.trim();
    const coin = document.getElementById('crypto-type').value;
    if (!address) return;
    document.getElementById('crypto-status').textContent = 'SYNCING WITH DISTRIBUTED LEDGER...';
    document.getElementById('crypto-results').innerHTML = '<div class="mono h-cyan" style="text-align:center; padding:40px;">FETCHING BLOCKS...</div>';
    try {
        const res = await fetch('/api/crypto/analyze', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ address, coin })
        });
        const data = await res.json();
        if (data.error) { document.getElementById('crypto-status').textContent = 'ERROR: ' + data.error; document.getElementById('crypto-results').innerHTML = ''; return; }
        document.getElementById('crypto-results').innerHTML = `
        <div class="result-card" style="max-width:760px; margin:0 auto;">
            <div class="spread" style="margin-bottom:14px;">
                <h3 class="card-title h-amber">${data.coin.toUpperCase()} WALLET</h3>
                <span class="status-badge verified">ACTIVE</span>
            </div>
            <div class="results" style="grid-template-columns: 1fr 1fr; gap:14px;">
                <div><div class="dim mono" style="font-size:0.74rem;">BALANCE</div><div style="font-size:2rem; font-family:var(--font-display);">${data.balance}</div></div>
                <div><div class="dim mono" style="font-size:0.74rem;">TOTAL RECEIVED</div><div style="font-size:2rem; font-family:var(--font-display);">${data.total_received}</div></div>
                <div><div class="dim mono" style="font-size:0.74rem;">TRANSACTIONS</div><div style="font-size:1.4rem; font-family:var(--font-display);">${data.tx_count}</div></div>
                <div><div class="dim mono" style="font-size:0.74rem;">LAST ACTIVITY</div><div style="font-size:1.4rem; font-family:var(--font-display);">${data.last_seen}</div></div>
            </div>
            <div class="dim mono" style="margin-top:14px; word-break:break-all; font-size:0.78rem;">ADDR: ${data.address}</div>
        </div>`;
        document.getElementById('crypto-status').textContent = `ANALYSIS COMPLETE: ${data.coin.toUpperCase()}`;
        refreshFX(document.getElementById('crypto-results'));
    } catch (e) { document.getElementById('crypto-status').textContent = 'LEDGER SYNC FAILED.'; }
}

/* ============================================================
   SSL SENTINEL
   ============================================================ */
async function scanSSL() {
    const domain = document.getElementById('ssl-input').value.trim();
    if (!domain) return;
    document.getElementById('ssl-status').textContent = 'INITIATING SSL HANDSHAKE...';
    document.getElementById('ssl-results').innerHTML = '<div class="mono h-cyan" style="text-align:center; padding:40px;">DECODING CERTIFICATE CHAIN...</div>';
    try {
        const res = await fetch('/api/ssl/scan', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ domain })
        });
        const data = await res.json();
        if (data.error) { document.getElementById('ssl-status').textContent = 'SSL FAIL: ' + data.error; document.getElementById('ssl-results').innerHTML = ''; return; }
        document.getElementById('ssl-results').innerHTML = `
        <div class="result-card">
            <div class="spread" style="margin-bottom:12px;">
                <h3 class="card-title h-cyan">${data.domain}</h3>
                <span class="status-badge ${data.expired ? 'critical' : 'verified'}">${data.expired ? 'EXPIRED' : 'VALID'}</span>
            </div>
            <div class="results" style="grid-template-columns: 1fr 1fr; gap:14px;">
                <div>
                    <h4 class="h-cyan mono" style="margin:0 0 8px;">ISSUED BY</h4>
                    ${renderDict(data.issuer)}
                    <div class="dim mono" style="font-size:0.74rem; margin-top:10px;">VALIDITY</div>
                    <div class="mono" style="font-size:0.84rem;">${data.not_before} → ${data.not_after}</div>
                </div>
                <div>
                    <h4 class="h-cyan mono" style="margin:0 0 8px;">ISSUED TO</h4>
                    ${renderDict(data.subject)}
                </div>
            </div>
            <div style="margin-top:14px;">
                <h4 class="h-cyan mono" style="margin:0 0 8px;">SUBDOMAINS (SANs) [${(data.sans || []).length}]</h4>
                <div>${(data.sans || []).map(s => `<span class="tag">${s}</span>`).join('')}</div>
            </div>
        </div>`;
        document.getElementById('ssl-status').textContent = 'CERTIFICATE VERIFIED.';
        refreshFX(document.getElementById('ssl-results'));
    } catch (e) { document.getElementById('ssl-status').textContent = 'HANDSHAKE FAILED.'; }
}

/* ============================================================
   EXIF
   ============================================================ */
async function analyzeExif() {
    const url = document.getElementById('exif-input').value.trim();
    if (!url) return;
    document.getElementById('exif-status').textContent = 'DOWNLOADING RAW BYTES...';
    document.getElementById('exif-results').innerHTML = '<div class="mono h-cyan" style="text-align:center; padding:40px;">EXTRACTING METADATA LAYERS...</div>';
    try {
        const res = await fetch('/api/tools/exif', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ url })
        });
        renderExif(await res.json());
    } catch (e) { document.getElementById('exif-status').textContent = 'ANALYSIS ERROR.'; }
}

async function analyzeExifFile() {
    const fileInput = document.getElementById('exif-file');
    if (!fileInput.files.length) return;
    document.getElementById('exif-status').textContent = 'UPLOADING BITSTREAM...';
    document.getElementById('exif-results').innerHTML = '<div class="mono h-cyan" style="text-align:center; padding:40px;">EXTRACTING...</div>';
    const fd = new FormData(); fd.append('file', fileInput.files[0]);
    try {
        const res = await fetch('/api/tools/exif/upload', { method: 'POST', body: fd });
        renderExif(await res.json());
    } catch (e) { document.getElementById('exif-status').textContent = 'UPLOAD FAILED.'; }
}

function renderExif(data) {
    if (data.error) { document.getElementById('exif-status').textContent = 'EXTRACT FAIL: ' + data.error; document.getElementById('exif-results').innerHTML = ''; return; }
    document.getElementById('exif-status').textContent = 'METADATA REVEALED.';
    const gpsBlock = data.gps && Object.keys(data.gps).length
        ? `<h4 class="h-red mono" style="margin-top:14px;">GEOLOCATION DATA</h4>${renderDict(data.gps)}`
        : `<div class="dim mono" style="margin-top:14px;">[NO GPS DATA EMBEDDED]</div>`;
    document.getElementById('exif-results').innerHTML = `
    <div class="result-card">
        <div class="spread" style="margin-bottom:10px;">
            <h3 class="card-title">IMAGE METADATA</h3>
            <span class="status-badge info">EXIF</span>
        </div>
        <h4 class="h-cyan mono" style="margin:0 0 8px;">BASIC INFO</h4>
        ${renderDict(data.basic)}
        ${gpsBlock}
    </div>`;
    refreshFX(document.getElementById('exif-results'));
}

/* ============================================================
   DORKS
   ============================================================ */
async function generateDorks() {
    const target = document.getElementById('dork-target').value.trim();
    const domain = document.getElementById('dork-domain').value.trim();
    if (!target) return;
    try {
        const res = await fetch('/api/tools/dork', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ target, domain })
        });
        const data = await res.json();
        const sections = [
            { key: 'google', title: 'GOOGLE (EXTREME)', color: 'var(--cyan)', baseUrl: 'https://www.google.com/search?q=' },
            { key: 'shodan', title: 'SHODAN (INFRA)', color: 'var(--amber)', baseUrl: 'https://www.shodan.io/search?query=' },
            { key: 'github', title: 'GITHUB (LEAKS)', color: 'var(--violet)', baseUrl: 'https://github.com/search?type=Code&q=' }
        ];
        let html = '';
        for (const s of sections) {
            if (!data[s.key] || !data[s.key].length) continue;
            html += `<h3 class="panel-title" style="margin-top:14px; color:${s.color};">${s.title}</h3>`;
            html += data[s.key].map(d => `
            <div class="result-card">
                <h3 class="card-title">${d.title}</h3>
                <div class="mono" style="background:rgba(0,0,0,0.5); padding:10px; border-radius:6px; margin:8px 0; word-break:break-all; font-size:0.78rem; color:var(--cyan);">${d.query}</div>
                <button class="dork-btn" onclick="window.open('${s.baseUrl}${encodeURIComponent(d.query)}')">OPEN ${s.title.split(' ')[0]} ›</button>
            </div>`).join('');
        }
        document.getElementById('dork-results').innerHTML = html;
        document.getElementById('dork-status').textContent = 'ATTACK VECTORS GENERATED.';
        refreshFX(document.getElementById('dork-results'));
    } catch (e) { console.error(e); }
}

/* ============================================================
   GEOINT
   ============================================================ */
async function runGeoint() {
    const lat = document.getElementById('geo-lat').value.trim();
    const lon = document.getElementById('geo-lon').value.trim();
    if (!lat || !lon) return;
    document.getElementById('geo-status').textContent = 'TRIANGULATING POSITION...';
    document.getElementById('geo-results').innerHTML = '<div class="mono h-green" style="text-align:center; padding:40px;">ACQUIRING SATELLITE LOCK...</div>';
    try {
        const res = await fetch('/api/tools/geoint', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ lat, lon })
        });
        const data = await res.json();
        if (data.error) { document.getElementById('geo-status').textContent = data.error; document.getElementById('geo-results').innerHTML = ''; return; }
        const links = Object.entries(data.links || {}).map(([k, url]) => `
            <div class="result-card">
                <h3 class="card-title h-green">${k}</h3>
                <button class="dork-btn" style="background:rgba(0,255,140,0.15); color:var(--green); border-color:var(--green);" onclick="window.open('${url}')">LAUNCH VIEW ›</button>
            </div>`).join('');
        document.getElementById('geo-results').innerHTML = `<div class="results" style="grid-template-columns:1fr 1fr; gap:12px;">${links}</div>`;
        document.getElementById('geo-status').textContent = `TARGET ACQUIRED: ${data.coords}`;
        refreshFX(document.getElementById('geo-results'));
    } catch (e) { document.getElementById('geo-status').textContent = 'SATELLITE LINK FAILED.'; }
}

/* ============================================================
   SKY RADAR
   ============================================================ */
let flightMap = null;
async function scanSky() {
    const lat = document.getElementById('sky-lat').value.trim();
    const lon = document.getElementById('sky-lon').value.trim();
    const rad = document.getElementById('sky-rad').value.trim();
    if (!lat || !lon) return;
    document.getElementById('sky-status').textContent = 'SCANNING AIRSPACE...';
    document.getElementById('sky-results').innerHTML = '<div class="mono h-cyan" style="text-align:center;">READING TRANSPONDERS...</div>';
    if (!flightMap) {
        flightMap = L.map('sky-map').setView([lat, lon], 7);
        L.tileLayer('https://cartodb-basemaps-{s}.global.ssl.fastly.net/dark_all/{z}/{x}/{y}.png', {
            attribution: '&copy; OSM &copy; CartoDB', subdomains: 'abcd', maxZoom: 19
        }).addTo(flightMap);
    } else {
        flightMap.setView([lat, lon], 7);
        flightMap.eachLayer(layer => { if (layer instanceof L.Marker) flightMap.removeLayer(layer); });
    }
    L.marker([lat, lon]).addTo(flightMap).bindPopup('TARGET LOCATION').openPopup();

    try {
        const res = await fetch('/api/tools/flight', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ lat: parseFloat(lat), lon: parseFloat(lon), radius: parseFloat(rad) })
        });
        const data = await res.json();
        if (data.error || data.message) {
            document.getElementById('sky-status').textContent = 'SECTOR CLEAR or ERROR.';
            document.getElementById('sky-results').innerHTML = `<div class="dim mono" style="text-align:center;">${data.error || data.message}</div>`;
            return;
        }
        let listHtml = '';
        data.flights.forEach(f => {
            if (f.lat && f.lon) {
                const ico = `<div style="color:var(--cyan); font-size:20px; transform: rotate(${f.true_track || 0}deg); text-shadow:0 0 5px var(--cyan);">✈</div>`;
                const divIcon = L.divIcon({ html: ico, className: 'plane-icon', iconSize: [24, 24], popupAnchor: [0, -10] });
                L.marker([f.lat, f.lon], { icon: divIcon }).addTo(flightMap)
                    .bindPopup(`<strong style="color:var(--cyan)">${f.callsign || 'UNKNOWN'}</strong><br>${f.country}<br>Alt: ${f.alt}m | Vel: ${f.velocity}m/s`);
            }
            listHtml += `
            <div class="result-card" style="cursor:pointer; margin-bottom:8px;" onclick="focusMap(${f.lat}, ${f.lon}, '${f.callsign || ''}')">
                <div class="spread" style="margin-bottom:6px;">
                    <h3 class="card-title h-cyan">${f.callsign || 'UNK'}</h3>
                    <span class="tag">${(f.country || '').substring(0, 3).toUpperCase()}</span>
                </div>
                <div class="row mono" style="font-size:0.78rem; justify-content:space-between;">
                    <span class="dim">ALT: ${f.alt}m</span>
                    <span class="dim">VEL: ${f.velocity}m/s</span>
                </div>
            </div>`;
        });
        document.getElementById('sky-results').innerHTML = listHtml || '<div class="dim mono" style="text-align:center;">NO TARGETS IN RANGE</div>';
        document.getElementById('sky-status').textContent = `TRACKING ${data.count} AIRCRAFT.`;
    } catch (e) { document.getElementById('sky-status').textContent = 'RADAR MALFUNCTION.'; }
}

function focusMap(lat, lon, callsign) {
    if (flightMap) flightMap.setView([lat, lon], 11);
}

function updateSkyRegion() {
    const r = {
        uk: { lat: 51.5074, lon: -0.1278, rad: 300 },
        usa_east: { lat: 40.7128, lon: -74.0060, rad: 500 },
        usa_west: { lat: 34.0522, lon: -118.2437, rad: 500 },
        france: { lat: 48.8566, lon: 2.3522, rad: 300 },
        germany: { lat: 52.5200, lon: 13.4050, rad: 300 },
        russia: { lat: 55.7558, lon: 37.6173, rad: 400 },
        china: { lat: 31.2304, lon: 121.4737, rad: 500 },
        japan: { lat: 35.6762, lon: 139.6503, rad: 300 },
        dubai: { lat: 25.2048, lon: 55.2708, rad: 200 }
    };
    const sel = document.getElementById('sky-country').value;
    if (r[sel]) {
        document.getElementById('sky-lat').value = r[sel].lat;
        document.getElementById('sky-lon').value = r[sel].lon;
        document.getElementById('sky-rad').value = r[sel].rad;
    }
}

/* ============================================================
   SIGINT SWEEP
   ============================================================ */
async function scanSigint() {
    const query = document.getElementById('sigint-input').value.trim();
    if (!query) return;
    document.getElementById('sigint-status').textContent = 'INTERCEPTING TRANSMISSIONS...';
    document.getElementById('sigint-results').innerHTML = '<div class="mono h-cyan" style="text-align:center; padding:40px;">ANALYZING CHATTER...</div>';
    try {
        const res = await fetch('/api/sigint', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ query })
        });
        const data = await res.json();
        document.getElementById('sig-pos').textContent = data.sentiment_summary.POSITIVE;
        document.getElementById('sig-neu').textContent = data.sentiment_summary.NEUTRAL;
        document.getElementById('sig-neg').textContent = data.sentiment_summary.NEGATIVE;
        let html = '';
        data.feed.forEach(item => {
            const sentClass = item.sentiment === 'POSITIVE' ? 'verified' : item.sentiment === 'NEGATIVE' ? 'critical' : 'medium';
            html += `
            <div class="result-card" style="cursor:pointer;" onclick="window.open('${item.url}')">
                <div class="spread" style="margin-bottom:8px;">
                    <span class="tag">[${item.source.toUpperCase()}] ${item.outlet || item.subreddit || ''}</span>
                    <span class="dim mono" style="font-size:0.74rem;">${item.date || ''}</span>
                </div>
                <h3 class="card-title" style="font-family:var(--font-ui); font-weight:600;">${item.title}</h3>
                <div class="dim" style="font-size:0.86rem; margin:8px 0;">${item.snippet || ''}</div>
                <div class="row" style="gap:10px; margin-top:6px;">
                    <span class="status-badge ${sentClass}">${item.sentiment}</span>
                    ${item.score ? `<span class="dim mono" style="font-size:0.74rem;">SCORE: ${item.score}</span>` : ''}
                </div>
            </div>`;
        });
        document.getElementById('sigint-results').innerHTML = html || '<div class="dim mono" style="text-align:center;">NO RECENT INTEL CAPTURED.</div>';
        document.getElementById('sigint-status').textContent = `GATHERED ${data.total} INTELLIGENCE PACKETS.`;
        refreshFX(document.getElementById('sigint-results'));
    } catch (e) { document.getElementById('sigint-status').textContent = 'INTERCEPTION FAILURE.'; }
}

/* ============================================================
   SHADOW MAP
   ============================================================ */
async function scanShadow() {
    const target = document.getElementById('shadow-input').value.trim();
    if (!target) return;
    document.getElementById('shadow-status').textContent = 'TRACING SHADOW INFRASTRUCTURE...';
    document.getElementById('shadow-dashboard').classList.add('hide');
    try {
        const res = await fetch('/api/shadowmap', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ target })
        });
        const data = await res.json();
        const d = document.getElementById('shadow-dashboard');
        d.classList.remove('hide');
        d.style.display = 'grid';

        document.getElementById('shadow-score').textContent = data.threat_score;
        document.getElementById('shadow-level').textContent = data.threat_level;
        document.getElementById('shadow-level').className = 'status-badge ' + (
            data.threat_level === 'CRITICAL' ? 'critical' :
            data.threat_level === 'HIGH' ? 'high' :
            data.threat_level === 'MEDIUM' ? 'medium' :
            data.threat_level === 'LOW' ? 'low' : 'clean'
        );

        document.getElementById('shadow-factors').innerHTML = (data.threat_factors || [])
            .map(f => `<div class="result-card" style="padding:8px 12px; border-color:var(--red);">⚠ ${f}</div>`)
            .join('') || '<div class="dim mono">NO ACTIVE THREATS REPORTED.</div>';

        const abuse = data.abuseipdb;
        document.getElementById('shadow-abuse').innerHTML = `<h3 class="card-title h-amber">ABUSE IPDB</h3>${
            abuse && abuse.available ? renderDict({
                'CONFIDENCE': abuse.abuse_score + '%',
                'TOTAL REPORTS': abuse.total_reports,
                'ISP': abuse.isp || 'N/A',
                'USAGE': abuse.usage_type || 'N/A'
            }) : '<div class="dim">[NO DATA OR API KEY MISSING]</div>'
        }`;
        const vt = data.virustotal;
        document.getElementById('shadow-vt').innerHTML = `<h3 class="card-title h-green">VIRUSTOTAL</h3>${
            vt && vt.available ? renderDict({
                MALICIOUS: vt.malicious, SUSPICIOUS: vt.suspicious,
                REPUTATION: vt.reputation, 'TOTAL ENGINES': vt.total_engines
            }) : '<div class="dim">[NO DATA OR API KEY MISSING]</div>'
        }`;
        const geo = data.geo || data.ipinfo;
        document.getElementById('shadow-geo').innerHTML = `<h3 class="card-title h-cyan">TELEMETRY</h3>${
            geo && Object.keys(geo).length ? renderDict({
                IP: geo.ip, HOSTNAME: geo.hostname || 'None', CITY: geo.city,
                COUNTRY: geo.country, ORGANIZATION: geo.org
            }) : '<div class="dim">[UNABLE TO RESOLVE LOCATION]</div>'
        }`;
        document.getElementById('shadow-status').textContent = 'TRACE COMPLETE.';
        refreshFX(d);
    } catch (e) { document.getElementById('shadow-status').textContent = 'TRACE ABORTED.'; }
}

/* ============================================================
   ──── NEW V5 MODULES ─────────────────────────────────────────
   ============================================================ */

/* ---------- DOMAIN ORACLE ---------- */
async function scanOracle() {
    const domain = document.getElementById('oracle-input').value.trim();
    if (!domain) return;
    document.getElementById('oracle-status').textContent = 'INVOKING THE ORACLE...';
    document.getElementById('oracle-results').innerHTML = '<div class="mono h-cyan" style="text-align:center; padding:40px;">EXTRACTING DOMAIN INTELLIGENCE...</div>';
    try {
        const res = await fetch('/api/oracle', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ domain })
        });
        const data = await res.json();
        if (data.error) { document.getElementById('oracle-status').textContent = data.error; document.getElementById('oracle-results').innerHTML = ''; return; }

        const es = data.email_security || {};
        const http = data.http_security || {};
        const tls = data.tls || {};
        const rdap = data.rdap || {};

        const score = data.score || 0;
        const scoreLevel = score >= 80 ? 'verified' : score >= 60 ? 'low' : score >= 40 ? 'medium' : score >= 20 ? 'high' : 'critical';

        let html = `
        <div class="result-card">
            <div class="spread" style="margin-bottom:12px;">
                <h3 class="card-title h-cyan">${data.domain} · ${data.ip}</h3>
                <span class="status-badge ${scoreLevel}">HYGIENE ${score}/100</span>
            </div>
            <div class="score-shell" style="margin-bottom:12px;">
                <div class="score-meta"><span>SECURITY POSTURE</span><strong>${score}/100</strong></div>
                <div class="score-bar"><div class="score-fill" style="width:${score}%; background:var(--grad-ok);"></div></div>
            </div>
        </div>

        <div class="results" style="grid-template-columns: 1fr 1fr; gap:14px;">
            <div class="result-card">
                <h3 class="card-title">EMAIL SECURITY</h3>
                <div class="row" style="gap:6px; margin-bottom:8px;">
                    <span class="status-badge ${gradeBadgeClass(es.spf && es.spf.grade)}">SPF · ${es.spf && es.spf.grade || 'F'}</span>
                    <span class="status-badge ${gradeBadgeClass(es.dmarc && es.dmarc.grade)}">DMARC · ${es.dmarc && es.dmarc.grade || 'F'}</span>
                    <span class="status-badge ${gradeBadgeClass(es.dkim && es.dkim.grade)}">DKIM · ${es.dkim && es.dkim.grade || 'F'}</span>
                </div>
                ${es.spf && es.spf.present ? `<div class="dim mono" style="font-size:0.74rem;">SPF policy: ${es.spf.policy}</div>` : '<div class="h-red mono" style="font-size:0.74rem;">No SPF — domain is spoofable</div>'}
                ${es.dmarc && es.dmarc.present ? `<div class="dim mono" style="font-size:0.74rem;">DMARC policy: ${es.dmarc.policy}</div>` : '<div class="h-red mono" style="font-size:0.74rem;">No DMARC — no enforcement</div>'}
                ${es.dkim && es.dkim.present ? `<div class="dim mono" style="font-size:0.74rem;">DKIM selectors: ${es.dkim.selectors_found.join(', ')}</div>` : '<div class="dim mono" style="font-size:0.74rem;">No DKIM selectors auto-discovered</div>'}
            </div>
            <div class="result-card">
                <h3 class="card-title">HTTP SECURITY HEADERS</h3>
                <div class="row" style="gap:6px; margin-bottom:8px;">
                    <span class="status-badge ${gradeBadgeClass(http.grade)}">GRADE · ${http.grade || 'F'}</span>
                    <span class="tag">${http.https_reachable ? 'HTTPS OK' : 'NO HTTPS'}</span>
                </div>
                <div class="dim mono" style="font-size:0.74rem; margin-bottom:6px;">Server: ${http.server || '—'} · Powered: ${http.powered_by || '—'}</div>
                <div>${(http.missing || []).map(h => `<span class="tag hot">missing: ${h}</span>`).join('') || '<span class="tag ok">all headers present</span>'}</div>
            </div>
            <div class="result-card">
                <h3 class="card-title">REGISTRATION</h3>
                ${renderDict({
                    REGISTRAR: rdap.registrar,
                    CREATED: rdap.created,
                    EXPIRES: rdap.expires,
                    UPDATED: rdap.updated,
                    STATUS: (rdap.status || []).join(', ') || '—'
                })}
            </div>
            <div class="result-card">
                <h3 class="card-title">TLS</h3>
                ${tls.error ? `<div class="h-red mono">${tls.error}</div>` : renderDict({
                    VERSION: tls.tls_version, CIPHER: tls.cipher,
                    NOT_BEFORE: tls.not_before, NOT_AFTER: tls.not_after,
                    ISSUER_CN: tls.issuer && tls.issuer.commonName,
                    SUBJECT_CN: tls.subject && tls.subject.commonName
                })}
            </div>
        </div>

        <div class="result-card" style="margin-top:14px;">
            <h3 class="card-title">DNS RECORDS</h3>
            ${Object.entries(data.dns || {}).map(([k, v]) =>
                v && v.length ? `<div style="margin-bottom:6px;"><span class="tag">${k}</span> <span class="mono" style="font-size:0.78rem;">${v.join(', ').slice(0, 600)}</span></div>` : ''
            ).join('')}
        </div>

        <div class="result-card" style="margin-top:14px;">
            <h3 class="card-title">SUBDOMAINS (crt.sh) · ${(data.subdomains || []).length}</h3>
            <div style="max-height:200px; overflow-y:auto;">
                ${(data.subdomains || []).slice(0, 200).map(s => `<span class="tag">${s}</span>`).join('') || '<div class="dim">none discovered</div>'}
            </div>
        </div>

        ${data.neighbors && data.neighbors.length ? `
        <div class="result-card" style="margin-top:14px;">
            <h3 class="card-title">REVERSE-IP NEIGHBORS · ${data.neighbors.length}</h3>
            <div style="max-height:200px; overflow-y:auto;">
                ${data.neighbors.slice(0, 50).map(n => `<span class="tag">${n}</span>`).join('')}
            </div>
        </div>` : ''}
        `;
        document.getElementById('oracle-results').innerHTML = html;
        document.getElementById('oracle-status').textContent = 'ORACLE COMPLETE.';
        refreshFX(document.getElementById('oracle-results'));
    } catch (e) {
        console.error(e);
        document.getElementById('oracle-status').textContent = 'ORACLE CHANNEL CLOSED.';
    }
}

/* ---------- MAIL TRACER ---------- */
async function scanMail() {
    const email = document.getElementById('mail-input').value.trim();
    if (!email) return;
    document.getElementById('mail-status').textContent = 'TRACING MAIL INFRASTRUCTURE...';
    document.getElementById('mail-results').innerHTML = '<div class="mono h-cyan" style="text-align:center; padding:40px;">QUERYING DNS · GRAVATAR · DMARC...</div>';
    try {
        const res = await fetch('/api/mailtracer', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ email })
        });
        const data = await res.json();
        if (data.error) { document.getElementById('mail-status').textContent = data.error; document.getElementById('mail-results').innerHTML = ''; return; }
        const level = data.trust_score >= 80 ? 'verified' : data.trust_score >= 60 ? 'low' : data.trust_score >= 40 ? 'medium' : 'critical';
        const es = data.email_security || {};
        document.getElementById('mail-results').innerHTML = `
        <div class="result-card">
            <div class="spread" style="margin-bottom:12px;">
                <h3 class="card-title h-cyan">${data.email}</h3>
                <span class="status-badge ${level}">${data.trust_level} · ${data.trust_score}/100</span>
            </div>
            <div class="score-shell" style="margin-bottom:14px;">
                <div class="score-meta"><span>TRUST SCORE</span><strong>${data.trust_score}/100</strong></div>
                <div class="score-bar"><div class="score-fill" style="width:${data.trust_score}%; background:var(--grad-ok);"></div></div>
            </div>
            <div class="row" style="gap:6px; margin-bottom:12px;">
                <span class="tag ${data.flags.deliverable ? 'ok' : 'hot'}">${data.flags.deliverable ? 'DELIVERABLE' : 'NO MX'}</span>
                ${data.flags.disposable ? '<span class="tag hot">DISPOSABLE</span>' : ''}
                ${data.flags.role_based ? '<span class="tag warn">ROLE-BASED</span>' : ''}
                ${data.flags.free_provider ? '<span class="tag">FREE PROVIDER</span>' : ''}
            </div>
            <div class="row" style="gap:6px; margin-bottom:14px;">
                <span class="status-badge ${gradeBadgeClass(es.spf && es.spf.grade)}">SPF · ${es.spf && es.spf.grade || 'F'}</span>
                <span class="status-badge ${gradeBadgeClass(es.dmarc && es.dmarc.grade)}">DMARC · ${es.dmarc && es.dmarc.grade || 'F'}</span>
            </div>
            ${data.gravatar && data.gravatar.exists ? `<div class="row" style="margin-bottom:12px; align-items:center;">
                <img src="${data.gravatar.url}" style="width:64px; height:64px; border-radius:50%; border:1px solid var(--cyan);">
                <span class="dim mono">Gravatar identity bound</span>
            </div>` : ''}
            <div>
                <h4 class="mono dim" style="margin:0 0 6px;">MX RECORDS</h4>
                ${(data.mx || []).map(m => `<span class="tag">${m}</span>`).join('') || '<span class="tag hot">none</span>'}
            </div>
            <div style="margin-top:14px;">
                <h4 class="mono dim" style="margin:0 0 6px;">SIGNAL FACTORS</h4>
                ${data.factors.map(f => `<div class="dim mono" style="font-size:0.78rem;">• ${f}</div>`).join('')}
            </div>
        </div>`;
        document.getElementById('mail-status').textContent = 'TRACE COMPLETE.';
        refreshFX(document.getElementById('mail-results'));
    } catch (e) {
        document.getElementById('mail-status').textContent = 'MAIL TRACER FAILED.';
    }
}

/* ---------- CODE HUNTER ---------- */
async function scanCode() {
    const username = document.getElementById('code-input').value.trim();
    if (!username) return;
    document.getElementById('code-status').textContent = 'PROBING GITHUB...';
    document.getElementById('code-results').innerHTML = '<div class="mono h-cyan" style="text-align:center; padding:40px;">QUERYING GITHUB API...</div>';
    try {
        const res = await fetch('/api/codehunter', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ username })
        });
        const data = await res.json();
        if (data.error) { document.getElementById('code-status').textContent = data.error; document.getElementById('code-results').innerHTML = ''; return; }

        const maxLang = Math.max(1, ...(data.languages || []).map(l => l.count));
        const maxHour = Math.max(1, ...(data.activity?.hourly_utc || [1]));

        document.getElementById('code-results').innerHTML = `
        <div class="result-card">
            <div class="row" style="align-items:flex-start; gap:16px;">
                <img src="${data.avatar}" style="width:96px; height:96px; border-radius:50%; border:2px solid var(--cyan); box-shadow:0 0 20px rgba(0,240,255,0.5);">
                <div style="flex:1;">
                    <div class="spread" style="margin-bottom:6px;">
                        <h3 class="card-title h-cyan">${data.name || data.login} · <span class="dim">@${data.login}</span></h3>
                        <span class="status-badge verified">INFLUENCE ${data.influence_score}</span>
                    </div>
                    <div class="dim" style="font-size:0.86rem; margin-bottom:8px;">${data.bio || ''}</div>
                    <div class="row" style="gap:6px; flex-wrap:wrap;">
                        ${data.company ? `<span class="tag">🏢 ${data.company}</span>` : ''}
                        ${data.location ? `<span class="tag">📍 ${data.location}</span>` : ''}
                        ${data.blog ? `<span class="tag">🔗 <a href="${data.blog}" target="_blank" style="color:inherit; text-decoration:none;">${data.blog}</a></span>` : ''}
                        ${data.twitter ? `<span class="tag">🐦 ${data.twitter}</span>` : ''}
                        ${data.email_public ? `<span class="tag hot">📧 ${data.email_public}</span>` : ''}
                    </div>
                </div>
            </div>
            <div class="row" style="margin-top:14px; gap:18px; flex-wrap:wrap;">
                <div><div class="dim mono" style="font-size:0.7rem;">FOLLOWERS</div><div style="font-size:1.4rem; font-family:var(--font-display);">${data.followers}</div></div>
                <div><div class="dim mono" style="font-size:0.7rem;">FOLLOWING</div><div style="font-size:1.4rem; font-family:var(--font-display);">${data.following}</div></div>
                <div><div class="dim mono" style="font-size:0.7rem;">REPOS</div><div style="font-size:1.4rem; font-family:var(--font-display);">${data.public_repos}</div></div>
                <div><div class="dim mono" style="font-size:0.7rem;">⭐ STARS</div><div style="font-size:1.4rem; font-family:var(--font-display);">${data.total_stars}</div></div>
                <div><div class="dim mono" style="font-size:0.7rem;">GISTS</div><div style="font-size:1.4rem; font-family:var(--font-display);">${data.gist_count}</div></div>
                <div><div class="dim mono" style="font-size:0.7rem;">CREATED</div><div class="mono" style="font-size:0.86rem;">${(data.created_at || '').split('T')[0]}</div></div>
            </div>
        </div>

        ${(data.commit_emails && data.commit_emails.length) ? `
        <div class="result-card" style="margin-top:14px;">
            <h3 class="card-title h-red">COMMIT EMAILS HARVESTED · ${data.commit_emails.length}</h3>
            ${data.commit_emails.map(e => `<div class="row" style="justify-content:space-between; padding:4px 0;"><span class="mono">${e.email}</span><span class="tag hot">${e.count}×</span></div>`).join('')}
        </div>` : ''}

        <div class="results" style="grid-template-columns: 1fr 1fr; gap:14px; margin-top:14px;">
            <div class="result-card">
                <h3 class="card-title">LANGUAGES</h3>
                ${(data.languages || []).map(l => `
                    <div style="margin-bottom:6px;">
                        <div class="row" style="justify-content:space-between; font-size:0.78rem;"><span>${l.name}</span><span class="dim mono">${l.count}</span></div>
                        <div class="mini-bar"><div style="width:${(l.count / maxLang) * 100}%;"></div></div>
                    </div>`).join('') || '<div class="dim">No languages</div>'}
            </div>
            <div class="result-card">
                <h3 class="card-title">ACTIVITY · HOURLY (UTC)</h3>
                <div class="row" style="gap:2px; align-items:flex-end; height:80px; margin-bottom:6px;">
                    ${(data.activity?.hourly_utc || []).map(h => `<div style="flex:1; background:var(--grad-cool); height:${(h / maxHour) * 100}%; min-height:2px; border-radius:2px;" title="${h} events"></div>`).join('')}
                </div>
                <div class="row dim mono" style="font-size:0.66rem; justify-content:space-between;"><span>00h</span><span>12h</span><span>23h</span></div>
            </div>
        </div>

        <div class="result-card" style="margin-top:14px;">
            <h3 class="card-title">TOP REPOSITORIES</h3>
            <div class="results" style="grid-template-columns: repeat(auto-fill, minmax(260px, 1fr)); gap:10px;">
                ${(data.top_repos || []).map(r => `
                <div class="result-card" style="border-color:rgba(0,240,255,0.25);">
                    <div class="spread" style="margin-bottom:6px;">
                        <a href="${r.url}" target="_blank" class="card-url" style="margin:0;">${r.name}</a>
                        <span class="tag">⭐ ${r.stars}</span>
                    </div>
                    <div class="dim" style="font-size:0.78rem; margin-bottom:6px;">${r.description || ''}</div>
                    <div class="row" style="gap:6px;">${r.language ? `<span class="tag">${r.language}</span>` : ''}${r.fork ? '<span class="tag warn">FORK</span>' : ''}</div>
                </div>`).join('')}
            </div>
        </div>

        ${(data.orgs && data.orgs.length) ? `
        <div class="result-card" style="margin-top:14px;">
            <h3 class="card-title">ORGANIZATIONS</h3>
            <div>${data.orgs.map(o => `<span class="tag">${o.login}</span>`).join('')}</div>
        </div>` : ''}
        `;
        document.getElementById('code-status').textContent = 'HUNT COMPLETE.';
        refreshFX(document.getElementById('code-results'));
    } catch (e) {
        document.getElementById('code-status').textContent = 'GITHUB QUERY FAILED.';
    }
}

/* ---------- WAYBACK SPECTRE ---------- */
async function scanWayback() {
    const target = document.getElementById('wayback-input').value.trim();
    if (!target) return;
    document.getElementById('wayback-status').textContent = 'SUMMONING WAYBACK MACHINE...';
    document.getElementById('wayback-results').innerHTML = '<div class="mono h-cyan" style="text-align:center; padding:40px;">TRAVERSING ARCHIVED TIMELINE...</div>';
    try {
        const res = await fetch('/api/wayback', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ target })
        });
        const data = await res.json();
        if (data.error) { document.getElementById('wayback-status').textContent = data.error; document.getElementById('wayback-results').innerHTML = ''; return; }
        if (!data.total_snapshots) {
            document.getElementById('wayback-results').innerHTML = `<div class="result-card" style="text-align:center;"><h3 class="card-title dim">NO SNAPSHOTS</h3><div class="dim">${data.message || 'Wayback Machine has no records.'}</div></div>`;
            document.getElementById('wayback-status').textContent = 'TIMELINE EMPTY.';
            return;
        }
        const maxY = Math.max(...data.yearly.map(y => y.count), 1);

        document.getElementById('wayback-results').innerHTML = `
        <div class="result-card">
            <div class="spread" style="margin-bottom:12px;">
                <h3 class="card-title h-cyan">${data.target}</h3>
                <span class="status-badge info">${data.total_snapshots.toLocaleString()} SNAPSHOTS</span>
            </div>
            <div class="row" style="gap:18px; flex-wrap:wrap;">
                <div><div class="dim mono" style="font-size:0.7rem;">FIRST SEEN</div><div class="mono">${data.first_seen}</div></div>
                <div><div class="dim mono" style="font-size:0.7rem;">LAST SEEN</div><div class="mono">${data.last_seen}</div></div>
                <div><div class="dim mono" style="font-size:0.7rem;">SENSITIVE PATHS</div><div class="mono h-red" style="font-size:1.2rem;">${data.sensitive_count}</div></div>
            </div>
        </div>

        <div class="result-card" style="margin-top:14px;">
            <h3 class="card-title">YEARLY DISTRIBUTION</h3>
            <div class="row" style="gap:4px; align-items:flex-end; height:120px; margin-bottom:6px;">
                ${data.yearly.map(y => `<div style="flex:1; background:var(--grad-cool); height:${(y.count / maxY) * 100}%; min-height:3px; border-radius:3px;" title="${y.year}: ${y.count}"></div>`).join('')}
            </div>
            <div class="row dim mono" style="font-size:0.66rem; justify-content:space-between;">
                <span>${data.yearly[0].year}</span><span>${data.yearly[data.yearly.length - 1].year}</span>
            </div>
        </div>

        ${data.sensitive.length ? `
        <div class="result-card" style="margin-top:14px;">
            <h3 class="card-title h-red">⚠ SENSITIVE PATHS DISCOVERED · ${data.sensitive.length}</h3>
            ${data.sensitive.map(s => `
                <div class="row" style="justify-content:space-between; padding:6px 0; border-bottom:1px solid rgba(255,255,255,0.04);">
                    <div style="flex:1;">
                        <span class="tag hot">${s.pattern}</span>
                        <a href="${s.snapshot}" target="_blank" class="card-url" style="margin:4px 0;">${s.url}</a>
                    </div>
                    <span class="dim mono" style="font-size:0.74rem;">${s.timestamp}</span>
                </div>`).join('')}
        </div>` : ''}

        <div class="result-card" style="margin-top:14px;">
            <h3 class="card-title">SAMPLE SNAPSHOTS · ${data.sample.length}</h3>
            ${data.sample.slice(0, 25).map(s => `
                <div class="row" style="justify-content:space-between; padding:4px 0; font-size:0.78rem;">
                    <a href="${s.snapshot}" target="_blank" class="card-url" style="margin:0; flex:1;">${s.url}</a>
                    <span class="dim mono" style="font-size:0.72rem;">${s.timestamp}</span>
                </div>`).join('')}
        </div>`;
        document.getElementById('wayback-status').textContent = `TIMELINE TRAVERSED · ${data.total_snapshots} CAPTURES.`;
        refreshFX(document.getElementById('wayback-results'));
    } catch (e) {
        document.getElementById('wayback-status').textContent = 'TIME-MACHINE OFFLINE.';
    }
}

/* ---------- PASTE DRAGNET ---------- */
async function scanPaste() {
    const query = document.getElementById('paste-input').value.trim();
    if (!query) return;
    document.getElementById('paste-status').textContent = 'DEPLOYING DRAGNET ACROSS PASTE NETWORKS...';
    document.getElementById('paste-results').innerHTML = '<div class="mono h-cyan" style="text-align:center; padding:40px;">SCRAPING DUMP SITES...</div>';
    document.getElementById('paste-summary').innerHTML = '';
    try {
        const res = await fetch('/api/paste', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ query })
        });
        const data = await res.json();
        if (data.error) { document.getElementById('paste-status').textContent = data.error; document.getElementById('paste-results').innerHTML = ''; return; }
        const sites = Object.entries(data.per_site || {});
        document.getElementById('paste-summary').innerHTML = `
        <div class="result-card" style="margin-bottom:14px;">
            <h3 class="card-title">DRAGNET REPORT · ${data.total_hits} TOTAL HITS</h3>
            <div class="row" style="gap:6px; flex-wrap:wrap; margin-top:8px;">
                ${sites.map(([site, count]) => `<span class="tag ${count > 0 ? 'hot' : ''}">${site}: ${count}</span>`).join('')}
            </div>
        </div>`;
        if (!data.results.length) {
            document.getElementById('paste-results').innerHTML = '<div class="result-card" style="text-align:center;"><h3 class="card-title dim">CLEAN</h3><div class="dim">No paste-site references found.</div></div>';
        } else {
            document.getElementById('paste-results').innerHTML = data.results.map(r => `
            <div class="result-card">
                <div class="spread" style="margin-bottom:8px;">
                    <h3 class="card-title">${r.title || '(no title)'}</h3>
                    <span class="status-badge ${r.severity === 'CRITICAL' ? 'critical' : 'low'}">${r.severity}</span>
                </div>
                <div class="row" style="gap:6px; margin-bottom:6px;"><span class="tag">${r.site}</span></div>
                <div class="dim" style="font-size:0.84rem; margin-bottom:8px;">${r.snippet || ''}</div>
                <a href="${r.url}" target="_blank" class="card-url">${r.url}</a>
            </div>`).join('');
        }
        document.getElementById('paste-status').textContent = `DRAGNET COMPLETE · ${data.total_hits} HITS.`;
        refreshFX(document.getElementById('paste-results'));
    } catch (e) {
        document.getElementById('paste-status').textContent = 'DRAGNET FAILED.';
    }
}

/* ---------- AI ANALYST ---------- */
async function runAnalyst() {
    const target = document.getElementById('analyst-input').value.trim();
    const mode = document.getElementById('analyst-mode').value;
    if (!target) return;
    document.getElementById('analyst-status').textContent = 'ORCHESTRATING MODULES — THIS MAY TAKE 30-60s...';
    document.getElementById('analyst-summary').classList.add('hide');
    document.getElementById('analyst-findings').classList.add('hide');
    document.getElementById('analyst-modules').classList.add('hide');
    try {
        const res = await fetch('/api/analyst', {
            method: 'POST', headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify({ target, mode })
        });
        const data = await res.json();
        if (data.error) { document.getElementById('analyst-status').textContent = data.error; return; }

        const verdictClass = data.verdict === 'CRITICAL' ? 'critical' : data.verdict === 'HIGH' ? 'high' : data.verdict === 'MODERATE' ? 'medium' : 'low';

        const summary = document.getElementById('analyst-summary');
        summary.classList.remove('hide');
        summary.innerHTML = `
        <div class="hud-panel reveal" style="margin-top:14px;">
            <span class="bracket tl"></span><span class="bracket tr"></span>
            <span class="bracket bl"></span><span class="bracket br"></span>
            <div class="spread" style="margin-bottom:12px;">
                <div>
                    <div class="panel-title" style="margin:0;">UNIFIED THREAT PROFILE</div>
                    <div class="dim mono" style="font-size:0.74rem; margin-top:6px;">${data.target} · detected as <span class="h-cyan">${data.detected_type}</span></div>
                </div>
                <span class="status-badge ${verdictClass}" style="font-size:0.78rem; padding:6px 14px;">${data.verdict} · ${data.risk_score}/100</span>
            </div>
            <div class="score-shell">
                <div class="score-meta"><span>AGGREGATE RISK</span><strong>${data.risk_score}/100</strong></div>
                <div class="score-bar"><div class="score-fill" style="width:${data.risk_score}%;"></div></div>
            </div>
            <div class="row" style="gap:6px; margin-top:12px; flex-wrap:wrap;">
                ${(data.modules_run || []).map(m => `<span class="tag ok">✓ ${m}</span>`).join('')}
            </div>
        </div>`;

        const findings = document.getElementById('analyst-findings');
        findings.classList.remove('hide');
        findings.innerHTML = `
        <div class="hud-panel reveal" style="margin-top:14px;">
            <div class="panel-title">SIGNAL FINDINGS</div>
            ${(data.findings || []).map((f, i) => `<div class="result-card" style="margin-bottom:8px;"><div class="row" style="gap:10px;"><span class="tag">${String(i + 1).padStart(2, '0')}</span><span>${f}</span></div></div>`).join('')}
        </div>`;

        const modules = document.getElementById('analyst-modules');
        modules.classList.remove('hide');
        modules.innerHTML = `
        <div class="hud-panel reveal" style="margin-top:14px;">
            <div class="panel-title">MODULE PAYLOADS (RAW)</div>
            ${Object.entries(data.raw || {}).map(([name, payload]) => `
                <details class="result-card" style="margin-bottom:8px;">
                    <summary class="card-title" style="cursor:pointer;">${name} ${payload && payload.error ? '<span class="status-badge critical" style="margin-left:8px;">ERROR</span>' : '<span class="status-badge verified" style="margin-left:8px;">OK</span>'}</summary>
                    <pre class="mono dim" style="margin-top:10px; max-height:300px; overflow:auto; font-size:0.72rem; padding:10px; background:rgba(0,0,0,0.4); border-radius:6px;">${JSON.stringify(payload, null, 2)}</pre>
                </details>`).join('')}
        </div>`;
        document.getElementById('analyst-status').textContent = `SYNTHESIS COMPLETE · ${data.verdict}`;
        refreshFX(summary); refreshFX(findings); refreshFX(modules);
    } catch (e) {
        console.error(e);
        document.getElementById('analyst-status').textContent = 'ANALYST OFFLINE.';
    }
}

</script>
</body>
</html>


================================================
FILE: the_big_brother/image_grabber.py
================================================
from duckduckgo_search import DDGS
from playwright.sync_api import sync_playwright
import time
import random

def fetch_images_google_playwright(query: str, limit: int = 3, headless: bool = True) -> list[str]:
    """Fallback: Fetch images using Playwright (Google Images)"""
    print(f"   [+] Attempting Google Images for {query}...")
    try:
        with sync_playwright() as p:
            browser = p.chromium.launch(headless=headless)
            context = browser.new_context(
                user_agent="Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36",
                viewport={"width": 1920, "height": 1080},
                locale="en-US"
            )
            page = context.new_page()
            
            # Google Images Search with SafeSearch OFF
            page.goto(f"https://www.google.com/search?tbm=isch&q={query}&safe=off", timeout=15000)
            
            # Human-like delay
            time.sleep(random.uniform(1.5, 3.0))

            # Accept cookies if needed
            try:
                page.click("button:has-text('Reject all')", timeout=2000)
            except: pass

            images = page.evaluate("""() => {
                const imgs = Array.from(document.querySelectorAll('img'));
                return imgs
                    .map(img => img.src || img.getAttribute('data-src'))
                    .filter(src => src && src.startsWith('http') && src.length > 50 && !src.includes('googleg') && !src.includes('.svg')) 
                    .slice(0, 5);
            }""")
            browser.close()
            return images[:limit]
    except Exception as e:
        print(f"   [-] Google Playwright error: {e}")
        return []

def fetch_images_bing_playwright(query: str, limit: int = 3, headless: bool = True) -> list[str]:
    """Fallback: Fetch images using Playwright (Bing Images)"""
    print(f"   [+] Attempting Bing Images for {query}...")
    try:
        with sync_playwright() as p:
            browser = p.chromium.launch(headless=headless)
            context = browser.new_context(
                user_agent="Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.1 Safari/605.1.15",
                viewport={"width": 1920, "height": 1080}
            )
            page = context.new_page()
            
            # Bing Images with SafeSearch OFF
            page.goto(f"https://www.bing.com/images/search?q={query}&adlt=off", timeout=15000)
            time.sleep(random.uniform(1.0, 2.5))
            
            images = page.evaluate("""() => {
                const imgs = Array.from(document.querySelectorAll('.mimg'));
                return imgs
                    .map(img => img.src || img.getAttribute('data-src'))
                    .filter(src => src && src.startsWith('http'))
                    .slice(0, 5);
            }""")
            browser.close()
            return images[:limit]
    except Exception as e:
        print(f"   [-] Bing Playwright error: {e}")
        return []

def fetch_images(query: str, limit: int = 3) -> list[str]:
    """
    Robust Multi-Engine Image Fetcher.
    Strategy: DDGS (Fast) -> Bing (Medium) -> Google (Slow/Fallback).
    """
    print(f"[*] Starting Image Search for: {query}")
    return fetch_images_with_diag(query, limit)[0]


def fetch_images_with_diag(query: str, limit: int = 3):
    """
    Same as fetch_images but also returns a diagnostic string describing
    which engines were tried and how each failed. Returns (results, diag).
    """
    diag_parts: list[str] = []

    # 1. DuckDuckGo (no browser needed)
    try:
        print("   [+] Attempting DuckDuckGo...")
        time.sleep(random.uniform(0.5, 1.5))
        with DDGS() as ddgs:
            ddgs_images = list(ddgs.images(query, max_results=max(limit, 8)))
            results = [r['image'] for r in ddgs_images if 'image' in r]
            if results:
                print(f"   [+] DDGS Success: Found {len(results)} images.")
                return results[:limit], "DDGS:ok"
            diag_parts.append("DDGS:empty")
    except Exception as e:
        msg = str(e).splitlines()[0][:160]
        print(f"   [-] DDGS Failed ({msg}). Moving to next engine.")
        diag_parts.append(f"DDGS:err({_short_err(msg)})")

    # 2. Bing (Playwright)
    try:
        results = fetch_images_bing_playwright(query, limit)
        if results:
            print(f"   [+] Bing Success: Found {len(results)} images.")
            return results, "Bing:ok"
        diag_parts.append("Bing:empty")
    except Exception as e:
        diag_parts.append(f"Bing:err({_short_err(str(e))})")

    # 3. Google (Playwright)
    try:
        results = fetch_images_google_playwright(query, limit)
        if results:
            print(f"   [+] Google Success: Found {len(results)} images.")
            return results, "Google:ok"
        diag_parts.append("Google:empty")
    except Exception as e:
        diag_parts.append(f"Google:err({_short_err(str(e))})")

    print("   [!] All image fetch methods failed.")
    return [], " · ".join(diag_parts)


def _short_err(msg: str) -> str:
    """Map common low-level error strings to human-readable tags."""
    s = (msg or "").lower()
    if "executable doesn't exist" in s or "chromium" in s and "install" in s:
        return "playwright-chromium-missing (run: playwright install chromium)"
    if "ratelimit" in s or "rate-limit" in s or "202 ratelimit" in s or "too many" in s:
        return "rate-limited"
    if "timeout" in s:
        return "timeout"
    if "executable" in s and "doesn't exist" in s:
        return "browser-missing"
    return (msg[:80] + "...") if len(msg) > 80 else msg

if __name__ == "__main__":
    print(fetch_images("chadi0x"))


================================================
FILE: the_big_brother/modules/__init__.py
================================================


================================================
FILE: the_big_brother/modules/ai_analyst.py
================================================
"""
AI ANALYST — Cross-module orchestrator.
Takes a single target + auto-detected type, fans out to the relevant modules
in parallel, and synthesizes a unified threat profile with a 0-100 score and
narrative bullets. Pure heuristic synthesis — no external LLM required.
"""
import asyncio
import re

from the_big_brother.modules.phantom_id import phantom_id_search
from the_big_brother.modules.breach_vault import breach_vault_search
from the_big_brother.modules.sigint_sweep import sigint_sweep
from the_big_brother.modules.shadow_map import shadow_map_analyze
from the_big_brother.modules.domain_oracle import domain_oracle
from the_big_brother.modules.mail_tracer import mail_tracer
from the_big_brother.modules.code_hunter import code_hunter
from the_big_brother.modules.wayback_spectre import wayback_spectre
from the_big_brother.modules.paste_dragnet import paste_dragnet
from the_big_brother.modules.digital_footprint import run_holehe


EMAIL_RE = re.compile(r"^[^\s@]+@[^\s@]+\.[^\s@]+$")
DOMAIN_RE = re.compile(r"^[a-z0-9.-]+\.[a-z]{2,}$", re.IGNORECASE)
IP_RE = re.compile(r"^\d{1,3}(?:\.\d{1,3}){3}$")
USERNAME_RE = re.compile(r"^@?[a-z0-9_.-]{2,32}$", re.IGNORECASE)


def detect_type(target: str) -> str:
    t = target.strip()
    if EMAIL_RE.match(t):
        return "email"
    if IP_RE.match(t):
        return "ip"
    if DOMAIN_RE.match(t):
        return "domain"
    if USERNAME_RE.match(t):
        return "username"
    return "unknown"


async def _safe(coro, label):
    try:
        return label, await coro
    except Exception as e:
        return label, {"error": str(e)}


async def ai_analyst(target: str, mode: str = "auto") -> dict:
    target = target.strip()
    if not target:
        return {"error": "target required"}

    detected = detect_type(target) if mode == "auto" else mode
    if detected == "unknown":
        return {"error": "Could not classify target. Try email, domain, IP, or username."}

    plan = {
        "email": ["mail_tracer", "breach", "holehe", "paste"],
        "username": ["phantom", "code_hunter", "paste"],
        "domain": ["domain_oracle", "shadow_map", "wayback", "sigint", "paste"],
        "ip": ["shadow_map"],
    }[detected]

    coros = []
    if "phantom" in plan:
        coros.append(_safe(phantom_id_search(target.lstrip("@")), "phantom"))
    if "breach" in plan:
        coros.append(_safe(breach_vault_search(target, "email"), "breach"))
    if "holehe" in plan:
        coros.append(_safe(run_holehe(target), "holehe"))
    if "shadow_map" in plan:
        coros.append(_safe(shadow_map_analyze(target), "shadow_map"))
    if "domain_oracle" in plan:
        coros.append(_safe(domain_oracle(target), "domain_oracle"))
    if "mail_tracer" in plan:
        coros.append(_safe(mail_tracer(target), "mail_tracer"))
    if "code_hunter" in plan:
        coros.append(_safe(code_hunter(target.lstrip("@")), "code_hunter"))
    if "wayback" in plan:
        coros.append(_safe(wayback_spectre(target), "wayback"))
    if "sigint" in plan:
        coros.append(_safe(sigint_sweep(target), "sigint"))
    if "paste" in plan:
        coros.append(_safe(paste_dragnet(target), "paste"))

    results = dict(await asyncio.gather(*coros))

    findings = []
    score = 0

    p = results.get("phantom") or {}
    if p.get("found"):
        findings.append(f"Found on {p.get('found')}/{p.get('total_checked')} platforms — risk {p.get('risk_score')}")
        score += min(30, p.get("risk_score", 0) // 3)

    b = results.get("breach") or {}
    if b.get("breach_count"):
        findings.append(f"Exposed in {b.get('breach_count')} breaches · {b.get('total_records_exposed', 0):,} records")
        score += min(35, b.get("breach_count", 0) * 4)
    if b.get("pwned"):
        findings.append(f"Password seen {b.get('count', 0):,} times in HaveIBeenPwned")
        score += 30

    s = results.get("shadow_map") or {}
    if s.get("threat_score"):
        findings.append(f"Threat score {s.get('threat_score')} · {s.get('threat_level')}")
        score += min(30, s.get("threat_score", 0) // 3)

    d = results.get("domain_oracle") or {}
    if d.get("score") is not None:
        findings.append(f"Domain hygiene {d.get('score')}/100 — SPF/DMARC/DKIM/headers averaged")
        score += max(0, (100 - d.get("score", 100)) // 4)

    m = results.get("mail_tracer") or {}
    if m.get("trust_level"):
        findings.append(f"Email trust: {m.get('trust_level')} ({m.get('trust_score')}/100)")
        if m.get("flags", {}).get("disposable"):
            score += 15
        if not m.get("flags", {}).get("deliverable"):
            score += 10

    h = results.get("holehe") or {}
    if isinstance(h, dict) and h.get("found_on"):
        findings.append(f"Email registered on {len(h.get('found_on'))} platforms")
        score += min(15, len(h.get("found_on")) * 2)

    c = results.get("code_hunter") or {}
    if c.get("login") and c.get("public_repos"):
        findings.append(f"GitHub: {c.get('public_repos')} repos · {c.get('total_stars', 0)} stars · {len(c.get('commit_emails', []))} commit emails harvested")
        if c.get("commit_emails"):
            score += 10

    w = results.get("wayback") or {}
    if w.get("total_snapshots"):
        findings.append(f"Wayback: {w.get('total_snapshots'):,} snapshots · {w.get('sensitive_count', 0)} sensitive paths flagged")
        score += min(20, w.get("sensitive_count", 0))

    pst = results.get("paste") or {}
    if pst.get("total_hits"):
        critical = sum(1 for r in pst.get("results", []) if r.get("severity") == "CRITICAL")
        findings.append(f"Pastes: {pst.get('total_hits')} hits ({critical} flagged critical)")
        score += min(25, critical * 5)

    sig = results.get("sigint") or {}
    if sig.get("total"):
        findings.append(f"Sigint: {sig.get('total')} mentions across feeds")

    score = max(0, min(100, score))
    verdict = (
        "CRITICAL" if score >= 75 else
        "HIGH" if score >= 50 else
        "MODERATE" if score >= 25 else
        "LOW"
    )

    if not findings:
        findings.append("No notable signals detected across configured modules.")

    return {
        "target": target,
        "detected_type": detected,
        "modules_run": list(results.keys()),
        "risk_score": score,
        "verdict": verdict,
        "findings": findings,
        "raw": results,
    }


================================================
FILE: the_big_brother/modules/breach_vault.py
================================================
"""
BREACH VAULT — Data breach checker.
Uses HaveIBeenPwned v3 k-anonymity API (no API key needed for passwords,
breaches endpoint uses public API). Also checks paste aggregators.
"""

import asyncio
import aiohttp
import hashlib
import requests
from typing import Optional

HIBP_BREACH_URL = "https://haveibeenpwned.com/api/v3/breachedaccount/{}"
HIBP_PASTE_URL  = "https://haveibeenpwned.com/api/v3/pasteaccount/{}"
HIBP_PWNED_URL  = "https://api.pwnedpasswords.com/range/{}"

HEADERS = {
    "User-Agent": "TheBigBrotherV4-OSINT",
    "hibp-api-key": "",  # Optional: set via env var HIBP_API_KEY for full access
}

# Paste sites for domain leak scraping
PASTE_SEARCH_URLS = [
    "https://psbdmp.ws/api/v3/search/{}",  # Pastebin dump search (public)
]

SEVERITY_MAP = {
    "Passwords": "CRITICAL",
    "Email addresses": "HIGH",
    "Phone numbers": "HIGH",
    "Physical addresses": "HIGH",
    "Credit cards": "CRITICAL",
    "Financial data": "CRITICAL",
    "Government issued IDs": "CRITICAL",
    "Usernames": "MEDIUM",
    "Dates of birth": "MEDIUM",
    "Social media profiles": "MEDIUM",
    "Security questions and answers": "HIGH",
    "IP addresses": "LOW",
    "Geographic locations": "LOW",
    "Browser user agent details": "LOW",
    "Website activity": "LOW",
}


def get_severity(data_classes: list) -> str:
    """Determine worst severity from breach data classes."""
    order = ["CRITICAL", "HIGH", "MEDIUM", "LOW", "INFO"]
    worst = "LOW"
    for dc in data_classes:
        sev = SEVERITY_MAP.get(dc, "LOW")
        if order.index(sev) < order.index(worst):
            worst = sev
    return worst


async def check_breaches_hibp(email: str) -> list:
    """Check for breaches using HIBP v3 API."""
    import os
    api_key = os.environ.get("HIBP_API_KEY", "")
    
    headers = {
        "User-Agent": "TheBigBrotherV4-OSINT",
        "hibp-api-key": api_key,
    }

    url = f"https://haveibeenpwned.com/api/v3/breachedaccount/{email}?truncateResponse=false"
    
    try:
        async with aiohttp.ClientSession() as session:
            async with session.get(url, headers=headers, timeout=aiohttp.ClientTimeout(total=10), ssl=False) as resp:
                if resp.status == 404:
                    return []
                if resp.status == 401:
                    return [{"_note": "HIBP API key required for breach lookup. Set HIBP_API_KEY env var."}]
                if resp.status == 200:
                    data = await resp.json()
                    breaches = []
                    for b in data:
                        breaches.append({
                            "name": b.get("Name"),
                            "domain": b.get("Domain"),
                            "date": b.get("BreachDate"),
                            "pwn_count": b.get("PwnCount"),
                            "description": b.get("Description", "")[:300],
                            "data_classes": b.get("DataClasses", []),
                            "severity": get_severity(b.get("DataClasses", [])),
                            "is_sensitive": b.get("IsSensitive", False),
                            "is_verified": b.get("IsVerified", True),
                            "logo": f"https://haveibeenpwned.com/Content/Images/PwnedLogos/{b.get('Name')}.png",
                        })
                    return sorted(breaches, key=lambda x: x["date"], reverse=True)
    except Exception as e:
        print(f"HIBP breach error: {e}")
    return []


async def check_pastes_hibp(email: str) -> list:
    """Check for paste exposures via HIBP."""
    import os
    api_key = os.environ.get("HIBP_API_KEY", "")
    if not api_key:
        return []

    headers = {
        "User-Agent": "TheBigBrotherV4-OSINT",
        "hibp-api-key": api_key,
    }
    url = f"https://haveibeenpwned.com/api/v3/pasteaccount/{email}"

    try:
        async with aiohttp.ClientSession() as session:
            async with session.get(url, headers=headers, timeout=aiohttp.ClientTimeout(total=10), ssl=False) as resp:
                if resp.status == 200:
                    data = await resp.json()
                    return [{"source": p.get("Source"), "id": p.get("Id"), "date": p.get("Date"), "emails": p.get("EmailCount")} for p in data]
    except Exception as e:
        print(f"HIBP paste error: {e}")
    return []


async def check_password_pwned(password: str) -> dict:
    """
    Check if a password has been seen in breaches using k-anonymity model.
    Never sends the full password — only first 5 chars of SHA1 hash.
    """
    sha1 = hashlib.sha1(password.encode("utf-8")).hexdigest().upper()
    prefix = sha1[:5]
    suffix = sha1[5:]

    url = f"https://api.pwnedpasswords.com/range/{prefix}"
    try:
        async with aiohttp.ClientSession() as session:
            async with session.get(url, timeout=aiohttp.ClientTimeout(total=8), ssl=False) as resp:
                if resp.status == 200:
                    text = await resp.text()
                    for line in text.splitlines():
                        parts = line.split(":")
                        if len(parts) == 2 and parts[0] == suffix:
                            return {"pwned": True, "count": int(parts[1])}
    except Exception as e:
        print(f"HIBP password check error: {e}")
    return {"pwned": False, "count": 0}


async def check_paste_aggregator(query: str) -> list:
    """Checks public paste dump APIs for mentions of query (email/domain)."""
    results = []
    url = f"https://psbdmp.ws/api/v3/search/{query}"
    try:
        async with aiohttp.ClientSession() as session:
            async with session.get(url, timeout=aiohttp.ClientTimeout(total=8), ssl=False) as resp:
                if resp.status == 200:
                    data = await resp.json()
                    if isinstance(data, dict) and "data" in data:
                        for item in data["data"][:10]:
                            results.append({
                                "source": "Pastebin",
                                "id": item.get("id"),
                                "date": item.get("time"),
                                "snippet": item.get("tags", ""),
                                "url": f"https://pastebin.com/{item.get('id')}",
                            })
    except Exception as e:
        print(f"Paste aggregator error: {e}")
    return results


async def breach_vault_search(query: str, query_type: str = "email"):
    """
    Main entry point for BREACH VAULT.
    query_type: 'email' | 'password'
    """
    if query_type == "password":
        result = await check_password_pwned(query)
        return {
            "query": "***REDACTED***",
            "type": "password",
            "pwned": result["pwned"],
            "count": result["count"],
            "breaches": [],
            "pastes": [],
        }

    # Email query
    breaches, pastes, paste_dumps = await asyncio.gather(
        check_breaches_hibp(query),
        check_pastes_hibp(query),
        check_paste_aggregator(query),
    )

    total_exposed = sum(b.get("pwn_count", 0) for b in breaches if isinstance(b.get("pwn_count"), int))

    return {
        "query": query,
        "type": "email",
        "breach_count": len(breaches),
        "paste_count": len(pastes),
        "total_records_exposed": total_exposed,
        "breaches": breaches,
        "pastes": pastes,
        "paste_dumps": paste_dumps,
    }


================================================
FILE: the_big_brother/modules/code_hunter.py
================================================
"""
CODE HUNTER — GitHub OSINT via public API (no auth required, rate-limited to 60/hr/IP).
Pulls user profile, repos, top languages, public commit emails, organizations.
"""
from __future__ import annotations

import asyncio
from collections import Counter
from datetime import datetime
from typing import Optional

import requests

API = "https://api.github.com"
HEADERS = {"Accept": "application/vnd.github+json", "User-Agent": "TheBigBrother-V5"}


def _get(path: str, params: Optional[dict] = None):
    try:
        r = requests.get(f"{API}{path}", headers=HEADERS, params=params or {}, timeout=8)
        if r.status_code == 403:
            return None, "Rate-limited (60/hr unauthenticated). Add a GITHUB_TOKEN env var to lift the cap."
        if r.status_code == 404:
            return None, "Not found"
        if r.status_code != 200:
            return None, f"HTTP {r.status_code}"
        return r.json(), None
    except Exception as e:
        return None, str(e)


def _commit_emails(login: str, repos: list) -> list:
    emails = Counter()
    for repo in repos[:5]:  # Sample top 5 most-recent
        data, _ = _get(f"/repos/{login}/{repo['name']}/commits", {"author": login, "per_page": 30})
        if not data:
            continue
        for c in data:
            author = (c.get("commit") or {}).get("author") or {}
            mail = author.get("email")
            if mail and "noreply" not in mail and "users.noreply.github.com" not in mail:
                emails[mail] += 1
    return [{"email": e, "count": c} for e, c in emails.most_common(10)]


def _activity_buckets(events: list) -> dict:
    by_hour = [0] * 24
    by_dow = [0] * 7
    by_type = Counter()
    for e in events or []:
        try:
            dt = datetime.fromisoformat(e["created_at"].replace("Z", "+00:00"))
            by_hour[dt.hour] += 1
            by_dow[dt.weekday()] += 1
            by_type[e["type"]] += 1
        except Exception:
            pass
    return {
        "hourly_utc": by_hour,
        "weekday": by_dow,
        "event_types": dict(by_type.most_common(10)),
    }


async def code_hunter(login: str) -> dict:
    login = login.strip().lstrip("@")
    if not login:
        return {"error": "username required"}

    user, err = await asyncio.to_thread(_get, f"/users/{login}")
    if err:
        return {"error": err}

    repos_task = asyncio.to_thread(_get, f"/users/{login}/repos", {"sort": "updated", "per_page": 100})
    orgs_task = asyncio.to_thread(_get, f"/users/{login}/orgs")
    events_task = asyncio.to_thread(_get, f"/users/{login}/events/public", {"per_page": 100})
    gists_task = asyncio.to_thread(_get, f"/users/{login}/gists", {"per_page": 30})

    (repos, _), (orgs, _), (events, _), (gists, _) = await asyncio.gather(
        repos_task, orgs_task, events_task, gists_task
    )

    repos = repos or []
    orgs = orgs or []
    events = events or []
    gists = gists or []

    repo_summary = sorted(
        [
            {
                "name": r["name"],
                "stars": r.get("stargazers_count", 0),
                "forks": r.get("forks_count", 0),
                "language": r.get("language"),
                "updated": r.get("updated_at"),
                "description": (r.get("description") or "")[:140],
                "url": r.get("html_url"),
                "fork": r.get("fork", False),
            }
            for r in repos
        ],
        key=lambda x: x["stars"],
        reverse=True,
    )

    lang_count = Counter(r["language"] for r in repo_summary if r["language"])
    languages = [{"name": k, "count": v} for k, v in lang_count.most_common(10)]

    emails = await asyncio.to_thread(_commit_emails, login, repo_summary[:5])
    activity = _activity_buckets(events)

    total_stars = sum(r["stars"] for r in repo_summary)
    score = min(100, user.get("followers", 0) // 2 + total_stars // 5 + len(repo_summary) // 2)

    return {
        "login": login,
        "name": user.get("name"),
        "avatar": user.get("avatar_url"),
        "bio": user.get("bio"),
        "company": user.get("company"),
        "location": user.get("location"),
        "blog": user.get("blog"),
        "twitter": user.get("twitter_username"),
        "email_public": user.get("email"),
        "created_at": user.get("created_at"),
        "updated_at": user.get("updated_at"),
        "public_repos": user.get("public_repos"),
        "public_gists": user.get("public_gists"),
        "followers": user.get("followers"),
        "following": user.get("following"),
        "html_url": user.get("html_url"),
        "influence_score": score,
        "total_stars": total_stars,
        "top_repos": repo_summary[:12],
        "languages": languages,
        "orgs": [{"login": o["login"], "url": o.get("url")} for o in orgs[:20]],
        "commit_emails": emails,
        "gist_count": len(gists),
        "activity": activity,
    }


================================================
FILE: the_big_brother/modules/crypto_analyzer.py
================================================
import requests
import datetime

def analyze_crypto(address: str, coin: str):
    """
    Analyzes a crypto address for balance and activity.
    Supports BTC, ETH, LTC, and TRX via free public APIs.
    """
    results = {
        "coin": coin.upper(),
        "address": address,
        "balance": 0,
        "total_received": 0,
        "tx_count": 0,
        "last_seen": "Never",
        "recent_txs": [],
        "error": None
    }
    
    try:
        if coin.lower() == "btc":
            url = f"https://blockchain.info/rawaddr/{address}"
            resp = requests.get(url, timeout=10)
            if resp.status_code == 200:
                data = resp.json()
                results["balance"] = data.get("final_balance", 0) / 100000000
                results["total_received"] = data.get("total_received", 0) / 100000000
                results["tx_count"] = data.get("n_tx", 0)
                
                txs = data.get("txs", [])
                if txs:
                    last_time = txs[0].get("time")
                    if last_time:
                        results["last_seen"] = datetime.datetime.fromtimestamp(last_time).strftime('%Y-%m-%d %H:%M:%S')
                    for t in txs[:5]:
                        results["recent_txs"].append({
                            "hash": t.get("hash"),
                            "time": datetime.datetime.fromtimestamp(t.get("time")).strftime('%Y-%m-%d %H:%M') if t.get("time") else "Unknown",
                            "result": t.get("result", 0) / 100000000
                        })
            else:
                 results["error"] = f"API returned {resp.status_code}"
                 
        elif coin.lower() == "eth":
            url = f"https://api.blockcypher.com/v1/eth/main/addrs/{address}"
            resp = requests.get(url, timeout=10)
            if resp.status_code == 200:
                data = resp.json()
                results["balance"] = data.get("balance", 0) / 10**18
                results["total_received"] = data.get("total_received", 0) / 10**18
                results["tx_count"] = data.get("n_tx", 0)
                
                txrefs = data.get("txrefs", [])
                if txrefs:
                    results["last_seen"] = txrefs[0].get("confirmed", "Check Explorer")[:19].replace("T", " ")
                    for t in txrefs[:5]:
                        results["recent_txs"].append({
                            "hash": t.get("tx_hash"),
                            "time": t.get("confirmed", "")[:16].replace("T", " "),
                            "result": t.get("value", 0) / 10**18
                        })
                else:
                    results["last_seen"] = "Check Explorer"
            else:
                 results["error"] = f"API returned {resp.status_code}"

        elif coin.lower() == "ltc":
            url = f"https://api.blockcypher.com/v1/ltc/main/addrs/{address}"
            resp = requests.get(url, timeout=10)
            if resp.status_code == 200:
                data = resp.json()
                results["balance"] = data.get("balance", 0) / 10**8
                results["total_received"] = data.get("total_received", 0) / 10**8
                results["tx_count"] = data.get("n_tx", 0)
                
                txrefs = data.get("txrefs", [])
                if txrefs:
                    results["last_seen"] = txrefs[0].get("confirmed", "Check Explorer")[:19].replace("T", " ")
                    for t in txrefs[:5]:
                        results["recent_txs"].append({
                            "hash": t.get("tx_hash"),
                            "time": t.get("confirmed", "")[:16].replace("T", " "),
                            "result": t.get("value", 0) / 10**8
                        })
                else:
                    results["last_seen"] = "Check Explorer"
            else:
                 results["error"] = f"API returned {resp.status_code}"

        elif coin.lower() == "trx":
            url = f"https://apilist.tronscanapi.com/api/accountv2?address={address}"
            resp = requests.get(url, timeout=10)
            if resp.status_code == 200:
                data = resp.json()
                results["balance"] = data.get("balance", 0) / 1000000
                results["total_received"] = data.get("totalTransactionCount", 0) # Not exactly total received but useful
                results["tx_count"] = data.get("transactions", 0)
                
                last = data.get("latest_operation_time")
                if last:
                    results["last_seen"] = datetime.datetime.fromtimestamp(last/1000).strftime('%Y-%m-%d %H:%M:%S')
            else:
                 results["error"] = f"API returned {resp.status_code}"
    
    except Exception as e:
        results["error"] = str(e)
        
    return results


================================================
FILE: the_big_brother/modules/dark_watch.py
================================================
import requests
from bs4 import BeautifulSoup
import asyncio

async def search_ransomware_leaks(query: str):
    """
    Searches known ransomware leak sites via Ransomwatch feed.
    """
    url = "https://raw.githubusercontent.com/joshhighet/ransomwatch/main/posts.json"
    try:
        resp = await asyncio.to_thread(requests.get, url, timeout=10)
        data = resp.json()
        
        matches = []
        query_lower = query.lower()
        
        for post in data:
            # post fields: group_name, post_title, discovered, etc.
            title = post.get("post_title", "").lower()
            group = post.get("group_name", "").lower()
            
            if query_lower in title or query_lower in group:
                matches.append({
                    "title": f"[{post.get('group_name')}] {post.get('post_title')}",
                    "link": "#", # Usually no direct link in this JSON without digging, but group name is key
                    "snippet": f"Ransomware Leak Discovered: {post.get('discovered')}",
                    "date": post.get("discovered")
                })
        return matches
    except Exception as e:
        print(f"Ransomwatch error: {e}")
        return []

async def search_dark_web(query: str):
    """
    Searches Ahmia.fi for onion links AND checks ransomware leaks.
    """
    results = []
    
    # 1. Ransomware Search
    ransom_results = await search_ransomware_leaks(query)
    results.extend(ransom_results)
    
    # 2. Onion Search (Ahmia)
    url = f"https://ahmia.fi/search/?q={query}"
    
    headers = {
        "User-Agent": "Mozilla/5.0 (Windows NT 10.0; rv:91.0) Gecko/20100101 Firefox/91.0"
    }
    
    try:
        resp = await asyncio.to_thread(requests.get, url, headers=headers, timeout=10)
        
        if resp.status_code == 200:
            soup = BeautifulSoup(resp.text, 'html.parser')
            
            for li in soup.find_all('li', class_='result'):
                try:
                    link = li.find('a')['href']
                    title = li.find('a').text.strip()
                    snippet = li.find('p').text.strip() if li.find('p') else "No description"
                    
                    date = li.find('span', class_='modified')
                    date_str = date.text.strip() if date else "Unknown Date"
                    
                    results.append({
                        "title": title,
                        "link": link,
                        "snippet": snippet,
                        "date": date_str
                    })
                except:
                    continue
                    
        return {"results": results, "count": len(results)}
        
    except Exception as e:
        # Return what we have if Ahmia fails
        if results:
             return {"results": results, "count": len(results)}
        return {"error": str(e)}

async def check_tor_status(onion_url: str):
    """
    Checks if an onion link is live using a tor2web proxy if local Tor isn't available,
    or just returns a specific message.
    Real Tor checking requires a SOCKS proxy (like 127.0.0.1:9050).
    We will assume Tor might not be configured in this Docker container yet, 
    so we check via a public gateway like onion.ly for basic status.
    """
    # Convert .onion to .onion.ly for public check
    gateway_url = onion_url.replace(".onion", ".onion.ly")
    if not gateway_url.startswith("http"):
        gateway_url = "http://" + gateway_url
        
    try:
        resp = await asyncio.to_thread(requests.head, gateway_url, timeout=5)
        return {"status": "Online" if resp.status_code == 200 else "Offline", "code": resp.status_code}
    except:
        return {"status": "Unreachable", "code": 0}


================================================
FILE: the_big_brother/modules/digital_footprint.py
================================================
import phonenumbers
from phonenumbers import geocoder, carrier, timezone

import asyncio
import subprocess
import json
import dns.resolver

async def check_email_osint(email: str):
    """
    Checks email against holehe's list of sites.
    """
    out = []
    
    # Holehe allows checking specific modules or all.
    # For speed in this demo, we might want to limit or just run the standard set.
    # Using the importable check_email function from holehe
    
    # Note: holehe is primarily CLI based but has core functions.
    # We will wrap it. 
    
    # Since holehe might be slow, it's best run in a background task or thread.
    # Here is a simplified synchronous wrapper that we'll call asynchronously.
    
    from holehe.core import import_submodules
    modules = import_submodules("holehe.modules")
    
    results = []
    
    for module in modules:
        try:
            # Each module has a [module_name] class or function
            # This is a simplified integration based on holehe structure
             if hasattr(module, str(module.__name__).split(".")[-1]):
                check_func = getattr(module, str(module.__name__).split(".")[-1])
                # most holehe modules take email, client, out
                # We need to inspect holehe source for exact internal API or use CLI wrapper
                # For safety and stability, maybe shelling out is safer if internal API is unstable
                pass
        except Exception:
            pass

    # Alternative: Shell out to holehe CLI for stability if library use is complex
    # But let's try a direct approach if possible or fallback to a simulated "quick check" 
    # using known patterns if holehe is too heavy.
    
    # REVISION: To ensure this works without deep diving into holehe's internal non-public API,
    # let's use a subprocess to call 'holehe' if it's installed as a binary, 
    # OR better, since we installed it via pip, we can try to use its published entry points.
    
    # Let's implement a robust phone checker first as it is pure library call.
    return {"status": "scan_started", "email": email}

def get_phone_info(number_str: str):
    try:
        parsed_number = phonenumbers.parse(number_str, None)
        if not phonenumbers.is_valid_number(parsed_number):
            return {"error": "Invalid number"}
            
        # Get line type
        line_type_code = phonenumbers.number_type(parsed_number)
        line_type_map = {0: "FIXED_LINE", 1: "MOBILE", 2: "FIXED_OR_MOBILE", 3: "TOLL_FREE", 4: "PREMIUM_RATE", 
                         5: "SHARED_COST", 6: "VOIP", 7: "PERSONAL_NUMBER", 8: "PAGER", 9: "UAN", 10: "VOICEMAIL"}
        line_type = line_type_map.get(line_type_code, "UNKNOWN")

        # Get Timezones
        tzs = timezone.time_zones_for_number(parsed_number)
        
        return {
            "valid": True,
            "number": phonenumbers.format_number(parsed_number, phonenumbers.PhoneNumberFormat.INTERNATIONAL),
            "country": geocoder.description_for_number(parsed_number, "en"),
            "carrier": carrier.name_for_number(parsed_number, "en"),
            "line_type": line_type,
            "timezones": list(tzs)
        }
    except Exception as e:
        return {"error": str(e)}

# Re-implementing email check to be robust
import subprocess
import json

async def run_holehe(email: str):
    """
    Runs holehe as a subprocess. Also checks MX records.
    """
    results = {"email": email, "found_on": [], "mx_records": [], "valid_mx": False}

    # 1. MX Record Check
    try:
        domain = email.split('@')[-1]
        mx_records = dns.resolver.resolve(domain, 'MX')
        for mx in mx_records:
            results["mx_records"].append(str(mx.exchange))
        if results["mx_records"]:
            results["valid_mx"] = True
    except:
        pass

    # 2. Holehe Scan
    cmd = ["holehe", email, "--only-used", "--no-color"]
    try:
        proc = await asyncio.create_subprocess_exec(
            *cmd,
            stdout=asyncio.subprocess.PIPE,
            stderr=asyncio.subprocess.PIPE
        )
        
        stdout, stderr = await proc.communicate()
        output = stdout.decode()
        
        sites = []
        for line in output.splitlines():
            if "[+]" in line:
                parts = line.split(" ")
                site = parts[-1]
                if site not in sites:
                    sites.append(site)
        results["found_on"] = sites
    except Exception as e:
        print(f"Holehe error: {e}")
        
    return results


================================================
FILE: the_big_brother/modules/domain_oracle.py
================================================
"""
DOMAIN ORACLE — Passive deep domain intelligence.
Pulls WHOIS (RDAP), full DNS set, SPF/DMARC/DKIM posture, HTTP security headers,
TLS basic info, and subdomain enumeration via crt.sh — no auth keys required.
"""
import asyncio
import socket
import ssl
import re
from urllib.parse import urlparse

import requests
import dns.resolver


SECURITY_HEADERS = [
    "Strict-Transport-Security",
    "Content-Security-Policy",
    "X-Frame-Options",
    "X-Content-Type-Options",
    "Referrer-Policy",
    "Permissions-Policy",
]


def _resolver():
    r = dns.resolver.Resolver()
    r.timeout = 2
    r.lifetime = 3
    return r


def _query(domain: str, rtype: str):
    out = []
    try:
        for rec in _resolver().resolve(domain, rtype):
            out.append(str(rec).strip('"'))
    except Exception:
        pass
    return out


def _rdap(domain: str) -> dict:
    try:
        r = requests.get(f"https://rdap.org/domain/{domain}", timeout=6)
        if r.status_code != 200:
            return {}
        data = r.json()
        events = {e.get("eventAction"): e.get("eventDate") for e in data.get("events", [])}
        registrar = "Unknown"
        for ent in data.get("entities", []):
            if "registrar" in ent.get("roles", []):
                v = ent.get("vcardArray")
                if v and len(v) > 1:
                    for item in v[1]:
                        if item[0] == "fn":
                            registrar = item[3]
                            break
        ns = []
        for n in data.get("nameservers", []):
            ld = n.get("ldhName")
            if ld:
                ns.append(ld.lower())
        return {
            "registrar": registrar,
            "status": data.get("status", []),
            "created": events.get("registration", "Unknown"),
            "updated": events.get("last changed", events.get("last update of RDAP database", "Unknown")),
            "expires": events.get("expiration", "Unknown"),
            "nameservers": ns,
        }
    except Exception:
        return {}


def _spf(txt_records: list) -> dict:
    spf = next((t for t in txt_records if t.lower().startswith("v=spf1")), None)
    if not spf:
        return {"present": False, "policy": None, "grade": "F"}
    policy = "neutral"
    if " -all" in spf:
        policy = "strict (-all)"
        grade = "A"
    elif " ~all" in spf:
        policy = "softfail (~all)"
        grade = "B"
    elif " ?all" in spf:
        policy = "neutral (?all)"
        grade = "C"
    elif " +all" in spf:
        policy = "pass-all (+all) — DANGEROUS"
        grade = "F"
    else:
        grade = "C"
    return {"present": True, "record": spf, "policy": policy, "grade": grade}


def _dmarc(domain: str) -> dict:
    recs = _query(f"_dmarc.{domain}", "TXT")
    rec = next((r for r in recs if r.lower().startswith("v=dmarc1")), None)
    if not rec:
        return {"present": False, "grade": "F"}
    policy = "none"
    if "p=reject" in rec.lower():
        policy, grade = "reject", "A"
    elif "p=quarantine" in rec.lower():
        policy, grade = "quarantine", "B"
    else:
        policy, grade = "none", "D"
    return {"present": True, "record": rec, "policy": policy, "grade": grade}


def _dkim(domain: str) -> dict:
    selectors = ["default", "google", "selector1", "selector2", "k1", "mail", "dkim", "smtp"]
    found = {}
    for s in selectors:
        recs = _query(f"{s}._domainkey.{domain}", "TXT")
        rec = next((r for r in recs if "v=DKIM" in r or "k=" in r), None)
        if rec:
            found[s] = rec[:200]
    return {
        "present": len(found) > 0,
        "selectors_found": list(found.keys()),
        "samples": found,
        "grade": "A" if found else "F",
    }


def _http_security_headers(domain: str) -> dict:
    out = {"https_reachable": False, "headers": {}, "missing": [], "grade": "F"}
    for scheme in ("https", "http"):
        try:
            r = requests.get(f"{scheme}://{domain}", timeout=6, allow_redirects=True)
            present = {}
            for h in SECURITY_HEADERS:
                if h in r.headers:
                    present[h] = r.headers[h][:200]
            out["https_reachable"] = scheme == "https"
            out["status"] = r.status_code
            out["server"] = r.headers.get("Server", "—")
            out["powered_by"] = r.headers.get("X-Powered-By", "—")
            out["headers"] = present
            out["missing"] = [h for h in SECURITY_HEADERS if h not in present]
            score = len(present) / len(SECURITY_HEADERS)
            out["grade"] = (
                "A" if score >= 0.83 else
                "B" if score >= 0.66 else
                "C" if score >= 0.5 else
                "D" if score >= 0.33 else "F"
            )
            return out
        except Exception:
            continue
    return out


def _tls_meta(domain: str) -> dict:
    try:
        ctx = ssl.create_default_context()
        with socket.create_connection((domain, 443), timeout=5) as sock:
            with ctx.wrap_socket(sock, server_hostname=domain) as ssock:
                cert = ssock.getpeercert()
                return {
                    "tls_version": ssock.version(),
                    "cipher": ssock.cipher()[0] if ssock.cipher() else None,
                    "issuer": dict(x[0] for x in cert.get("issuer", [])),
                    "subject": dict(x[0] for x in cert.get("subject", [])),
                    "not_before": cert.get("notBefore"),
                    "not_after": cert.get("notAfter"),
                }
    except Exception as e:
        return {"error": str(e)}


def _subdomains(domain: str) -> list:
    try:
        r = requests.get(f"https://crt.sh/?q=%.{domain}&output=json", timeout=8)
        if r.status_code != 200:
            return []
        subs = set()
        for entry in r.json():
            for n in entry.get("name_value", "").split("\n"):
                n = n.strip().lower()
                if n.endswith(domain) and n != domain and "*" not in n:
                    subs.add(n)
        return sorted(subs)
    except Exception:
        return []


def _reverse_ip(ip: str) -> list:
    try:
        r = requests.get(f"https://api.hackertarget.com/reverseiplookup/?q={ip}", timeout=5)
        if r.status_code == 200 and "error" not in r.text.lower():
            return [x for x in r.text.splitlines() if x.strip()][:50]
    except Exception:
        pass
    return []


async def domain_oracle(domain: str) -> dict:
    domain = domain.strip().lower()
    if domain.startswith(("http://", "https://")):
        domain = urlparse(domain).netloc
    if not re.match(r"^[a-z0-9.-]+\.[a-z]{2,}$", domain):
        return {"error": "Invalid domain"}

    try:
        ip = socket.gethostbyname(domain)
    except Exception:
        return {"error": "Could not resolve domain"}

    dns_records = {}
    for rtype in ("A", "AAAA", "MX", "NS", "TXT", "CAA", "SOA"):
        dns_records[rtype] = await asyncio.to_thread(_query, domain, rtype)

    rdap = await asyncio.to_thread(_rdap, domain)
    spf = _spf(dns_records.get("TXT", []))
    dmarc = await asyncio.to_thread(_dmarc, domain)
    dkim = await asyncio.to_thread(_dkim, domain)
    headers = await asyncio.to_thread(_http_security_headers, domain)
    tls = await asyncio.to_thread(_tls_meta, domain)
    subs = await asyncio.to_thread(_subdomains, domain)
    neighbors = await asyncio.to_thread(_reverse_ip, ip)

    grades = [spf["grade"], dmarc["grade"], dkim["grade"], headers["grade"]]
    score = 100 - (sum({"A": 0, "B": 10, "C": 20, "D": 30, "F": 40}[g] for g in grades))
    score = max(0, min(100, score))

    return {
        "domain": domain,
        "ip": ip,
        "score": score,
        "rdap": rdap,
        "dns": dns_records,
        "email_security": {
            "spf": spf,
            "dmarc": dmarc,
            "dkim": dkim,
        },
        "http_security": headers,
        "tls": tls,
        "subdomains": subs,
        "neighbors": neighbors,
    }


================================================
FILE: the_big_brother/modules/dork_studio.py
================================================
def generate_dorks(target: str, domain: str = ""):
    """
    Generates a list of advanced dorks for various platforms.
    """
    dorks = {
        "google": [],
        "shodan": [],
        "github": [],
        "censys": [],
        "fofa": []
    }
    
    # ---------------- GOOGLE (AGGRESSIVE) ----------------
    # SQL Injection
    dorks["google"].append({"title": "SQL Injection Vectors", "query": f"site:{domain} inurl:id= | inurl:pid= | inurl:category= | inurl:cat= | inurl:action= | inurl:sid= | inurl:dir= intext:warning intext:mysql"})
    # LFI / Directory Traversal
    dorks["google"].append({"title": "Directory Traversal", "query": f"site:{domain} inurl:include= | inurl:page= | inurl:file= | inurl:cfg= ext:inc | ext:php"})
    # Exposed Git
    dorks["google"].append({"title": "Exposed .git", "query": f"site:{domain} intitle:\"index of\" \"/.git\""})
    # Public Cameras
    dorks["google"].append({"title": "Public Cameras", "query": f"inurl:top.htm inurl:currenttime inurl:pixel"})
    # Log Files
    dorks["google"].append({"title": "Exposed Log Files", "query": f"site:{domain} ext:log | ext:txt | ext:conf | ext:cnf | ext:ini | ext:env | ext:sh"})
    # Install/Setup Pages
    dorks["google"].append({"title": "Install/Setup Pages", "query": f"site:{domain} inurl:readme | inurl:license | inurl:install | inurl:setup | inurl:config"})
    # S3 Buckets
    dorks["google"].append({"title": "S3 Buckets", "query": f"site:s3.amazonaws.com \"{target}\""})
    # Pastebin Data
    dorks["google"].append({"title": "Pastebin Leaks", "query": f"site:pastebin.com \"{target}\""})

    # ---------------- SHODAN (INFRASTRUCTURE) ----------------
    dorks["shodan"].append({"title": "Organization Infra", "query": f"org:\"{target}\""})
    dorks["shodan"].append({"title": "SSL Certificates", "query": f"ssl:\"{target}\""})
    dorks["shodan"].append({"title": "Vulnerable SMB", "query": f"net:\"{target}\" port:445 has_vuln:true"})
    dorks["shodan"].append({"title": "Open Webcams", "query": "has_screenshot:true port:80,81,8080 title:\"webcam\""})
    dorks["shodan"].append({"title": "Industrial Control Systems", "query": "port:502,102,44818 tag:ics"})
    dorks["shodan"].append({"title": "Default Passwords", "query": "\"default password\" \"admin\""})
    
    if domain:
        dorks["shodan"].append({"title": "Hostname Search", "query": f"hostname:\"{domain}\""})
        
    # ---------------- GITHUB (SECRETS) ----------------
    dorks["github"].append({"title": "AWS Keys", "query": f"\"{target}\" AWS_ACCESS_KEY_ID"})
    dorks["github"].append({"title": "API Keys", "query": f"\"{target}\" API_KEY OR SECRET_KEY"})
    if domain:
        dorks["github"].append({"title": "Internal Passwords", "query": f"\"{domain}\" password OR secret OR key"})

    # ---------------- CENSYS ----------------
    dorks["censys"].append({"title": "Search by Domain", "query": f"services.tls.certificates.leaf_data.names: {domain}"})
    dorks["censys"].append({"title": "Search by Org", "query": f"autonomous_system.name: \"{target}\""})

    # ---------------- FOFA ----------------
    dorks["fofa"].append({"title": "Domain Search", "query": f"domain=\"{domain}\""})
    dorks["fofa"].append({"title": "Title Search", "query": f"title=\"{target}\""})
    dorks["fofa"].append({"title": "Cert Search", "query": f"cert=\"{domain}\""})

    return dorks


================================================
FILE: the_big_brother/modules/exif_analyzer.py
================================================
from PIL import Image
from PIL.ExifTags import TAGS, GPSTAGS
import requests
from io import BytesIO

def get_exif_data(image_source: str, is_url: bool = True):
    """
    Extracts EXIF data from an image URL or local file (simulated via bytes).
    """
    results = {
        "source": image_source,
        "basic": {},
        "gps": {},
        "error": None
    }
    
    try:
        image = None
        if is_url:
            resp = requests.get(image_source, timeout=10)
            if resp.status_code == 200:
                image = Image.open(BytesIO(resp.content))
            else:
                 return {"error": f"Failed to download image: {resp.status_code}"}
        else:
             # For now we only support URL in this quick implementation
             return {"error": "Local file upload not implemented in this version"}

        if not image:
             return {"error": "Could not open image"}

        # Basic Info
        results["basic"]["format"] = image.format
        results["basic"]["mode"] = image.mode
        results["basic"]["size"] = f"{image.width}x{image.height}"
        
        exif_data = image._getexif()
        if not exif_data:
            return results # No exif

        for tag_id, value in exif_data.items():
            tag = TAGS.get(tag_id, tag_id)
            
            # Decode bytes if needed
            if isinstance(value, bytes):
                try:
                    value = value.decode()
                except:
                    value = str(value)

            if tag == "GPSInfo":
                gps_data = {}
                for t in value:
                    sub_tag = GPSTAGS.get(t, t)
                    gps_data[sub_tag] = str(value[t])
                results["gps"] = gps_data
            else:
                # Filter out very long binary data (like maker notes)
                if len(str(value)) < 500:
                    results["basic"][tag] = value

    except Exception as e:
        results["error"] = str(e)
        
    return results


================================================
FILE: the_big_brother/modules/flight_radar.py
================================================
import requests
import datetime

def get_flight_radar(lat: float, lon: float, radius_km: float = 100):
    """
    Fetches real-time flight data near the target coordinates.
    Uses OpenSky Network API (Free tier).
    """
    # 1 degree lat ~ 111km. 
    deg_diff = radius_km / 111.0
    
    lamin = lat - deg_diff
    lamax = lat + deg_diff
    lomin = lon - deg_diff
    lomax = lon + deg_diff
    
    url = f"https://opensky-network.org/api/states/all?lamin={lamin}&lomin={lomin}&lamax={lamax}&lomax={lomax}"
    
    results = {
        "location": {"lat": lat, "lon": lon},
        "flights": [],
        "count": 0,
        "error": None
    }
    
    try:
        resp = requests.get(url, timeout=10)
        if resp.status_code == 200:
            data = resp.json()
            states = data.get("states", [])
            
            if states:
                for s in states[:20]: # Limit to 20 closest/first
                    # s indexes: 0=icao24, 1=callsign, 2=origin_country, 5=lon, 6=lat, 13=geo_altitude
                    results["flights"].append({
                        "icao": s[0],
                        "callsign": s[1].strip(),
                        "country": s[2],
                        "lat": s[6],
                        "lon": s[5],
                        "alt": s[13],
                        "velocity": s[9]
                    })
                results["count"] = len(results["flights"])
            else:
                 results["message"] = "No aircraft found in this sector."
        else:
             results["error"] = f"Radar Offline: {resp.status_code}"
             
    except Exception as e:
        results["error"] = str(e)
        
    return results


================================================
FILE: the_big_brother/modules/geoint_spy.py
================================================
import requests

def get_geoint_data(lat: str, lon: str):
    """
    Generates a GEOINT package for the given coordinates.
    Includes Sat links, SunCalc, and search queries for social media.
    Reverse geocodes coordinates to a physical address.
    """
    try:
        f_lat = float(lat)
        f_lon = float(lon)
    except:
        return {"error": "Invalid coordinates"}

    # Reverse Geocoding (Nominatim OpenStreetMap)
    address = "Unknown Address"
    try:
        headers = {"User-Agent": "TheBigBrotherV4-OSINT"}
        resp = requests.get(f"https://nominatim.openstreetmap.org/reverse?format=json&lat={f_lat}&lon={f_lon}", headers=headers, timeout=5)
        if resp.status_code == 200:
            address = resp.json().get("display_name", "Address not found")
    except:
        pass

    # Google Maps URL
    gmaps = f"https://www.google.com/maps/place/{f_lat},{f_lon}/@{f_lat},{f_lon},18z/data=!3m1!1e3"
    
    # Street View
    street = f"https://www.google.com/maps?layer=c&cbll={f_lat},{f_lon}"
    
    # SunCalc (Shadow Analysis)
    suncalc = f"https://www.suncalc.org/#/{f_lat},{f_lon},18/now"
    
    # Tweet Locator (Twitter advanced search near location)
    twitter = f"https://twitter.com/search?q=geocode%3A{f_lat}%2C{f_lon}%2C1km&src=typed_query&f=live"
    
    # Snapchat Map
    snapchat = f"https://map.snapchat.com/@{f_lat},{f_lon},15.00z"
    
    # Wikimapia
    wikimapia = f"http://wikimapia.org/#lang=en&lat={f_lat}&lon={f_lon}&z=18&m=b"

    return {
        "coords": f"{f_lat}, {f_lon}",
        "address": address,
        "links": {
            "Google Satellite": gmaps,
            "Street View": street,
            "SunCalc (Shadows)": suncalc,
            "Twitter (Nearby)": twitter,
            "Snapchat Map": snapchat,
            "Wikimapia": wikimapia
        }
    }


================================================
FILE: the_big_brother/modules/mail_tracer.py
================================================
"""
MAIL TRACER — Email infrastructure forensics.
Inspects an email address: MX validity, SPF/DMARC presence, disposable/role flags,
gravatar lookup, and computes a deliverability/trust score.
"""
import asyncio
import hashlib
import re

import requests
import dns.resolver

from the_big_brother.modules.domain_oracle import _query, _spf, _dmarc


DISPOSABLE = {
    "10minutemail.com", "guerrillamail.com", "mailinator.com", "tempmail.com",
    "throwaway.email", "trashmail.com", "yopmail.com", "getairmail.com",
    "fakeinbox.com", "sharklasers.com", "tempr.email", "dispostable.com",
    "maildrop.cc", "mintemail.com", "mohmal.com", "tempinbox.com",
}

ROLE_LOCALS = {
    "admin", "administrator", "info", "support", "help", "contact", "sales",
    "noreply", "no-reply", "postmaster", "webmaster", "abuse", "security",
    "hr", "jobs", "careers", "marketing", "office", "team", "hello",
}

FREE_PROVIDERS = {
    "gmail.com", "yahoo.com", "outlook.com", "hotmail.com", "icloud.com",
    "protonmail.com", "proton.me", "tutanota.com", "aol.com", "yandex.com",
    "mail.com", "gmx.com", "zoho.com",
}


def _gravatar(email: str) -> str:
    h = hashlib.md5(email.strip().lower().encode()).hexdigest()
    return f"https://www.gravatar.com/avatar/{h}?s=256&d=404"


def _gravatar_exists(url: str) -> bool:
    try:
        r = requests.head(url, timeout=5, allow_redirects=False)
        return r.status_code == 200
    except Exception:
        return False


async def mail_tracer(email: str) -> dict:
    email = email.strip().lower()
    if not re.match(r"^[^\s@]+@[^\s@]+\.[^\s@]+$", email):
        return {"error": "Invalid email"}

    local, domain = email.rsplit("@", 1)

    mx_records = await asyncio.to_thread(_query, domain, "MX")
    txt_records = await asyncio.to_thread(_query, domain, "TXT")
    a_records = await asyncio.to_thread(_query, domain, "A")

    spf = _spf(txt_records)
    dmarc = await asyncio.to_thread(_dmarc, domain)

    is_disposable = domain in DISPOSABLE
    is_role = local in ROLE_LOCALS
    is_free = domain in FREE_PROVIDERS

    gravatar_url = _gravatar(email)
    has_gravatar = await asyncio.to_thread(_gravatar_exists, gravatar_url)

    # Trust score
    score = 100
    factors = []
    if not mx_records:
        score -= 50
        factors.append("No MX records — domain cannot receive mail")
    if not a_records and not mx_records:
        score -= 20
        factors.append("Domain has no DNS presence")
    if is_disposable:
        score -= 60
        factors.append(f"Disposable provider: {domain}")
    if is_role:
        score -= 15
        factors.append(f"Role-based local part: {local}")
    if not spf["present"]:
        score -= 10
        factors.append("No SPF record — spoofable")
    elif spf["grade"] in ("C", "F"):
        score -= 5
        factors.append(f"Weak SPF policy: {spf.get('policy')}")
    if not dmarc["present"]:
        score -= 10
        factors.append("No DMARC record — no enforcement")
    elif dmarc["grade"] == "D":
        score -= 5
        factors.append("DMARC policy is 'none' (monitor only)")
    if has_gravatar:
        score += 5
        factors.append("Gravatar exists — identity tied")

    score = max(0, min(100, score))

    trust_level = (
        "TRUSTED" if score >= 80 else
        "MODERATE" if score >= 60 else
        "WEAK" if score >= 40 else
        "SUSPICIOUS"
    )

    return {
        "email": email,
        "local": local,
        "domain": domain,
        "trust_score": score,
        "trust_level": trust_level,
        "factors": factors,
        "flags": {
            "disposable": is_disposable,
            "role_based": is_role,
            "free_provider": is_free,
            "deliverable": bool(mx_records),
        },
        "mx": mx_records,
        "email_security": {"spf": spf, "dmarc": dmarc},
        "gravatar": {
            "url": gravatar_url if has_gravatar else None,
            "exists": has_gravatar,
        },
    }


================================================
FILE: the_big_brother/modules/network_mapper.py
================================================
import socket
import asyncio
import requests
from pyvis.network import Network
import tempfile
import os
import dns.resolver

COMMON_PORTS = {
    21: "FTP", 22: "SSH", 23: "Telnet", 25: "SMTP", 53: "DNS", 80: "HTTP",
    110: "POP3", 143: "IMAP", 443: "HTTPS", 465: "SMTPS", 587: "SMTP-MSA",
    993: "IMAPS", 995: "POP3S", 1433: "MSSQL", 1521: "Oracle DB",
    2082: "cPanel", 2083: "cPanel HTTPS", 3306: "MySQL", 3389: "RDP",
    5432: "PostgreSQL", 5900: "VNC", 6379: "Redis", 8080: "HTTP-Alt",
    8443: "HTTPS-Alt", 9200: "Elasticsearch", 27017: "MongoDB"
}

async def check_port(ip, port):
    conn = asyncio.open_connection(ip, port)
    try:
        reader, writer = await asyncio.wait_for(conn, timeout=1)
        writer.close()
        await writer.wait_closed()
        return port, True
    except:
        return port, False

def get_geoip(ip):
    try:
        resp = requests.get(f"http://ip-api.com/json/{ip}", timeout=5)
        if resp.status_code == 200:
            return resp.json()
    except:
        pass
    return {}

def get_rdap_whois(domain):
    try:
        # RDAP is the new JSON standard for WHOIS
        resp = requests.get(f"https://rdap.org/domain/{domain}", timeout=5)
        if resp.status_code == 200:
            data = resp.json()
            # Extract key info safely
            return {
                "registrar": data.get("entities", [{}])[0].get("vcardArray", [[],[]])[1][1][3] if "entities" in data else "Unknown",
                "creation_date":  next((e["date"] for e in data.get("events", []) if e["eventAction"] == "registration"), "Unknown"),
                "status": data.get("status", [])
            }
    except:
        pass
    return {}

def get_dns_records(domain):
    records = {"MX": [], "NS": [], "TXT": [], "A": []}
    try:
        resolver = dns.resolver.Resolver()
        resolver.timeout = 2
        resolver.lifetime = 2
        
        try:
            for r in resolver.resolve(domain, 'MX'):
                records["MX"].append(str(r.exchange))
        except: pass
        
        try:
            for r in resolver.resolve(domain, 'NS'):
                records["NS"].append(str(r.target))
        except: pass
        
        try:
            for r in resolver.resolve(domain, 'TXT'):
                records["TXT"].append(str(r))
        except: pass

        try:
            for r in resolver.resolve(domain, 'A'):
                records["A"].append(str(r.address))
        except: pass
        
    except Exception as e:
        print(f"DNS Error: {e}")
    return records

async def scan_target(domain: str):
    """
    Scans a target for IP, open ports, subdomains, GeoIP, Whois, and DNS.
    """
    results = {
        "domain": domain,
        "ip": None,
        "ports": [],
        "subdomains": [],
        "geoip": {},
        "whois": {},
        "dns": {}
    }
    
    # Resolve IP
    try:
        results["ip"] = socket.gethostbyname(domain)
    except:
        return {"error": "Could not resolve domain"}
        
    # Parallel Tasks
    # 1. Port Scan
    port_tasks = [check_port(results["ip"], p) for p in COMMON_PORTS.keys()]
    
    # 2. GeoIP (Sync but fast enough, or thread it)
    results["geoip"] = await asyncio.to_thread(get_geoip, results["ip"])
    
    # 3. Whois
    results["whois"] = await asyncio.to_thread(get_rdap_whois, domain)
    
    # 4. DNS
    results["dns"] = await asyncio.to_thread(get_dns_records, domain)

    # 5. Execute Port Scan
    port_results = await asyncio.gather(*port_tasks)
    
    for port, is_open in port_results:
        if is_open:
            results["ports"].append({"port": port, "service": COMMON_PORTS[port]})
            
    # 6. Subdomains (crt.sh)
    try:
        url = f"https://crt.sh/?q=%.{domain}&output=json"
        resp = await asyncio.to_thread(requests.get, url, timeout=5)
        if resp.status_code == 200:
            data = resp.json()
            subs = set()
            for entry in data:
                name = entry['name_value']
                for n in name.split('\n'):
                    if n.endswith(domain) and n != domain and "*" not in n:
                        subs.add(n)
            results["subdomains"] = list(subs)
    except Exception as e:
        print(f"Subdomain Error: {e}")
        
    return results

def generate_network_map(data):
    """
    Generates an HTML network graph from scan data.
    """
    net = Network(height="600px", width="100%", bgcolor="#0a0a0a", font_color="white")
    
    # Root Node
    net.add_node(data["domain"], label=data["domain"], color="#00ff41", shape="star", size=30)
    
    # IP Node & Geo
    if data.get("ip"):
        ip_label = f"{data['ip']}"
        if data.get("geoip"):
            country = data["geoip"].get("countryCode", "")
            isp = data["geoip"].get("isp", "")
            ip_label += f"\n[{country}] {isp}"
            
        net.add_node(data["ip"], label=ip_label, color="#ffcc00", shape="diamond")
        net.add_edge(data["domain"], data["ip"])
        
        # Ports
        for p in data.get("ports", []):
            label = f"{p['service']}:{p['port']}"
            net.add_node(label, label=label, color="#ff0000", shape="dot", size=10)
            net.add_edge(data["ip"], label)
            
    # DNS Nodes (MX, NS)
    dns_data = data.get("dns", {})
    
    for mx in dns_data.get("MX", []):
        label = f"MX: {mx}"
        net.add_node(label, label=label, color="#00ccff", shape="triangle")
        net.add_edge(data["domain"], label)

    for ns in dns_data.get("NS", []):
        label = f"NS: {ns}"
        net.add_node(label, label=label, color="#ff00ff", shape="triangle")
        net.add_edge(data["domain"], label)
            
    # Subdomains (Cluster them if too many)
    subs = data.get("subdomains", [])
    if len(subs) > 20: 
        # Create a cluster node
        cluster_label = f"+{len(subs)} SUBDOMAINS"
        net.add_node("subs_cluster", label=cluster_label, color="#00cc00", shape="hexagon", size=20)
        net.add_edge(data["domain"], "subs_cluster")
        # Connect first 5 explicitly
        for sub in subs[:5]:
            net.add_node(sub, label=sub, color="#00cc00", shape="dot", size=15)
            net.add_edge("subs_cluster", sub)
    else:
        for sub in subs:
            net.add_node(sub, label=sub, color="#00cc00", shape="dot", size=15)
            net.add_edge(data["domain"], sub)
        
    # Physics options
    net.force_atlas_2based()
    
    try:
        return net.generate_html()
    except:
        return "Error generating graph"



================================================
FILE: the_big_brother/modules/paste_dragnet.py
================================================
"""
PASTE DRAGNET — Hunts paste sites for a query using DuckDuckGo dorks.
Falls back gracefully if duckduckgo-search is unavailable.
"""
import asyncio
from urllib.parse import quote

import requests


PASTE_SITES = [
    "pastebin.com",
    "ghostbin.co",
    "rentry.co",
    "controlc.com",
    "paste.ee",
    "0bin.net",
    "justpaste.it",
    "hastebin.com",
    "ideone.com",
    "dpaste.org",
    "termbin.com",
    "privatebin.net",
]


def _ddg_search(query: str, max_results: int = 15):
    try:
        from duckduckgo_search import DDGS
        with DDGS(timeout=10) as ddgs:
            return list(ddgs.text(query, max_results=max_results))
    except Exception:
        return []


def _hunt_site(query: str, site: str):
    dork = f'site:{site} "{query}"'
    results = _ddg_search(dork, max_results=10)
    out = []
    for r in results:
        out.append({
            "title": r.get("title", "")[:160],
            "url": r.get("href") or r.get("url"),
            "snippet": (r.get("body") or "")[:240],
            "site": site,
        })
    return out


async def paste_dragnet(query: str) -> dict:
    query = query.strip()
    if not query:
        return {"error": "query required"}

    tasks = [asyncio.to_thread(_hunt_site, query, site) for site in PASTE_SITES]
    results_per_site = await asyncio.gather(*tasks, return_exceptions=True)

    all_hits = []
    per_site = {}
    for site, res in zip(PASTE_SITES, results_per_site):
        if isinstance(res, Exception) or not res:
            per_site[site] = 0
            continue
        per_site[site] = len(res)
        all_hits.extend(res)

    # Severity heuristic: keyword markers commonly seen in dumps
    HOT_TERMS = ["password", "passwd", "leak", "dump", "combo", "creds", "api_key", "secret", "token"]
    for hit in all_hits:
        blob = f"{hit.get('title','')} {hit.get('snippet','')}".lower()
        hit["severity"] = "CRITICAL" if any(t in blob for t in HOT_TERMS) else "LOW"

    all_hits.sort(key=lambda h: 0 if h["severity"] == "CRITICAL" else 1)

    return {
        "query": query,
        "total_hits": len(all_hits),
        "per_site": per_site,
        "results": all_hits[:120],
    }


================================================
FILE: the_big_brother/modules/phantom_id.py
================================================
"""
PHANTOM ID — Username enumeration across 200+ platforms.
Uses async HTTP with HEAD/GET requests against a curated sites list.
Returns profile URLs, avatar detection hints, and a risk score.
"""

import asyncio
import aiohttp
import hashlib
from typing import Optional

# Curated platform list with detection patterns
PLATFORMS = [
    # Social Networks
    {"name": "Instagram", "url": "https://www.instagram.com/{}/", "method": "GET", "cat": "social"},
    {"name": "Twitter/X", "url": "https://twitter.com/{}", "method": "HEAD", "cat": "social"},
    {"name": "TikTok", "url": "https://www.tiktok.com/@{}", "method": "HEAD", "cat": "social"},
    {"name": "Facebook", "url": "https://www.facebook.com/{}", "method": "HEAD", "cat": "social"},
    {"name": "Pinterest", "url": "https://www.pinterest.com/{}/", "method": "HEAD", "cat": "social"},
    {"name": "Snapchat", "url": "https://www.snapchat.com/add/{}", "method": "GET", "not_found_text": "Sorry, we couldn't find that Snapchat account.", "cat": "social"},
    {"name": "Reddit", "url": "https://www.reddit.com/user/{}", "method": "GET", "not_found_text": "page not found", "cat": "social"},
    {"name": "Tumblr", "url": "https://{}.tumblr.com", "method": "HEAD", "cat": "social"},
    {"name": "Discord (Lookup)", "url": "https://discord.com/users/{}", "method": "HEAD", "cat": "social"},
    {"name": "VK", "url": "https://vk.com/{}", "method": "HEAD", "cat": "social"},
    {"name": "Weibo", "url": "https://weibo.com/{}", "method": "HEAD", "cat": "social"},
    {"name": "LinkedIn", "url": "https://www.linkedin.com/in/{}", "method": "HEAD", "cat": "professional"},
    # Tech / Dev
    {"name": "GitHub", "url": "https://github.com/{}", "method": "GET", "not_found_text": "not found", "cat": "tech"},
    {"name": "GitLab", "url": "https://gitlab.com/{}", "method": "HEAD", "cat": "tech"},
    {"name": "Bitbucket", "url": "https://bitbucket.org/{}", "method": "HEAD", "cat": "tech"},
    {"name": "StackOverflow", "url": "https://stackoverflow.com/users/{}", "method": "HEAD", "cat": "tech"},
    {"name": "HackerNews", "url": "https://news.ycombinator.com/user?id={}", "method": "GET", "not_found_text": "No such user", "cat": "tech"},
    {"name": "Dev.to", "url": "https://dev.to/{}", "method": "HEAD", "cat": "tech"},
    {"name": "Replit", "url": "https://replit.com/@{}", "method": "HEAD", "cat": "tech"},
    {"name": "Codepen", "url": "https://codepen.io/{}", "method": "HEAD", "cat": "tech"},
    {"name": "Kaggle", "url": "https://www.kaggle.com/{}", "method": "HEAD", "cat": "tech"},
    {"name": "Npmjs", "url": "https://www.npmjs.com/~{}", "method": "HEAD", "cat": "tech"},
    {"name": "PyPI", "url": "https://pypi.org/user/{}/", "method": "GET", "not_found_text": "404", "cat": "tech"},
    # Gaming
    {"name": "Steam", "url": "https://steamcommunity.com/id/{}", "method": "GET", "not_found_text": "error", "cat": "gaming"},
    {"name": "Twitch", "url": "https://www.twitch.tv/{}", "method": "HEAD", "cat": "gaming"},
    {"name": "Xbox", "url": "https://www.xboxgamertag.com/search/{}", "method": "HEAD", "cat": "gaming"},
    {"name": "Roblox", "url": "https://www.roblox.com/user.aspx?username={}", "method": "HEAD", "cat": "gaming"},
    {"name": "Minecraft (NameMC)", "url": "https://namemc.com/profile/{}", "method": "HEAD", "cat": "gaming"},
    {"name": "Chess.com", "url": "https://www.chess.com/member/{}", "method": "HEAD", "cat": "gaming"},
    # Content / Creator
    {"name": "YouTube", "url": "https://www.youtube.com/@{}", "method": "HEAD", "cat": "content"},
    {"name": "Medium", "url": "https://medium.com/@{}", "method": "HEAD", "cat": "content"},
    {"name": "Substack", "url": "https://{}.substack.com", "method": "HEAD", "cat": "content"},
    {"name": "Patreon", "url": "https://www.patreon.com/{}", "method": "HEAD", "cat": "content"},
    {"name": "SoundCloud", "url": "https://soundcloud.com/{}", "method": "HEAD", "cat": "content"},
    {"name": "Spotify", "url": "https://open.spotify.com/user/{}", "method": "HEAD", "cat": "content"},
    {"name": "Bandcamp", "url": "https://{}.bandcamp.com", "method": "HEAD", "cat": "content"},
    {"name": "Flickr", "url": "https://www.flickr.com/people/{}", "method": "HEAD", "cat": "content"},
    {"name": "Vimeo", "url": "https://vimeo.com/{}", "method": "HEAD", "cat": "content"},
    {"name": "Behance", "url": "https://www.behance.net/{}", "method": "HEAD", "cat": "content"},
    {"name": "Dribbble", "url": "https://dribbble.com/{}", "method": "HEAD", "cat": "content"},
    {"name": "500px", "url": "https://500px.com/p/{}", "method": "HEAD", "cat": "content"},
    # Forums / Community
    {"name": "Quora", "url": "https://www.quora.com/profile/{}", "method": "HEAD", "cat": "community"},
    {"name": "Disqus", "url": "https://disqus.com/by/{}/", "method": "HEAD", "cat": "community"},
    {"name": "ProductHunt", "url": "https://www.producthunt.com/@{}", "method": "HEAD", "cat": "community"},
    {"name": "AngelList", "url": "https://angel.co/u/{}", "method": "HEAD", "cat": "professional"},
    {"name": "Crunchbase", "url": "https://www.crunchbase.com/person/{}", "method": "HEAD", "cat": "professional"},
    # Misc / Identity
    {"name": "Gravatar", "url": "https://en.gravatar.com/{}", "method": "HEAD", "cat": "identity"},
    {"name": "About.me", "url": "https://about.me/{}", "method": "HEAD", "cat": "identity"},
    {"name": "Keybase", "url": "https://keybase.io/{}", "method": "GET", "not_found_text": "not found", "cat": "identity"},
    {"name": "Linktree", "url": "https://linktr.ee/{}", "method": "HEAD", "cat": "identity"},
    {"name": "Carrd", "url": "https://{}.carrd.co", "method": "HEAD", "cat": "identity"},
]


async def check_platform(session: aiohttp.ClientSession, platform: dict, username: str) -> Optional[dict]:
    url = platform["url"].format(username)
    method = platform.get("method", "HEAD")
    not_found_text = platform.get("not_found_text", "")

    headers = {
        "User-Agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/121.0.0.0 Safari/537.36",
        "Accept-Language": "en-US,en;q=0.9",
    }

    try:
        timeout = aiohttp.ClientTimeout(total=8)
        if method == "GET" and not_found_text:
            async with session.get(url, headers=headers, timeout=timeout, allow_redirects=True, ssl=False) as resp:
                if resp.status == 200:
                    text = await resp.text(errors="ignore")
                    if not_found_text.lower() in text.lower():
                        return None
                    return {"platform": platform["name"], "url": url, "status": resp.status, "cat": platform.get("cat", "misc")}
                return None
        else:
            async with session.head(url, headers=headers, timeout=timeout, allow_redirects=True, ssl=False) as resp:
                if resp.status in (200, 301, 302, 307, 308):
                    return {"platform": platform["name"], "url": url, "status": resp.status, "cat": platform.get("cat", "misc")}
                return None
    except Exception:
        return None


async def phantom_id_search(username: str):
    """
    Searches for a username across all configured platforms concurrently.
    Returns found profiles, categories, and a risk score.
    """
    results = []
    connector = aiohttp.TCPConnector(ssl=False, limit=30)

    async with aiohttp.ClientSession(connector=connector) as session:
        tasks = [check_platform(session, p, username) for p in PLATFORMS]
        responses = await asyncio.gather(*tasks, return_exceptions=True)

    for r in responses:
        if r and isinstance(r, dict):
            results.append(r)

    # Generate Gravatar avatar URL from username hash
    username_hash = hashlib.md5(username.lower().encode()).hexdigest()
    gravatar_url = f"https://www.gravatar.com/avatar/{username_hash}?d=404&s=200"

    # Risk score: more platforms found = higher exposure score
    total = len(PLATFORMS)
    found = len(results)
    risk_score = round((found / total) * 100, 1)

    # Categorize results
    cats = {}
    for r in results:
        c = r.get("cat", "misc")
        cats[c] = cats.get(c, 0) + 1

    return {
        "username": username,
        "found": found,
        "total_checked": total,
        "risk_score": risk_score,
        "gravatar": gravatar_url,
        "categories": cats,
        "profiles": results,
    }


================================================
FILE: the_big_brother/modules/shadow_map.py
================================================
"""
SHADOW MAP — IP/Domain threat intelligence and reputation analysis.
Queries AbuseIPDB, VirusTotal (public API), Shodan, and URLhaus.
"""

import asyncio
import aiohttp
import os
import socket
from datetime import datetime


ABUSEIPDB_URL = "https://api.abuseipdb.com/api/v2/check"
VIRUSTOTAL_URL = "https://www.virustotal.com/api/v3/ip_addresses/{}"
VIRUSTOTAL_DOMAIN_URL = "https://www.virustotal.com/api/v3/domains/{}"
URLHAUS_URL = "https://urlhaus-api.abuse.ch/v1/host/"
SHODAN_URL = "https://api.shodan.io/shodan/host/{}?key={}"
IPINFO_URL = "https://ipinfo.io/{}/json"

ABUSE_CATEGORIES = {
    1: "DNS Compromise", 2: "DNS Poisoning", 3: "Fraud Orders", 4: "DDoS Attack",
    5: "FTP Brute-Force", 6: "Ping of Death", 7: "Phishing", 8: "Fraud VoIP",
    9: "Open Proxy", 10: "Web Spam", 11: "Email Spam", 12: "Blog Spam",
    13: "VPN IP", 14: "Port Scan", 15: "Hacking", 16: "SQL Injection",
    17: "Spoofing", 18: "Brute-Force", 19: "Bad Web Bot", 20: "Exploited Host",
    21: "Web App Attack", 22: "SSH", 23: "IoT Targeted",
}


def resolve_to_ip(target: str) -> str:
    """Resolve domain to IP if needed."""
    try:
        socket.inet_aton(target)
        return target  # Already an IP
    except socket.error:
        try:
            return socket.gethostbyname(target)
        except:
            return target


async def check_abuseipdb(session: aiohttp.ClientSession, ip: str) -> dict:
    """Query AbuseIPDB for IP reputation."""
    api_key = os.environ.get("ABUSEIPDB_API_KEY", "")
    if not api_key:
        return {"error": "ABUSEIPDB_API_KEY not set", "available": False}

    headers = {"Key": api_key, "Accept": "application/json"}
    params = {"ipAddress": ip, "maxAgeInDays": 90, "verbose": ""}

    try:
        async with session.get(ABUSEIPDB_URL, headers=headers, params=params, timeout=aiohttp.ClientTimeout(total=10), ssl=False) as resp:
            if resp.status == 200:
                data = (await resp.json()).get("data", {})
                category_ids = data.get("reports", [{}])[-1].get("categories", []) if data.get("reports") else []
                categories = [ABUSE_CATEGORIES.get(c, f"Category {c}") for c in category_ids]
                return {
                    "available": True,
                    "ip": ip,
                    "abuse_score": data.get("abuseConfidenceScore", 0),
                    "country": data.get("countryCode"),
                    "isp": data.get("isp"),
                    "domain": data.get("domain"),
                    "is_tor": data.get("isTor", False),
                    "is_whitelisted": data.get("isWhitelisted", False),
                    "total_reports": data.get("totalReports", 0),
                    "last_reported": data.get("lastReportedAt"),
                    "categories": categories,
                    "usage_type": data.get("usageType"),
                }
    except Exception as e:
        return {"error": str(e), "available": False}
    return {"available": False}


async def check_virustotal(session: aiohttp.ClientSession, target: str, is_ip: bool = True) -> dict:
    """Query VirusTotal for IP or domain reputation."""
    api_key = os.environ.get("VIRUSTOTAL_API_KEY", "")
    if not api_key:
        return {"error": "VIRUSTOTAL_API_KEY not set", "available": False}

    url = VIRUSTOTAL_URL.format(target) if is_ip else VIRUSTOTAL_DOMAIN_URL.format(target)
    headers = {"x-apikey": api_key}

    try:
        async with session.get(url, headers=headers, timeout=aiohttp.ClientTimeout(total=10), ssl=False) as resp:
            if resp.status == 200:
                data = (await resp.json()).get("data", {}).get("attributes", {})
                stats = data.get("last_analysis_stats", {})
                malicious = stats.get("malicious", 0)
                suspicious = stats.get("suspicious", 0)
                harmless = stats.get("harmless", 0)
                undetected = stats.get("undetected", 0)
                total = malicious + suspicious + harmless + undetected
                return {
                    "available": True,
                    "malicious": malicious,
                    "suspicious": suspicious,
                    "harmless": harmless,
                    "undetected": undetected,
                    "total_engines": total,
                    "reputation": data.get("reputation", 0),
                    "tags": data.get("tags", []),
                    "country": data.get("country"),
                    "as_owner": data.get("as_owner"),
                    "threat_level": "CRITICAL" if malicious > 5 else ("HIGH" if malicious > 0 else ("SUSPICIOUS" if suspicious > 0 else "CLEAN")),
                }
    except Exception as e:
        return {"error": str(e), "available": False}
    return {"available": False}


async def check_urlhaus(session: aiohttp.ClientSession, target: str) -> dict:
    """Query URLhaus for malicious URL data."""
    try:
        async with session.post(URLHAUS_URL, data={"host": target}, timeout=aiohttp.ClientTimeout(total=8), ssl=False) as resp:
            if resp.status == 200:
                data = await resp.json()
                if data.get("query_status") == "is_host":
                    urls = data.get("urls", [])[:5]
                    return {
                        "available": True,
                        "found": True,
                        "url_count": len(data.get("urls", [])),
                        "urls": [
                            {"url": u.get("url"), "status": u.get("url_status"), "threat": u.get("threat"), "date": u.get("date_added")}
                            for u in urls
                        ],
                    }
                return {"available": True, "found": False}
    except Exception as e:
        return {"available": True, "found": False, "error": str(e)}
    return {"available": False}


async def check_ipinfo(session: aiohttp.ClientSession, ip: str) -> dict:
    """Get basic IP geolocation and ASN info from ipinfo.io (free tier)."""
    try:
        async with session.get(f"https://ipinfo.io/{ip}/json", timeout=aiohttp.ClientTimeout(total=8), ssl=False) as resp:
            if resp.status == 200:
                data = await resp.json()
                return {
                    "ip": data.get("ip"),
                    "city": data.get("city"),
                    "region": data.get("region"),
                    "country": data.get("country"),
                    "org": data.get("org"),
                    "timezone": data.get("timezone"),
                    "loc": data.get("loc"),
                    "hostname": data.get("hostname"),
                }
    except Exception as e:
        return {"error": str(e)}
    return {}


async def shadow_map_analyze(target: str):
    """
    Main SHADOW MAP entry: analyzes IP or domain for threat intelligence.
    """
    # Detect if IP or domain
    try:
        socket.inet_aton(target)
        is_ip = True
        ip = target
    except socket.error:
        is_ip = False
        ip = resolve_to_ip(target)

    connector = aiohttp.TCPConnector(ssl=False, limit=10)
    async with aiohttp.ClientSession(connector=connector) as session:
        geo_task = check_ipinfo(session, ip)
        abuse_task = check_abuseipdb(session, ip)
        vt_task = check_virustotal(session, target, is_ip=is_ip)
        urlhaus_task = check_urlhaus(session, target)

        geo, abuse, vt, urlhaus = await asyncio.gather(
            geo_task, abuse_task, vt_task, urlhaus_task,
            return_exceptions=True
        )

    # Handle exceptions from gather
    if isinstance(geo, Exception): geo = {}
    if isinstance(abuse, Exception): abuse = {"available": False}
    if isinstance(vt, Exception): vt = {"available": False}
    if isinstance(urlhaus, Exception): urlhaus = {"available": False}

    # Composite threat score (0-100)
    score = 0
    factors = []

    if isinstance(abuse, dict) and abuse.get("available"):
        abuse_score = abuse.get("abuse_score", 0)
        score += int(abuse_score * 0.5)
        if abuse_score > 50:
            factors.append(f"HIGH ABUSE SCORE ({abuse_score}%)")
        if abuse.get("is_tor"):
            score += 20
            factors.append("TOR EXIT NODE")

    if isinstance(vt, dict) and vt.get("available"):
        malicious = vt.get("malicious", 0)
        suspicious = vt.get("suspicious", 0)
        score += min(malicious * 5 + suspicious * 2, 40)
        if malicious > 0:
            factors.append(f"{malicious} VT ENGINES FLAGGED MALICIOUS")
        if suspicious > 0:
            factors.append(f"{suspicious} VT ENGINES FLAGGED SUSPICIOUS")

    if isinstance(urlhaus, dict) and urlhaus.get("found"):
        score += 15
        factors.append(f"FOUND IN URLHAUS ({urlhaus.get('url_count', 0)} MALICIOUS URLS)")

    score = min(score, 100)
    threat_level = "CRITICAL" if score >= 80 else ("HIGH" if score >= 50 else ("MEDIUM" if score >= 20 else "CLEAN"))

    return {
        "target": target,
        "resolved_ip": ip,
        "is_ip": is_ip,
        "threat_score": score,
        "threat_level": threat_level,
        "threat_factors": factors,
        "geo": geo if isinstance(geo, dict) else {},
        "abuseipdb": abuse if isinstance(abuse, dict) else {},
        "virustotal": vt if isinstance(vt, dict) else {},
        "urlhaus": urlhaus if isinstance(urlhaus, dict) else {},
    }


================================================
FILE: the_big_brother/modules/sigint_sweep.py
================================================
"""
SIGINT SWEEP — Social Intelligence gathering.
Fetches Reddit posts, Google News RSS, and Hacker News mentions
for a given keyword/target. Returns a ranked feed with sentiment hints.
"""

import asyncio
import aiohttp
import xml.etree.ElementTree as ET
from datetime import datetime
import re


POSITIVE_WORDS = {"great", "good", "love", "awesome", "best", "win", "launch", "growth", "success", "excellent", "top", "hire", "partner"}
NEGATIVE_WORDS = {"hack", "breach", "leak", "fail", "bad", "worst", "scam", "fraud", "attack", "lawsuit", "fine", "exposed", "stolen", "malware", "ransomware", "phish"}


def detect_sentiment(text: str) -> str:
    text_lower = text.lower()
    neg = sum(1 for w in NEGATIVE_WORDS if w in text_lower)
    pos = sum(1 for w in POSITIVE_WORDS if w in text_lower)
    if neg > pos:
        return "NEGATIVE"
    if pos > neg:
        return "POSITIVE"
    return "NEUTRAL"


def clean_html(raw: str) -> str:
    clean = re.sub(r'<[^>]+>', '', raw)
    clean = re.sub(r'&amp;', '&', clean)
    clean = re.sub(r'&lt;', '<', clean)
    clean = re.sub(r'&gt;', '>', clean)
    clean = re.sub(r'&quot;', '"', clean)
    clean = re.sub(r'\s+', ' ', clean).strip()
    return clean[:300]


async def fetch_reddit(session: aiohttp.ClientSession, query: str) -> list:
    """Fetch from Reddit's JSON API (no auth needed for public search)."""
    results = []
    headers = {"User-Agent": "TheBigBrotherV4:OSINT:1.0"}
    url = f"https://www.reddit.com/search.json?q={query}&sort=new&limit=15&type=link"
    try:
        async with session.get(url, headers=headers, timeout=aiohttp.ClientTimeout(total=10), ssl=False) as resp:
            if resp.status == 200:
                data = await resp.json()
                posts = data.get("data", {}).get("children", [])
                for post in posts:
                    p = post.get("data", {})
                    title = p.get("title", "")
                    text = p.get("selftext", "")[:200]
                    results.append({
                        "source": "Reddit",
                        "subreddit": f"r/{p.get('subreddit', '')}",
                        "title": title,
                        "snippet": text or title,
                        "url": f"https://reddit.com{p.get('permalink', '')}",
                        "score": p.get("score", 0),
                        "comments": p.get("num_comments", 0),
                        "date": datetime.utcfromtimestamp(p.get("created_utc", 0)).strftime("%Y-%m-%d"),
                        "sentiment": detect_sentiment(title + " " + text),
                    })
    except Exception as e:
        print(f"Reddit fetch error: {e}")
    return results


async def fetch_google_news(session: aiohttp.ClientSession, query: str) -> list:
    """Fetch from Google News RSS feed (no auth needed, public)."""
    results = []
    url = f"https://news.google.com/rss/search?q={query}&hl=en-US&gl=US&ceid=US:en"
    try:
        async with session.get(url, timeout=aiohttp.ClientTimeout(total=10), ssl=False) as resp:
            if resp.status == 200:
                text = await resp.text()
                root = ET.fromstring(text)
                channel = root.find("channel")
                if channel is not None:
                    for item in channel.findall("item")[:15]:
                        title = item.findtext("title", "")
                        link = item.findtext("link", "")
                        pub_date = item.findtext("pubDate", "")
                        source_el = item.find("source")
                        source_name = source_el.text if source_el is not None else "News"
                        description = clean_html(item.findtext("description", ""))
                        results.append({
                            "source": "News",
                            "outlet": source_name,
                            "title": title,
                            "snippet": description,
                            "url": link,
                            "date": pub_date[:16] if pub_date else "",
                            "sentiment": detect_sentiment(title + " " + description),
                        })
    except Exception as e:
        print(f"Google News fetch error: {e}")
    return results


async def fetch_hackernews(session: aiohttp.ClientSession, query: str) -> list:
    """Search Hacker News via Algolia API (public, no auth)."""
    results = []
    url = f"https://hn.algolia.com/api/v1/search?query={query}&tags=story&hitsPerPage=10"
    try:
        async with session.get(url, timeout=aiohttp.ClientTimeout(total=8), ssl=False) as resp:
            if resp.status == 200:
                data = await resp.json()
                for hit in data.get("hits", []):
                    title = hit.get("title", "")
                    ts = hit.get("created_at", "")[:10]
                    results.append({
                        "source": "HackerNews",
                        "subreddit": "HN",
                        "title": title,
                        "snippet": hit.get("story_text", "")[:200] or title,
                        "url": hit.get("url") or f"https://news.ycombinator.com/item?id={hit.get('objectID')}",
                        "score": hit.get("points", 0),
                        "comments": hit.get("num_comments", 0),
                        "date": ts,
                        "sentiment": detect_sentiment(title),
                    })
    except Exception as e:
        print(f"HackerNews fetch error: {e}")
    return results


async def fetch_twitter_nitter(session: aiohttp.ClientSession, query: str) -> list:
    """Fetch recent tweets via public Nitter RSS instances."""
    results = []
    nitter_instances = [
        "https://nitter.poast.org",
        "https://nitter.privacydev.net",
        "https://nitter.1d4.us",
    ]
    for instance in nitter_instances:
        url = f"{instance}/search/rss?q={query}&f=tweets"
        try:
            async with session.get(url, timeout=aiohttp.ClientTimeout(total=6), ssl=False) as resp:
                if resp.status == 200:
                    text = await resp.text()
                    root = ET.fromstring(text)
                    channel = root.find("channel")
                    if channel is not None:
                        for item in channel.findall("item")[:10]:
                            title = item.findtext("title", "")
                            link = item.findtext("link", "")
                            pub_date = item.findtext("pubDate", "")
                            creator = item.findtext("{http://purl.org/dc/elements/1.1/}creator", "")
                            results.append({
                                "source": "Twitter/X",
                                "subreddit": creator,
                                "title": title,
                                "snippet": clean_html(title)[:200],
                                "url": link.replace(instance, "https://twitter.com"),
                                "score": 0,
                                "comments": 0,
                                "date": pub_date[:16] if pub_date else "",
                                "sentiment": detect_sentiment(title),
                            })
                    if results:
                        break  # Got results from this instance
        except Exception:
            continue
    return results


async def sigint_sweep(query: str):
    """
    Main SIGINT SWEEP entry point.
    Returns merged feed from Reddit, Google News, HackerNews, and Twitter/X.
    """
    connector = aiohttp.TCPConnector(ssl=False, limit=20)
    async with aiohttp.ClientSession(connector=connector) as session:
        reddit_results, news_results, hn_results, twitter_results = await asyncio.gather(
            fetch_reddit(session, query),
            fetch_google_news(session, query),
            fetch_hackernews(session, query),
            fetch_twitter_nitter(session, query),
        )

    all_results = reddit_results + news_results + hn_results + twitter_results

    # Sentiment summary
    sentiments = {"POSITIVE": 0, "NEGATIVE": 0, "NEUTRAL": 0}
    for item in all_results:
        sentiments[item.get("sentiment", "NEUTRAL")] += 1

    return {
        "query": query,
        "total": len(all_results),
        "sources": {
            "reddit": len(reddit_results),
            "news": len(news_results),
            "hackernews": len(hn_results),
            "twitter": len(twitter_results),
        },
        "sentiment_summary": sentiments,
        "feed": all_results,
    }


================================================
FILE: the_big_brother/modules/ssl_sentinel.py
================================================
import ssl
import socket
import datetime

def get_ssl_info(domain: str):
    """
    Connects to a domain and retrieves SSL certificate details.
    """
    ctx = ssl.create_default_context()
    results = {
        "domain": domain,
        "issuer": {},
        "subject": {},
        "sans": [],
        "not_before": "",
        "not_after": "",
        "expired": False,
        "error": None
    }
    
    try:
        with socket.create_connection((domain, 443), timeout=10) as sock:
            with ctx.wrap_socket(sock, server_hostname=domain) as ssock:
                cert = ssock.getpeercert()
                
                # Extract Issuer
                for item in cert.get('issuer', []):
                    key, val = item[0]
                    results['issuer'][key] = val
                    
                # Extract Subject
                for item in cert.get('subject', []):
                    key, val = item[0]
                    results['subject'][key] = val
                
                # Extract SANs (Subject Alternative Names)
                # These are gold mines for subdomains
                sans = cert.get('subjectAltName', [])
                results['sans'] = [val for key, val in sans if key == 'DNS']
                
                # Dates
                results['not_before'] = cert.get('notBefore', '')
                results['not_after'] = cert.get('notAfter', '')
                
                # Check Expiry
                if results['not_after']:
                    # Format: May 25 12:00:00 2026 GMT
                    # Python ssl usually returns this format
                    try:
                        expire_date = datetime.datetime.strptime(results['not_after'], "%b %d %H:%M:%S %Y %Z")
                        if expire_date < datetime.datetime.utcnow():
                            results['expired'] = True
                    except:
                        pass
                        
    except Exception as e:
        results['error'] = str(e)
        
    return results


================================================
FILE: the_big_brother/modules/wayback_spectre.py
================================================
"""
WAYBACK SPECTRE — Wayback Machine CDX timeline + sensitive-path flagging.
Uses the free CDX server to enumerate every archived snapshot, then surfaces
historical paths that often leak data (admin/, .env, .git, backup files, etc).
"""
import asyncio
from collections import Counter
from urllib.parse import urlparse

import requests


SENSITIVE_PATTERNS = [
    r"/admin", r"/login", r"/wp-admin", r"/wp-login", r"/phpmyadmin",
    r"\.env", r"\.git", r"\.svn", r"\.htaccess", r"\.htpasswd",
    r"/config", r"/backup", r"/dump", r"/install", r"/setup",
    r"\.bak$", r"\.old$", r"\.sql$", r"\.zip$", r"\.tar\.gz$",
    r"/api/internal", r"/debug", r"/test", r"/private", r"/secret",
    r"id_rsa", r"\.pem$", r"\.key$", r"credentials", r"/dashboard",
]


def _cdx(domain: str, limit: int = 5000):
    url = "https://web.archive.org/cdx/search/cdx"
    params = {
        "url": f"{domain}/*",
        "output": "json",
        "limit": limit,
        "fl": "timestamp,original,mimetype,statuscode,digest",
        "filter": "statuscode:200",
        "collapse": "urlkey",
    }
    try:
        r = requests.get(url, params=params, timeout=15)
        if r.status_code != 200:
            return []
        rows = r.json()
        if not rows or len(rows) < 2:
            return []
        header = rows[0]
        return [dict(zip(header, row)) for row in rows[1:]]
    except Exception:
        return []


def _flag_sensitive(rows: list) -> list:
    import re
    flagged = []
    seen = set()
    for row in rows:
        url = row["original"]
        for pat in SENSITIVE_PATTERNS:
            if re.search(pat, url, re.IGNORECASE):
                key = (url, pat)
                if key in seen:
                    continue
                seen.add(key)
                ts = row["timestamp"]
                flagged.append({
                    "url": url,
                    "pattern": pat,
                    "timestamp": ts,
                    "snapshot": f"https://web.archive.org/web/{ts}/{url}",
                    "mime": row.get("mimetype", ""),
                })
                break
    return flagged[:80]


def _yearly_buckets(rows: list) -> list:
    by_year = Counter()
    for r in rows:
        ts = r["timestamp"]
        if len(ts) >= 4:
            by_year[ts[:4]] += 1
    return [{"year": y, "count": c} for y, c in sorted(by_year.items())]


def _mime_buckets(rows: list) -> list:
    c = Counter(r.get("mimetype", "unknown") for r in rows)
    return [{"mime": m, "count": n} for m, n in c.most_common(10)]


async def wayback_spectre(target: str) -> dict:
    target = target.strip()
    if target.startswith(("http://", "https://")):
        target = urlparse(target).netloc
    if not target:
        return {"error": "Invalid target"}

    rows = await asyncio.to_thread(_cdx, target)
    if not rows:
        return {
            "target": target,
            "total_snapshots": 0,
            "first_seen": None,
            "last_seen": None,
            "yearly": [],
            "mimes": [],
            "sensitive": [],
            "sample": [],
            "message": "No snapshots found in Wayback Machine.",
        }

    first = min(rows, key=lambda r: r["timestamp"])
    last = max(rows, key=lambda r: r["timestamp"])

    sensitive = _flag_sensitive(rows)
    yearly = _yearly_buckets(rows)
    mimes = _mime_buckets(rows)

    sample = []
    seen = set()
    for r in rows:
        u = r["original"]
        if u in seen:
            continue
        seen.add(u)
        sample.append({
            "url": u,
            "timestamp": r["timestamp"],
            "snapshot": f"https://web.archive.org/web/{r['timestamp']}/{u}",
        })
        if len(sample) >= 50:
            break

    return {
        "target": target,
        "total_snapshots": len(rows),
        "first_seen": first["timestamp"],
        "last_seen": last["timestamp"],
        "first_url": first["original"],
        "yearly": yearly,
        "mimes": mimes,
        "sensitive_count": len(sensitive),
        "sensitive": sensitive,
        "sample": sample,
    }


================================================
FILE: the_big_brother/notify.py
================================================
"""The Big Brother Notify Module

This module defines the objects for notifying the caller about the
results of queries.
"""
from the_big_brother.result import QueryStatus
from colorama import Fore, Style
import webbrowser

# Global variable to count the number of results.
globvar = 0


class QueryNotify:
    """Query Notify Object.

    Base class that describes methods available to notify the results of
    a query.
    It is intended that other classes inherit from this base class and
    override the methods to implement specific functionality.
    """

    def __init__(self, result=None):
        """Create Query Notify Object.

        Contains information about a specific method of notifying the results
        of a query.

        Keyword Arguments:
        self                   -- This object.
        result                 -- Object of type QueryResult() containing
                                  results for this query.

        Return Value:
        Nothing.
        """

        self.result = result

        # return

    def start(self, message=None):
        """Notify Start.

        Notify method for start of query.  This method will be called before
        any queries are performed.  This method will typically be
        overridden by higher level classes that will inherit from it.

        Keyword Arguments:
        self                   -- This object.
        message                -- Object that is used to give context to start
                                  of query.
                                  Default is None.

        Return Value:
        Nothing.
        """

        # return

    def update(self, result):
        """Notify Update.

        Notify method for query result.  This method will typically be
        overridden by higher level classes that will inherit from it.

        Keyword Arguments:
        self                   -- This object.
        result                 -- Object of type QueryResult() containing
                                  results for this query.

        Return Value:
        Nothing.
        """

        self.result = result

        # return

    def finish(self, message=None):
        """Notify Finish.

        Notify method for finish of query.  This method will be called after
        all queries have been performed.  This method will typically be
        overridden by higher level classes that will inherit from it.

        Keyword Arguments:
        self                   -- This object.
        message                -- Object that is used to give context to start
                                  of query.
                                  Default is None.

        Return Value:
        Nothing.
        """

        # return

    def __str__(self):
        """Convert Object To String.

        Keyword Arguments:
        self                   -- This object.

        Return Value:
        Nicely formatted string to get information about this object.
        """
        return str(self.result)


class QueryNotifyPrint(QueryNotify):
    """Query Notify Print Object.

    Query notify class that prints results.
    """

    def __init__(self, result=None, verbose=False, print_all=False, browse=False):
        """Create Query Notify Print Object.

        Contains information about a specific method of notifying the results
        of a query.

        Keyword Arguments:
        self                   -- This object.
        result                 -- Object of type QueryResult() containing
                                  results for this query.
        verbose                -- Boolean indicating whether to give verbose output.
        print_all              -- Boolean indicating whether to only print all sites, including not found.
        browse                 -- Boolean indicating whether to open found sites in a web browser.

        Return Value:
        Nothing.
        """

        super().__init__(result)
        self.verbose = verbose
        self.print_all = print_all
        self.browse = browse

        return

    def start(self, message):
        """Notify Start.

        Will print the title to the standard output.

        Keyword Arguments:
        self                   -- This object.
        message                -- String containing username that the series
                                  of queries are about.

        Return Value:
        Nothing.
        """

        title = "Checking username"

        print(Style.BRIGHT + Fore.GREEN + "[" +
              Fore.YELLOW + "*" +
              Fore.GREEN + f"] {title}" +
              Fore.WHITE + f" {message}" +
              Fore.GREEN + " on:")
        # An empty line between first line and the result(more clear output)
        print('\r')

        return

    def countResults(self):
        """This function counts the number of results. Every time the function is called,
        the number of results is increasing.

        Keyword Arguments:
        self                   -- This object.

        Return Value:
        The number of results by the time we call the function.
        """
        global globvar
        globvar += 1
        return globvar

    def update(self, result):
        """Notify Update.

        Will print the query result to the standard output.

        Keyword Arguments:
        self                   -- This object.
        result                 -- Object of type QueryResult() containing
                                  results for this query.

        Return Value:
        Nothing.
        """
        self.result = result

        response_time_text = ""
        if self.result.query_time is not None and self.verbose is True:
            response_time_text = f" [{round(self.result.query_time * 1000)}ms]"

        # Output to the terminal is desired.
        if result.status == QueryStatus.CLAIMED:
            self.countResults()
            print(Style.BRIGHT + Fore.WHITE + "[" +
                  Fore.GREEN + "+" +
                  Fore.WHITE + "]" +
                  response_time_text +
                  Fore.GREEN +
                  f" {self.result.site_name}: " +
                  Style.RESET_ALL +
                  f"{self.result.site_url_user}")
            if self.browse:
                webbrowser.open(self.result.site_url_user, 2)

        elif result.status == QueryStatus.AVAILABLE:
            if self.print_all:
                print(Style.BRIGHT + Fore.WHITE + "[" +
                      Fore.RED + "-" +
                      Fore.WHITE + "]" +
                      response_time_text +
                      Fore.GREEN + f" {self.result.site_name}:" +
                      Fore.YELLOW + " Not Found!")

        elif result.status == QueryStatus.UNKNOWN:
            if self.print_all:
                print(Style.BRIGHT + Fore.WHITE + "[" +
                      Fore.RED + "-" +
                      Fore.WHITE + "]" +
                      Fore.GREEN + f" {self.result.site_name}:" +
                      Fore.RED + f" {self.result.context}" +
                      Fore.YELLOW + " ")

        elif result.status == QueryStatus.ILLEGAL:
            if self.print_all:
                msg = "Illegal Username Format For This Site!"
                print(Style.BRIGHT + Fore.WHITE + "[" +
                      Fore.RED + "-" +
                      Fore.WHITE + "]" +
                      Fore.GREEN + f" {self.result.site_name}:" +
                      Fore.YELLOW + f" {msg}")
                
        elif result.status == QueryStatus.WAF:
            if self.print_all:
                print(Style.BRIGHT + Fore.WHITE + "[" +
                      Fore.RED + "-" +
                      Fore.WHITE + "]" +
                      Fore.GREEN + f" {self.result.site_name}:" +
                      Fore.RED + " Blocked by bot detection" +
                      Fore.YELLOW + " (proxy may help)")

        else:
            # It should be impossible to ever get here...
            raise ValueError(
                f"Unknown Query Status '{result.status}' for site '{self.result.site_name}'"
            )

        return

    def finish(self, message="The processing has been finished."):
        """Notify Start.
        Will print the last line to the standard output.
        Keyword Arguments:
        self                   -- This object.
        message                -- The 2 last phrases.
        Return Value:
        Nothing.
        """
        NumberOfResults = self.countResults() - 1

        print(Style.BRIGHT + Fore.GREEN + "[" +
              Fore.YELLOW + "*" +
              Fore.GREEN + "] Search completed with" +
              Fore.WHITE + f" {NumberOfResults} " +
              Fore.GREEN + "results" + Style.RESET_ALL
              )

    def __str__(self):
        """Convert Object To String.

        Keyword Arguments:
        self                   -- This object.

        Return Value:
        Nicely formatted string to get information about this object.
        """
        return str(self.result)


================================================
FILE: the_big_brother/py.typed
================================================


================================================
FILE: the_big_brother/resources/data.json
================================================
{
  "$schema": "data.schema.json",
  "1337x": {
    "errorMsg": [
      "<title>Error something went wrong.</title>",
      "<head><title>404 Not Found</title></head>"
    ],
    "errorType": "message",
    "regexCheck": "^[A-Za-z0-9]{4,12}$",
    "url": "https://www.1337x.to/user/{}/",
    "urlMain": "https://www.1337x.to/",
    "username_claimed": "FitGirl"
  },
  "2Dimensions": {
    "errorType": "status_code",
    "url": "https://2Dimensions.com/a/{}",
    "urlMain": "https://2Dimensions.com/",
    "username_claimed": "blue"
  },
  "7Cups": {
    "errorType": "status_code",
    "url": "https://www.7cups.com/@{}",
    "urlMain": "https://www.7cups.com/",
    "username_claimed": "blue"
  },
  "9GAG": {
    "errorType": "status_code",
    "url": "https://www.9gag.com/u/{}",
    "urlMain": "https://www.9gag.com/",
    "username_claimed": "blue"
  },
  "APClips": {
    "errorMsg": "Amateur Porn Content Creators",
    "errorType": "message",
    "isNSFW": true,
    "url": "https://apclips.com/{}",
    "urlMain": "https://apclips.com/",
    "username_claimed": "onlybbyraq"
  },
  "About.me": {
    "errorType": "status_code",
    "url": "https://about.me/{}",
    "urlMain": "https://about.me/",
    "username_claimed": "blue"
  },
  "Academia.edu": {
    "errorType": "status_code",
    "regexCheck": "^[^.]*$",
    "url": "https://independent.academia.edu/{}",
    "urlMain": "https://www.academia.edu/",
    "username_claimed": "blue"
  },
  "AdmireMe.Vip": {
    "errorMsg": "Page Not Found",
    "errorType": "message",
    "isNSFW": true,
    "url": "https://admireme.vip/{}",
    "urlMain": "https://admireme.vip/",
    "username_claimed": "DemiDevil"
  },
  "Airbit": {
    "errorType": "status_code",
    "url": "https://airbit.com/{}",
    "urlMain": "https://airbit.com/",
    "username_claimed": "airbit"
  },
  "Airliners": {
    "errorType": "status_code",
    "url": "https://www.airliners.net/user/{}/profile/photos",
    "urlMain": "https://www.airliners.net/",
    "username_claimed": "yushinlin"
  },
  "All Things Worn": {
    "errorMsg": "Sell Used Panties",
    "errorType": "message",
    "isNSFW": true,
    "url": "https://www.allthingsworn.com/profile/{}",
    "urlMain": "https://www.allthingsworn.com",
    "username_claimed": "pink"
  },
  "AllMyLinks": {
    "errorMsg": "Page not found",
    "errorType": "message",
    "regexCheck": "^[a-z0-9][a-z0-9-]{2,32}$",
    "url": "https://allmylinks.com/{}",
    "urlMain": "https://allmylinks.com/",
    "username_claimed": "blue"
  },
  "AniWorld": {
    "errorMsg": "Dieses Profil ist nicht verf\u00fcgbar",
    "errorType": "message",
    "url": "https://aniworld.to/user/profil/{}",
    "urlMain": "https://aniworld.to/",
    "username_claimed": "blue"
  },
  "Anilist": {
    "errorType": "status_code",
    "regexCheck": "^[A-Za-z0-9]{2,20}$",
    "request_method": "POST",
    "request_payload": {
      "query": "query($name:String){User(name:$name){id}}",
      "variables": {
        "name": "{}"
      }
    },
    "url": "https://anilist.co/user/{}/",
    "urlMain": "https://anilist.co/",
    "urlProbe": "https://graphql.anilist.co/",
    "username_claimed": "Josh"
  },
  "Apple Developer": {
    "errorType": "status_code",
    "url": "https://developer.apple.com/forums/profile/{}",
    "urlMain": "https://developer.apple.com",
    "username_claimed": "lio24d"
  },
  "Apple Discussions": {
    "errorMsg": "Looking for something in Apple Support Communities?",
    "errorType": "message",
    "url": "https://discussions.apple.com/profile/{}",
    "urlMain": "https://discussions.apple.com",
    "username_claimed": "jason"
  },
  "Aparat": {
    "errorType": "status_code",
    "request_method": "GET",
    "url": "https://www.aparat.com/{}/",
    "urlMain": "https://www.aparat.com/",
    "urlProbe": "https://www.aparat.com/api/fa/v1/user/user/information/username/{}",
    "username_claimed": "jadi"
  },
  "Archive of Our Own": {
    "errorType": "status_code",
    "regexCheck": "^[^.]*?$",
    "url": "https://archiveofourown.org/users/{}",
    "urlMain": "https://archiveofourown.org/",
    "username_claimed": "test"
  },
  "Archive.org": {
    "__comment__": "'The resource could not be found' relates to archive downtime",
    "errorMsg": [
      "could not fetch an account with user item identifier",
      "The resource could not be found",
      "Internet Archive services are temporarily offline"
    ],
    "errorType": "message",
    "url": "https://archive.org/details/@{}",
    "urlMain": "https://archive.org",
    "urlProbe": "https://archive.org/details/@{}?noscript=true",
    "username_claimed": "blue"
  },
  "Arduino Forum": {
    "errorType": "status_code",
    "url": "https://forum.arduino.cc/u/{}/summary",
    "urlMain": "https://forum.arduino.cc/",
    "username_claimed": "system"
  },
  "ArtStation": {
    "errorType": "status_code",
    "url": "https://www.artstation.com/{}",
    "urlMain": "https://www.artstation.com/",
    "username_claimed": "Blue"
  },
  "Asciinema": {
    "errorType": "status_code",
    "url": "https://asciinema.org/~{}",
    "urlMain": "https://asciinema.org",
    "username_claimed": "red"
  },
  "Ask Fedora": {
    "errorType": "status_code",
    "url": "https://ask.fedoraproject.org/u/{}",
    "urlMain": "https://ask.fedoraproject.org/",
    "username_claimed": "red"
  },
  "Atcoder": {
    "errorType": "status_code",
    "url": "https://atcoder.jp/users/{}",
    "urlMain": "https://atcoder.jp/",
    "username_claimed": "ksun48"
  },
  "Vjudge": {
    "errorType": "status_code",
    "url": "https://VJudge.net/user/{}",
    "urlMain": "https://VJudge.net/",
    "username_claimed": "tokitsukaze"
  },
  "Audiojungle": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z0-9_]+$",
    "url": "https://audiojungle.net/user/{}",
    "urlMain": "https://audiojungle.net/",
    "username_claimed": "blue"
  },
  "Autofrage": {
    "errorType": "status_code",
    "url": "https://www.autofrage.net/nutzer/{}",
    "urlMain": "https://www.autofrage.net/",
    "username_claimed": "autofrage"
  },
  "Avizo": {
    "errorType": "response_url",
    "errorUrl": "https://www.avizo.cz/",
    "url": "https://www.avizo.cz/{}/",
    "urlMain": "https://www.avizo.cz/",
    "username_claimed": "blue"
  },
  "AWS Skills Profile": {
    "errorType": "message",
    "errorMsg": "shareProfileAccepted\":false",
    "url": "https://skillsprofile.skillbuilder.aws/user/{}/",
    "urlMain": "https://skillsprofile.skillbuilder.aws",
    "username_claimed": "mayank04pant"
  },
  "BOOTH": {
    "errorType": "response_url",
    "errorUrl": "https://booth.pm/",
    "regexCheck": "^[\\w@-]+?$",
    "url": "https://{}.booth.pm/",
    "urlMain": "https://booth.pm/",
    "username_claimed": "blue"
  },
  "Bandcamp": {
    "errorType": "status_code",
    "url": "https://www.bandcamp.com/{}",
    "urlMain": "https://www.bandcamp.com/",
    "username_claimed": "blue"
  },
  "Bazar.cz": {
    "errorType": "response_url",
    "errorUrl": "https://www.bazar.cz/error404.aspx",
    "url": "https://www.bazar.cz/{}/",
    "urlMain": "https://www.bazar.cz/",
    "username_claimed": "pianina"
  },
  "Behance": {
    "errorType": "status_code",
    "url": "https://www.behance.net/{}",
    "urlMain": "https://www.behance.net/",
    "username_claimed": "blue"
  },
  "Bezuzyteczna": {
    "errorType": "status_code",
    "url": "https://bezuzyteczna.pl/uzytkownicy/{}",
    "urlMain": "https://bezuzyteczna.pl",
    "username_claimed": "Jackson"
  },
  "BiggerPockets": {
    "errorType": "status_code",
    "url": "https://www.biggerpockets.com/users/{}",
    "urlMain": "https://www.biggerpockets.com/",
    "username_claimed": "blue"
  },
  "BioHacking": {
    "errorType": "status_code",
    "url": "https://forum.dangerousthings.com/u/{}",
    "urlMain": "https://forum.dangerousthings.com/",
    "username_claimed": "blue"
  },
  "BitBucket": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z0-9-_]{1,30}$",
    "url": "https://bitbucket.org/{}/",
    "urlMain": "https://bitbucket.org/",
    "username_claimed": "white"
  },
  "Bitwarden Forum": {
    "errorType": "status_code",
    "regexCheck": "^(?![.-])[a-zA-Z0-9_.-]{3,20}$",
    "url": "https://community.bitwarden.com/u/{}/summary",
    "urlMain": "https://bitwarden.com/",
    "username_claimed": "blue"
  },
  "Blipfoto": {
    "errorType": "status_code",
    "url": "https://www.blipfoto.com/{}",
    "urlMain": "https://www.blipfoto.com/",
    "username_claimed": "blue"
  },
  "Blitz Tactics": {
    "errorMsg": "That page doesn't exist",
    "errorType": "message",
    "url": "https://blitztactics.com/{}",
    "urlMain": "https://blitztactics.com/",
    "username_claimed": "Lance5500"
  },
  "Blogger": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z][a-zA-Z0-9_-]*$",
    "url": "https://{}.blogspot.com",
    "urlMain": "https://www.blogger.com/",
    "username_claimed": "blue"
  },
  "Bluesky": {
    "errorType": "status_code",
    "url": "https://bsky.app/profile/{}.bsky.social",
    "urlProbe": "https://public.api.bsky.app/xrpc/app.bsky.actor.getProfile?actor={}.bsky.social",
    "urlMain": "https://bsky.app/",
    "username_claimed": "mcuban"
  },
  "BongaCams": {
    "errorType": "status_code",
    "isNSFW": true,
    "url": "https://pt.bongacams.com/profile/{}",
    "urlMain": "https://pt.bongacams.com",
    "username_claimed": "asuna-black"
  },
  "Bookcrossing": {
    "errorType": "status_code",
    "url": "https://www.bookcrossing.com/mybookshelf/{}/",
    "urlMain": "https://www.bookcrossing.com/",
    "username_claimed": "blue"
  },
  "BoardGameGeek": {
    "errorMsg": "\"isValid\":true",
    "errorType": "message",
    "url": "https://boardgamegeek.com/user/{}",
    "urlMain": "https://boardgamegeek.com/",
    "urlProbe": "https://api.geekdo.com/api/accounts/validate/username?username={}",
    "username_claimed": "blue"
  },
  "BraveCommunity": {
    "errorType": "status_code",
    "url": "https://community.brave.com/u/{}/",
    "urlMain": "https://community.brave.com/",
    "username_claimed": "blue"
  },
  "BreachSta.rs Forum": {
    "errorMsg": "<title>Error - BreachStars</title>",
    "errorType": "message",
    "url": "https://breachsta.rs/profile/{}",
    "urlMain": "https://breachsta.rs/",
    "username_claimed": "Sleepybubble"
  },
  "BugCrowd": {
    "errorType": "status_code",
    "url": "https://bugcrowd.com/{}",
    "urlMain": "https://bugcrowd.com/",
    "username_claimed": "ppfeister"
  },
  "BuyMeACoffee": {
    "errorType": "status_code",
    "regexCheck": "[a-zA-Z0-9]{3,15}",
    "url": "https://buymeacoff.ee/{}",
    "urlMain": "https://www.buymeacoffee.com/",
    "urlProbe": "https://www.buymeacoffee.com/{}",
    "username_claimed": "red"
  },
  "BuzzFeed": {
    "errorType": "status_code",
    "url": "https://buzzfeed.com/{}",
    "urlMain": "https://buzzfeed.com/",
    "username_claimed": "blue"
  },
  "Cfx.re Forum": {
    "errorType": "status_code",
    "url": "https://forum.cfx.re/u/{}/summary",
    "urlMain": "https://forum.cfx.re",
    "username_claimed": "hightowerlssd"
  },
  "CGTrader": {
    "errorType": "status_code",
    "regexCheck": "^[^.]*?$",
    "url": "https://www.cgtrader.com/{}",
    "urlMain": "https://www.cgtrader.com",
    "username_claimed": "blue"
  },
  "CNET": {
    "errorType": "status_code",
    "regexCheck": "^[a-z].*$",
    "url": "https://www.cnet.com/profiles/{}/",
    "urlMain": "https://www.cnet.com/",
    "username_claimed": "melliott"
  },
  "CSSBattle": {
    "errorType": "status_code",
    "url": "https://cssbattle.dev/player/{}",
    "urlMain": "https://cssbattle.dev",
    "username_claimed": "beo"
  },
  "CTAN": {
    "errorType": "status_code",
    "url": "https://ctan.org/author/{}",
    "urlMain": "https://ctan.org/",
    "username_claimed": "briggs"
  },
  "Caddy Community": {
    "errorType": "status_code",
    "url": "https://caddy.community/u/{}/summary",
    "urlMain": "https://caddy.community/",
    "username_claimed": "taako_magnusen"
  },
  "Car Talk Community": {
    "errorType": "status_code",
    "url": "https://community.cartalk.com/u/{}/summary",
    "urlMain": "https://community.cartalk.com/",
    "username_claimed": "always_fixing"
  },
  "Carbonmade": {
    "errorType": "response_url",
    "errorUrl": "https://carbonmade.com/fourohfour?domain={}.carbonmade.com",
    "regexCheck": "^[\\w@-]+?$",
    "url": "https://{}.carbonmade.com",
    "urlMain": "https://carbonmade.com/",
    "username_claimed": "jenny"
  },
  "Career.habr": {
    "errorMsg": "<h1>\u041e\u0448\u0438\u0431\u043a\u0430 404</h1>",
    "errorType": "message",
    "url": "https://career.habr.com/{}",
    "urlMain": "https://career.habr.com/",
    "username_claimed": "blue"
  },
  "CashApp": {
    "errorType": "status_code",
    "url": "https://cash.app/${}",
    "urlMain": "https://cash.app",
    "username_claimed": "hotdiggitydog"
  },
  "Championat": {
    "errorType": "status_code",
    "url": "https://www.championat.com/user/{}",
    "urlMain": "https://www.championat.com/",
    "username_claimed": "blue"
  },
  "Chaos": {
    "errorType": "status_code",
    "url": "https://chaos.social/@{}",
    "urlMain": "https://chaos.social/",
    "username_claimed": "ordnung"
  },
  "Chatujme.cz": {
    "errorMsg": "Neexistujic\u00ed profil",
    "errorType": "message",
    "regexCheck": "^[a-zA-Z][a-zA-Z1-9_-]*$",
    "url": "https://profil.chatujme.cz/{}",
    "urlMain": "https://chatujme.cz/",
    "username_claimed": "david"
  },
  "ChaturBate": {
    "errorType": "status_code",
    "isNSFW": true,
    "url": "https://chaturbate.com/{}",
    "urlMain": "https://chaturbate.com",
    "username_claimed": "cute18cute"
  },
  "Chess": {
    "errorMsg": "Username is valid",
    "errorType": "message",
    "regexCheck": "^[a-z1-9]{3,25}$",
    "url": "https://www.chess.com/member/{}",
    "urlMain": "https://www.chess.com/",
    "urlProbe": "https://www.chess.com/callback/user/valid?username={}",
    "username_claimed": "blue"
  },
  "Choice Community": {
    "errorType": "status_code",
    "url": "https://choice.community/u/{}/summary",
    "urlMain": "https://choice.community/",
    "username_claimed": "gordon"
  },
  "Clapper": {
    "errorType": "status_code",
    "url": "https://clapperapp.com/{}",
    "urlMain": "https://clapperapp.com/",
    "username_claimed": "blue"
  },
  "CloudflareCommunity": {
    "errorType": "status_code",
    "url": "https://community.cloudflare.com/u/{}",
    "urlMain": "https://community.cloudflare.com/",
    "username_claimed": "blue"
  },
  "Clozemaster": {
    "errorMsg": "Oh no! Player not found.",
    "errorType": "message",
    "url": "https://www.clozemaster.com/players/{}",
    "urlMain": "https://www.clozemaster.com",
    "username_claimed": "green"
  },
  "Clubhouse": {
    "errorType": "status_code",
    "url": "https://www.clubhouse.com/@{}",
    "urlMain": "https://www.clubhouse.com",
    "username_claimed": "waniathar"
  },
  "Code Snippet Wiki": {
    "errorMsg": "This user has not filled out their profile page yet",
    "errorType": "message",
    "url": "https://codesnippets.fandom.com/wiki/User:{}",
    "urlMain": "https://codesnippets.fandom.com",
    "username_claimed": "bob"
  },
  "Codeberg": {
    "errorType": "status_code",
    "url": "https://codeberg.org/{}",
    "urlMain": "https://codeberg.org/",
    "username_claimed": "blue"
  },
  "Codecademy": {
    "errorMsg": "This profile could not be found",
    "errorType": "message",
    "url": "https://www.codecademy.com/profiles/{}",
    "urlMain": "https://www.codecademy.com/",
    "username_claimed": "blue"
  },
  "Codechef": {
    "errorType": "response_url",
    "errorUrl": "https://www.codechef.com/",
    "url": "https://www.codechef.com/users/{}",
    "urlMain": "https://www.codechef.com/",
    "username_claimed": "blue"
  },
  "Codeforces": {
    "errorType": "status_code",
    "url": "https://codeforces.com/profile/{}",
    "urlMain": "https://codeforces.com/",
    "urlProbe": "https://codeforces.com/api/user.info?handles={}",
    "username_claimed": "tourist"
  },
  "Codepen": {
    "errorType": "status_code",
    "url": "https://codepen.io/{}",
    "urlMain": "https://codepen.io/",
    "username_claimed": "blue"
  },
  "Coders Rank": {
    "errorMsg": "not a registered member",
    "errorType": "message",
    "regexCheck": "^[a-zA-Z0-9](?:[a-zA-Z0-9]|-(?=[a-zA-Z0-9])){0,38}$",
    "url": "https://profile.codersrank.io/user/{}/",
    "urlMain": "https://codersrank.io/",
    "username_claimed": "rootkit7628"
  },
  "Coderwall": {
    "errorType": "status_code",
    "url": "https://coderwall.com/{}",
    "urlMain": "https://coderwall.com",
    "username_claimed": "hacker"
  },
  "CodeSandbox": {
    "errorType": "message",
    "errorMsg": "Could not find user with username",
    "regexCheck": "^[a-zA-Z0-9_-]{3,30}$",
    "url": "https://codesandbox.io/u/{}",
    "urlProbe": "https://codesandbox.io/api/v1/users/{}",
    "urlMain": "https://codesandbox.io",
    "username_claimed": "icyjoseph"
  },
  "Codewars": {
    "errorType": "status_code",
    "url": "https://www.codewars.com/users/{}",
    "urlMain": "https://www.codewars.com",
    "username_claimed": "example"
  },
  "Codolio": {
    "errorType": "message",
    "errorMsg": "<title>Page Not Found | Codolio</title>",
    "url": "https://codolio.com/profile/{}",
    "urlMain": "https://codolio.com/",
    "username_claimed": "testuser",
    "regexCheck": "^[a-zA-Z0-9_-]{3,30}$"
  },
  "Coinvote": {
    "errorType": "status_code",
    "url": "https://coinvote.cc/profile/{}",
    "urlMain": "https://coinvote.cc/",
    "username_claimed": "blue"
  },
  "ColourLovers": {
    "errorType": "status_code",
    "url": "https://www.colourlovers.com/lover/{}",
    "urlMain": "https://www.colourlovers.com/",
    "username_claimed": "blue"
  },
  "Contently": {
    "errorType": "response_url",
    "errorUrl": "https://contently.com",
    "regexCheck": "^[a-zA-Z][a-zA-Z0-9_-]*$",
    "url": "https://{}.contently.com/",
    "urlMain": "https://contently.com/",
    "username_claimed": "jordanteicher"
  },
  "Coroflot": {
    "errorType": "status_code",
    "url": "https://www.coroflot.com/{}",
    "urlMain": "https://coroflot.com/",
    "username_claimed": "blue"
  },
  "Cplusplus": {
    "errorType": "message",
    "errorMsg": "<title>404 Page Not Found</title>",
    "url": "https://cplusplus.com/user/{}",
    "urlMain": "https://cplusplus.com",
    "username_claimed": "mbozzi"
  },
  "Cracked": {
    "errorType": "response_url",
    "errorUrl": "https://www.cracked.com/",
    "url": "https://www.cracked.com/members/{}/",
    "urlMain": "https://www.cracked.com/",
    "username_claimed": "blue"
  },
  "Cracked Forum": {
    "errorMsg": "The member you specified is either invalid or doesn't exist",
    "errorType": "message",
    "url": "https://cracked.sh/{}",
    "urlMain": "https://cracked.sh/",
    "username_claimed": "Blue"
  },
  "Crevado": {
    "errorType": "status_code",
    "regexCheck": "^[\\w@-]+?$",
    "url": "https://{}.crevado.com",
    "urlMain": "https://crevado.com/",
    "username_claimed": "blue"
  },
  "Crowdin": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z0-9._-]{2,255}$",
    "url": "https://crowdin.com/profile/{}",
    "urlMain": "https://crowdin.com/",
    "username_claimed": "blue"
  },
  "CryptoHack": {
    "errorType": "response_url",
    "errorUrl": "https://cryptohack.org/",
    "url": "https://cryptohack.org/user/{}/",
    "urlMain": "https://cryptohack.org/",
    "username_claimed": "blue"
  },
  "Cryptomator Forum": {
    "errorType": "status_code",
    "url": "https://community.cryptomator.org/u/{}",
    "urlMain": "https://community.cryptomator.org/",
    "username_claimed": "michael"
  },
  "Cults3D": {
    "errorMsg": "Oh dear, this page is not working!",
    "errorType": "message",
    "url": "https://cults3d.com/en/users/{}/creations",
    "urlMain": "https://cults3d.com/en",
    "username_claimed": "brown"
  },
  "CyberDefenders": {
    "errorType": "status_code",
    "regexCheck": "^[^\\/:*?\"<>|@]{3,50}$",
    "request_method": "GET",
    "url": "https://cyberdefenders.org/p/{}",
    "urlMain": "https://cyberdefenders.org/",
    "username_claimed": "mlohn"
  },
  "DEV Community": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z][a-zA-Z0-9_-]*$",
    "url": "https://dev.to/{}",
    "urlMain": "https://dev.to/",
    "username_claimed": "blue"
  },
  "DMOJ": {
    "errorMsg": "No such user",
    "errorType": "message",
    "url": "https://dmoj.ca/user/{}",
    "urlMain": "https://dmoj.ca/",
    "username_claimed": "junferno"
  },
  "DailyMotion": {
    "errorType": "status_code",
    "url": "https://www.dailymotion.com/{}",
    "urlMain": "https://www.dailymotion.com/",
    "username_claimed": "blue"
  },
  "dcinside": {
    "errorType": "status_code",
    "url": "https://gallog.dcinside.com/{}",
    "urlMain": "https://www.dcinside.com/",
    "username_claimed": "anrbrb"
  },
  "Dealabs": {
    "errorMsg": "La page que vous essayez",
    "errorType": "message",
    "regexCheck": "[a-z0-9]{4,16}",
    "url": "https://www.dealabs.com/profile/{}",
    "urlMain": "https://www.dealabs.com/",
    "username_claimed": "blue"
  },
  "DeviantArt": {
    "errorType": "message",
    "errorMsg": "Llama Not Found",
    "regexCheck": "^[a-zA-Z][a-zA-Z0-9_-]*$",
    "url": "https://www.deviantart.com/{}",
    "urlMain": "https://www.deviantart.com/",
    "username_claimed": "blue"
  },
  "DigitalSpy": {
    "errorMsg": "The page you were looking for could not be found.",
    "errorType": "message",
    "url": "https://forums.digitalspy.com/profile/{}",
    "urlMain": "https://forums.digitalspy.com/",
    "username_claimed": "blue",
    "regexCheck": "^\\w{3,20}$"
  },
  "Discogs": {
    "errorType": "status_code",
    "url": "https://www.discogs.com/user/{}",
    "urlMain": "https://www.discogs.com/",
    "username_claimed": "blue"
  },
  "Discord": {
    "errorType": "message",
    "url": "https://discord.com",
    "urlMain": "https://discord.com/",
    "urlProbe": "https://discord.com/api/v9/unique-username/username-attempt-unauthed",
    "errorMsg": ["{\"taken\":false}", "The resource is being rate limited"],
    "request_method": "POST",
    "request_payload": {
      "username": "{}"
    },
    "headers": {
      "Content-Type": "application/json"
    },
    "username_claimed": "blue"
  },
  "Discord.bio": {
    "errorType": "message",
    "errorMsg": "<title>Server Error (500)</title>",
    "url": "https://discords.com/api-v2/bio/details/{}",
    "urlMain": "https://discord.bio/",
    "username_claimed": "robert"
  },
  "Discuss.Elastic.co": {
    "errorType": "status_code",
    "url": "https://discuss.elastic.co/u/{}",
    "urlMain": "https://discuss.elastic.co/",
    "username_claimed": "blue"
  },
  "Diskusjon.no": {
    "errorMsg": "{\"result\":\"ok\"}",
    "errorType": "message",
    "regexCheck": "^[a-zA-Z0-9_.-]{3,40}$",
    "urlProbe": "https://www.diskusjon.no/?app=core&module=system&controller=ajax&do=usernameExists&input={}",
    "url": "https://www.diskusjon.no",
    "urlMain": "https://www.diskusjon.no",
    "username_claimed": "blue"
  },
  "Disqus": {
    "errorType": "status_code",
    "url": "https://disqus.com/{}",
    "urlMain": "https://disqus.com/",
    "username_claimed": "blue"
  },
  "Docker Hub": {
    "errorType": "status_code",
    "url": "https://hub.docker.com/u/{}/",
    "urlMain": "https://hub.docker.com/",
    "urlProbe": "https://hub.docker.com/v2/users/{}/",
    "username_claimed": "blue"
  },
  "Dribbble": {
    "errorMsg": "Whoops, that page is gone.",
    "errorType": "message",
    "regexCheck": "^[a-zA-Z][a-zA-Z0-9_-]*$",
    "url": "https://dribbble.com/{}",
    "urlMain": "https://dribbble.com/",
    "username_claimed": "blue"
  },
  "Duolingo": {
    "errorMsg": "{\"users\":[]}",
    "errorType": "message",
    "url": "https://www.duolingo.com/profile/{}",
    "urlMain": "https://duolingo.com/",
    "urlProbe": "https://www.duolingo.com/2017-06-30/users?username={}",
    "username_claimed": "blue"
  },
  "Eintracht Frankfurt Forum": {
    "errorType": "status_code",
    "regexCheck": "^[^.]*?$",
    "url": "https://community.eintracht.de/fans/{}",
    "urlMain": "https://community.eintracht.de/",
    "username_claimed": "mmammu"
  },
  "Empretienda AR": {
    "__comment__": "Note that Error Connecting responses may be indicative of unclaimed handles",
    "errorType": "status_code",
    "url": "https://{}.empretienda.com.ar",
    "urlMain": "https://empretienda.com",
    "username_claimed": "camalote"
  },
  "Envato Forum": {
    "errorType": "status_code",
    "url": "https://forums.envato.com/u/{}",
    "urlMain": "https://forums.envato.com/",
    "username_claimed": "enabled"
  },
  "Erome": {
    "errorType": "status_code",
    "isNSFW": true,
    "url": "https://www.erome.com/{}",
    "urlMain": "https://www.erome.com/",
    "username_claimed": "bob"
  },
  "Exposure": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z0-9-]{1,63}$",
    "url": "https://{}.exposure.co/",
    "urlMain": "https://exposure.co/",
    "username_claimed": "jonasjacobsson"
  },
  "exophase": {
    "errorType": "status_code",
    "url": "https://www.exophase.com/user/{}/",
    "urlMain": "https://www.exophase.com/",
    "username_claimed": "blue"
  },
  "EyeEm": {
    "errorType": "status_code",
    "url": "https://www.eyeem.com/u/{}",
    "urlMain": "https://www.eyeem.com/",
    "username_claimed": "blue"
  },
  "F3.cool": {
    "errorType": "status_code",
    "url": "https://f3.cool/{}/",
    "urlMain": "https://f3.cool/",
    "username_claimed": "blue"
  },
  "Fameswap": {
    "errorType": "status_code",
    "url": "https://fameswap.com/user/{}",
    "urlMain": "https://fameswap.com/",
    "username_claimed": "fameswap"
  },
  "Fandom": {
    "errorType": "status_code",
    "url": "https://www.fandom.com/u/{}",
    "urlMain": "https://www.fandom.com/",
    "username_claimed": "Jungypoo"
  },
  "Fanpop": {
    "errorType": "response_url",
    "errorUrl": "https://www.fanpop.com/",
    "url": "https://www.fanpop.com/fans/{}",
    "urlMain": "https://www.fanpop.com/",
    "username_claimed": "blue"
  },
  "Finanzfrage": {
    "errorType": "status_code",
    "url": "https://www.finanzfrage.net/nutzer/{}",
    "urlMain": "https://www.finanzfrage.net/",
    "username_claimed": "finanzfrage"
  },
  "Flickr": {
    "errorType": "status_code",
    "url": "https://www.flickr.com/people/{}",
    "urlMain": "https://www.flickr.com/",
    "username_claimed": "blue"
  },
  "Flightradar24": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z0-9_]{3,20}$",
    "url": "https://my.flightradar24.com/{}",
    "urlMain": "https://www.flightradar24.com/",
    "username_claimed": "jebbrooks"
  },
  "Flipboard": {
    "errorType": "status_code",
    "regexCheck": "^([a-zA-Z0-9_]){1,15}$",
    "url": "https://flipboard.com/@{}",
    "urlMain": "https://flipboard.com/",
    "username_claimed": "blue"
  },
  "Football": {
    "errorMsg": "\u041f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u0441 \u0442\u0430\u043a\u0438\u043c \u0438\u043c\u0435\u043d\u0435\u043c \u043d\u0435 \u043d\u0430\u0439\u0434\u0435\u043d",
    "errorType": "message",
    "url": "https://www.rusfootball.info/user/{}/",
    "urlMain": "https://www.rusfootball.info/",
    "username_claimed": "solo87"
  },
  "FortniteTracker": {
    "errorType": "status_code",
    "url": "https://fortnitetracker.com/profile/all/{}",
    "urlMain": "https://fortnitetracker.com/challenges",
    "username_claimed": "blue"
  },
  "Forum Ophilia": {
    "errorMsg": "that user does not exist",
    "errorType": "message",
    "isNSFW": true,
    "url": "https://www.forumophilia.com/profile.php?mode=viewprofile&u={}",
    "urlMain": "https://www.forumophilia.com/",
    "username_claimed": "bob"
  },
  "Fosstodon": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z0-9_]{1,30}$",
    "url": "https://fosstodon.org/@{}",
    "urlMain": "https://fosstodon.org/",
    "username_claimed": "blue"
  },
  "Framapiaf": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z0-9_]{1,30}$",
    "url": "https://framapiaf.org/@{}",
    "urlMain": "https://framapiaf.org",
    "username_claimed": "pylapp"
  },
  "Freelancer": {
    "errorMsg": "\"users\":{}",
    "errorType": "message",
    "url": "https://www.freelancer.com/u/{}",
    "urlMain": "https://www.freelancer.com/",
    "urlProbe": "https://www.freelancer.com/api/users/0.1/users?usernames%5B%5D={}&compact=true",
    "username_claimed": "red0xff"
  },
  "Freesound": {
    "errorType": "status_code",
    "url": "https://freesound.org/people/{}/",
    "urlMain": "https://freesound.org/",
    "username_claimed": "blue"
  },
  "GNOME VCS": {
    "errorType": "response_url",
    "errorUrl": "https://gitlab.gnome.org/{}",
    "regexCheck": "^(?!-)[a-zA-Z0-9_.-]{2,255}(?<!\\.)$",
    "url": "https://gitlab.gnome.org/{}",
    "urlMain": "https://gitlab.gnome.org/",
    "username_claimed": "adam"
  },
  "GaiaOnline": {
    "errorMsg": "No user ID specified or user does not exist",
    "errorType": "message",
    "url": "https://www.gaiaonline.com/profiles/{}",
    "urlMain": "https://www.gaiaonline.com/",
    "username_claimed": "adam"
  },
  "Gamespot": {
    "errorType": "status_code",
    "url": "https://www.gamespot.com/profile/{}/",
    "urlMain": "https://www.gamespot.com/",
    "username_claimed": "blue"
  },
  "GameFAQs": {
    "errorType": "status_code",
    "url": "https://gamefaqs.gamespot.com/community/{}",
    "urlMain": "https://gamefaqs.gamespot.com",
    "username_claimed": "blue"
  },
  "GeeksforGeeks": {
    "errorType": "status_code",
    "url": "https://auth.geeksforgeeks.org/user/{}",
    "urlMain": "https://www.geeksforgeeks.org/",
    "username_claimed": "adam"
  },
  "Genius (Artists)": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z0-9]{5,50}$",
    "url": "https://genius.com/artists/{}",
    "urlMain": "https://genius.com/",
    "username_claimed": "genius"
  },
  "Genius (Users)": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z0-9]*?$",
    "url": "https://genius.com/{}",
    "urlMain": "https://genius.com/",
    "username_claimed": "genius"
  },
  "Gesundheitsfrage": {
    "errorType": "status_code",
    "url": "https://www.gesundheitsfrage.net/nutzer/{}",
    "urlMain": "https://www.gesundheitsfrage.net/",
    "username_claimed": "gutefrage"
  },
  "GetMyUni": {
    "errorType": "status_code",
    "url": "https://www.getmyuni.com/user/{}",
    "urlMain": "https://getmyuni.com/",
    "username_claimed": "Upneet.Grover17"
  },
  "Giant Bomb": {
    "errorType": "status_code",
    "url": "https://www.giantbomb.com/profile/{}/",
    "urlMain": "https://www.giantbomb.com/",
    "username_claimed": "bob"
  },
  "Giphy": {
    "errorType": "message",
    "errorMsg": "<title> GIFs - Find &amp; Share on GIPHY</title>",
    "url": "https://giphy.com/{}",
    "urlMain": "https://giphy.com/",
    "username_claimed": "red"
  },
  "GitBook": {
    "errorType": "status_code",
    "regexCheck": "^[\\w@-]+?$",
    "url": "https://{}.gitbook.io/",
    "urlMain": "https://gitbook.com/",
    "username_claimed": "gitbook"
  },
  "GitHub": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z0-9](?:[a-zA-Z0-9]|-(?=[a-zA-Z0-9])){0,38}$",
    "url": "https://www.github.com/{}",
    "urlMain": "https://www.github.com/",
    "username_claimed": "blue"
  },
  "Warframe Market": {
    "errorType": "status_code",
    "request_method": "GET",
    "url": "https://warframe.market/profile/{}",
    "urlMain": "https://warframe.market/",
    "urlProbe": "https://api.warframe.market/v2/user/{}",
    "username_claimed": "kaiallalone"
  },
  "GitLab": {
    "errorMsg": "[]",
    "errorType": "message",
    "url": "https://gitlab.com/{}",
    "urlMain": "https://gitlab.com/",
    "urlProbe": "https://gitlab.com/api/v4/users?username={}",
    "username_claimed": "blue"
  },
  "Gitea": {
    "errorType": "status_code",
    "url": "https://gitea.com/{}",
    "urlMain": "https://gitea.com/",
    "username_claimed": "xorm"
  },
  "Gitee": {
    "errorType": "status_code",
    "url": "https://gitee.com/{}",
    "urlMain": "https://gitee.com/",
    "username_claimed": "wizzer"
  },
  "GoodReads": {
    "errorType": "status_code",
    "url": "https://www.goodreads.com/{}",
    "urlMain": "https://www.goodreads.com/",
    "username_claimed": "blue"
  },
  "Google Play": {
    "errorMsg": "the requested URL was not found on this server",
    "errorType": "message",
    "url": "https://play.google.com/store/apps/developer?id={}",
    "urlMain": "https://play.google.com",
    "username_claimed": "GitHub"
  },
  "Gradle": {
    "errorType": "status_code",
    "regexCheck": "^(?!-)[a-zA-Z0-9-]{3,}(?<!-)$",
    "url": "https://plugins.gradle.org/u/{}",
    "urlMain": "https://gradle.org/",
    "username_claimed": "jetbrains"
  },
  "Grailed": {
    "errorType": "response_url",
    "errorUrl": "https://www.grailed.com/{}",
    "url": "https://www.grailed.com/{}",
    "urlMain": "https://www.grailed.com/",
    "username_claimed": "blue"
  },
  "Gravatar": {
    "errorType": "status_code",
    "regexCheck": "^((?!\\.).)*$",
    "url": "http://en.gravatar.com/{}",
    "urlMain": "http://en.gravatar.com/",
    "username_claimed": "blue"
  },
  "Gumroad": {
    "errorMsg": "Page not found (404) - Gumroad",
    "errorType": "message",
    "regexCheck": "^[^.]*?$",
    "url": "https://www.gumroad.com/{}",
    "urlMain": "https://www.gumroad.com/",
    "username_claimed": "blue"
  },
  "Gutefrage": {
    "errorType": "status_code",
    "url": "https://www.gutefrage.net/nutzer/{}",
    "urlMain": "https://www.gutefrage.net/",
    "username_claimed": "gutefrage"
  },
  "HackTheBox": {
    "errorType": "status_code",
    "url": "https://forum.hackthebox.com/u/{}",
    "urlMain": "https://forum.hackthebox.com/",
    "username_claimed": "angar"
  },
  "Hackaday": {
    "errorType": "status_code",
    "url": "https://hackaday.io/{}",
    "urlMain": "https://hackaday.io/",
    "username_claimed": "adam"
  },
  "HackenProof (Hackers)": {
    "errorMsg": "Page not found",
    "errorType": "message",
    "regexCheck": "^[\\w-]{,34}$",
    "url": "https://hackenproof.com/hackers/{}",
    "urlMain": "https://hackenproof.com/",
    "username_claimed": "blazezaria"
  },
  "HackerEarth": {
    "errorType": "status_code",
    "url": "https://hackerearth.com/@{}",
    "urlMain": "https://hackerearth.com/",
    "username_claimed": "naveennamani877"
  },
  "HackerNews": {
    "__comment__": "First errMsg invalid, second errMsg rate limited. Not ideal. Adjust for better rate limit filtering.",
    "errorMsg": ["No such user.", "Sorry."],
    "errorType": "message",
    "url": "https://news.ycombinator.com/user?id={}",
    "urlMain": "https://news.ycombinator.com/",
    "username_claimed": "blue"
  },
  "HackerOne": {
    "errorMsg": "Page not found",
    "errorType": "message",
    "url": "https://hackerone.com/{}",
    "urlMain": "https://hackerone.com/",
    "username_claimed": "stok"
  },
  "HackerRank": {
    "errorMsg": "Something went wrong",
    "errorType": "message",
    "regexCheck": "^[^.]*?$",
    "url": "https://hackerrank.com/{}",
    "urlMain": "https://hackerrank.com/",
    "username_claimed": "satznova"
  },
  "HackerSploit": {
    "errorType": "status_code",
    "url": "https://forum.hackersploit.org/u/{}",
    "urlMain": "https://forum.hackersploit.org/",
    "username_claimed": "hackersploit"
  },
  "HackMD": {
    "errorType": "status_code",
    "url": "https://hackmd.io/@{}",
    "urlMain": "https://hackmd.io/",
    "username_claimed": "blue"
  },
  "Harvard Scholar": {
    "errorType": "status_code",
    "url": "https://scholar.harvard.edu/{}",
    "urlMain": "https://scholar.harvard.edu/",
    "username_claimed": "ousmanekane"
  },
  "Hashnode": {
    "errorType": "status_code",
    "url": "https://hashnode.com/@{}",
    "urlMain": "https://hashnode.com",
    "username_claimed": "blue"
  },
  "Heavy-R": {
    "errorMsg": "Channel not found",
    "errorType": "message",
    "isNSFW": true,
    "url": "https://www.heavy-r.com/user/{}",
    "urlMain": "https://www.heavy-r.com/",
    "username_claimed": "kilroy222"
  },
  "Hive Blog": {
    "errorMsg": "<title>User Not Found - Hive</title>",
    "errorType": "message",
    "url": "https://hive.blog/@{}",
    "urlMain": "https://hive.blog/",
    "username_claimed": "mango-juice"
  },
  "Holopin": {
    "errorMsg": "true",
    "errorType": "message",
    "request_method": "POST",
    "request_payload": {
      "username": "{}"
    },
    "url": "https://holopin.io/@{}",
    "urlMain": "https://holopin.io",
    "urlProbe": "https://www.holopin.io/api/auth/username",
    "username_claimed": "red"
  },
  "Houzz": {
    "errorType": "status_code",
    "url": "https://houzz.com/user/{}",
    "urlMain": "https://houzz.com/",
    "username_claimed": "blue"
  },
  "HubPages": {
    "errorType": "status_code",
    "url": "https://hubpages.com/@{}",
    "urlMain": "https://hubpages.com/",
    "username_claimed": "blue"
  },
  "Hubski": {
    "errorMsg": "No such user",
    "errorType": "message",
    "url": "https://hubski.com/user/{}",
    "urlMain": "https://hubski.com/",
    "username_claimed": "blue"
  },
  "HudsonRock": {
    "errorMsg": "This username is not associated",
    "errorType": "message",
    "url": "https://cavalier.hudsonrock.com/api/json/v2/osint-tools/search-by-username?username={}",
    "urlMain": "https://hudsonrock.com",
    "username_claimed": "testadmin"
  },
  "Hugging Face": {
    "errorType": "status_code",
    "url": "https://huggingface.co/{}",
    "urlMain": "https://huggingface.co/",
    "username_claimed": "Pasanlaksitha"
  },
  "IFTTT": {
    "errorType": "status_code",
    "regexCheck": "^[A-Za-z0-9]{3,35}$",
    "url": "https://www.ifttt.com/p/{}",
    "urlMain": "https://www.ifttt.com/",
    "username_claimed": "blue"
  },
  "Ifunny": {
    "errorType": "status_code",
    "url": "https://ifunny.co/user/{}",
    "urlMain": "https://ifunny.co/",
    "username_claimed": "agua"
  },
  "IRC-Galleria": {
    "errorType": "response_url",
    "errorUrl": "https://irc-galleria.net/users/search?username={}",
    "url": "https://irc-galleria.net/user/{}",
    "urlMain": "https://irc-galleria.net/",
    "username_claimed": "appas"
  },
  "Icons8 Community": {
    "errorType": "status_code",
    "url": "https://community.icons8.com/u/{}/summary",
    "urlMain": "https://community.icons8.com/",
    "username_claimed": "thefourCraft"
  },
  "Image Fap": {
    "errorMsg": "Not found",
    "errorType": "message",
    "isNSFW": true,
    "url": "https://www.imagefap.com/profile/{}",
    "urlMain": "https://www.imagefap.com/",
    "username_claimed": "blue"
  },
  "ImgUp.cz": {
    "errorType": "status_code",
    "url": "https://imgup.cz/{}",
    "urlMain": "https://imgup.cz/",
    "username_claimed": "adam"
  },
  "Imgur": {
    "errorType": "status_code",
    "url": "https://imgur.com/user/{}",
    "urlMain": "https://imgur.com/",
    "urlProbe": "https://api.imgur.com/account/v1/accounts/{}?client_id=546c25a59c58ad7",
    "username_claimed": "blue"
  },
  "imood": {
    "errorType": "status_code",
    "url": "https://www.imood.com/users/{}",
    "urlMain": "https://www.imood.com/",
    "username_claimed": "blue"
  },
  "Instagram": {
    "errorType": "status_code",
    "url": "https://instagram.com/{}",
    "urlMain": "https://instagram.com/",
    "urlProbe": "https://imginn.com/{}",
    "username_claimed": "instagram"
  },
  "Instapaper": {
    "errorType": "status_code",
    "request_method": "GET",
    "url": "https://www.instapaper.com/p/{}",
    "urlMain": "https://www.instapaper.com/",
    "username_claimed": "john"
  },
  "Instructables": {
    "errorType": "status_code",
    "url": "https://www.instructables.com/member/{}",
    "urlMain": "https://www.instructables.com/",
    "urlProbe": "https://www.instructables.com/json-api/showAuthorExists?screenName={}",
    "username_claimed": "blue"
  },
  "Intigriti": {
    "errorType": "status_code",
    "regexCheck": "[a-z0-9_]{1,25}",
    "request_method": "GET",
    "url": "https://app.intigriti.com/profile/{}",
    "urlMain": "https://app.intigriti.com",
    "urlProbe": "https://api.intigriti.com/user/public/profile/{}",
    "username_claimed": "blue"
  },
  "Ionic Forum": {
    "errorType": "status_code",
    "url": "https://forum.ionicframework.com/u/{}",
    "urlMain": "https://forum.ionicframework.com/",
    "username_claimed": "theblue222"
  },
  "Issuu": {
    "errorType": "status_code",
    "url": "https://issuu.com/{}",
    "urlMain": "https://issuu.com/",
    "username_claimed": "jenny"
  },
  "Itch.io": {
    "errorType": "status_code",
    "regexCheck": "^[\\w@-]+?$",
    "url": "https://{}.itch.io/",
    "urlMain": "https://itch.io/",
    "username_claimed": "blue"
  },
  "Itemfix": {
    "errorMsg": "<title>ItemFix - Channel: </title>",
    "errorType": "message",
    "url": "https://www.itemfix.com/c/{}",
    "urlMain": "https://www.itemfix.com/",
    "username_claimed": "blue"
  },
  "Jellyfin Weblate": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z0-9@._-]{1,150}$",
    "url": "https://translate.jellyfin.org/user/{}/",
    "urlMain": "https://translate.jellyfin.org/",
    "username_claimed": "EraYaN"
  },
  "Jimdo": {
    "errorType": "status_code",
    "regexCheck": "^[\\w@-]+?$",
    "url": "https://{}.jimdosite.com",
    "urlMain": "https://jimdosite.com/",
    "username_claimed": "jenny"
  },
  "Joplin Forum": {
    "errorType": "status_code",
    "url": "https://discourse.joplinapp.org/u/{}",
    "urlMain": "https://discourse.joplinapp.org/",
    "username_claimed": "laurent"
  },
  "Jupyter Community Forum": {
    "errorMsg": "Oops! That page doesn’t exist or is private.",
    "errorType": "message",
    "url": "https://discourse.jupyter.org/u/{}/summary",
    "urlMain": "https://discourse.jupyter.org",
    "username_claimed": "choldgraf"
  },
  "Kaggle": {
    "errorType": "status_code",
    "url": "https://www.kaggle.com/{}",
    "urlMain": "https://www.kaggle.com/",
    "username_claimed": "dansbecker"
  },
  "kaskus": {
    "errorType": "status_code",
    "url": "https://www.kaskus.co.id/@{}",
    "urlMain": "https://www.kaskus.co.id",
    "urlProbe": "https://www.kaskus.co.id/api/users?username={}",
    "request_method": "GET",
    "username_claimed": "l0mbart"
  },
  "Keybase": {
    "errorType": "status_code",
    "url": "https://keybase.io/{}",
    "urlMain": "https://keybase.io/",
    "username_claimed": "blue"
  },
  "Kick": {
    "__comment__": "Cloudflare. Only viable when proxied.",
    "errorType": "status_code",
    "url": "https://kick.com/{}",
    "urlMain": "https://kick.com/",
    "urlProbe": "https://kick.com/api/v2/channels/{}",
    "username_claimed": "blue"
  },
  "Kik": {
    "errorMsg": "The page you requested was not found",
    "errorType": "message",
    "url": "https://kik.me/{}",
    "urlMain": "http://kik.me/",
    "urlProbe": "https://ws2.kik.com/user/{}",
    "username_claimed": "blue"
  },
  "Kongregate": {
    "errorType": "status_code",
    "headers": {
      "Accept": "text/html"
    },
    "regexCheck": "^[a-zA-Z][a-zA-Z0-9_-]*$",
    "url": "https://www.kongregate.com/accounts/{}",
    "urlMain": "https://www.kongregate.com/",
    "username_claimed": "blue"
  },
  "Kvinneguiden": {
    "errorMsg": "{\"result\":\"ok\"}",
    "errorType": "message",
    "regexCheck": "^[a-zA-Z0-9_.-]{3,18}$",
    "urlProbe": "https://forum.kvinneguiden.no/?app=core&module=system&controller=ajax&do=usernameExists&input={}",
    "url": "https://forum.kvinneguiden.no",
    "urlMain": "https://forum.kvinneguiden.no",
    "username_claimed": "blue"
  },
  "LOR": {
    "errorType": "status_code",
    "url": "https://www.linux.org.ru/people/{}/profile",
    "urlMain": "https://linux.org.ru/",
    "username_claimed": "red"
  },
  "Laracast": {
    "errorType": "status_code",
    "url": "https://laracasts.com/@{}",
    "urlMain": "https://laracasts.com/",
    "regexCheck": "^[a-zA-Z0-9_-]{3,}$",
    "username_claimed": "user1"
  },
  "Launchpad": {
    "errorType": "status_code",
    "url": "https://launchpad.net/~{}",
    "urlMain": "https://launchpad.net/",
    "username_claimed": "blue"
  },
  "LeetCode": {
    "errorType": "status_code",
    "url": "https://leetcode.com/{}",
    "urlMain": "https://leetcode.com/",
    "username_claimed": "blue"
  },
  "LemmyWorld": {
    "errorType": "message",
    "errorMsg": "<h1>Error!</h1>",
    "url": "https://lemmy.world/u/{}",
    "urlMain": "https://lemmy.world",
    "username_claimed": "blue"
  },
  "LessWrong": {
    "url": "https://www.lesswrong.com/users/{}",
    "urlMain": "https://www.lesswrong.com/",
    "errorType": "response_url",
    "errorUrl": "https://www.lesswrong.com/",
    "username_claimed": "habryka"
  },
  "Letterboxd": {
    "errorMsg": "Sorry, we can\u2019t find the page you\u2019ve requested.",
    "errorType": "message",
    "url": "https://letterboxd.com/{}",
    "urlMain": "https://letterboxd.com/",
    "username_claimed": "blue"
  },
  "LibraryThing": {
    "errorMsg": "<p>Error: This user doesn't exist</p>",
    "errorType": "message",
    "headers": {
      "Cookie": "LTAnonSessionID=3159599315; LTUnifiedCookie=%7B%22areyouhuman%22%3A1%7D; "
    },
    "url": "https://www.librarything.com/profile/{}",
    "urlMain": "https://www.librarything.com/",
    "username_claimed": "blue"
  },
  "Lichess": {
    "errorType": "status_code",
    "url": "https://lichess.org/@/{}",
    "urlMain": "https://lichess.org",
    "username_claimed": "john"
  },
  "LinkedIn": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z0-9]{3,100}$",
    "request_method": "GET",
    "url": "https://linkedin.com/in/{}",
    "urlMain": "https://linkedin.com",
    "username_claimed": "paulpfeister"
  },
  "Linktree": {
    "errorMsg": "\"statusCode\":404",
    "errorType": "message",
    "regexCheck": "^[\\w\\.]{2,30}$",
    "url": "https://linktr.ee/{}",
    "urlMain": "https://linktr.ee/",
    "username_claimed": "anne"
  },
  "LinuxFR.org": {
    "errorType": "status_code",
    "url": "https://linuxfr.org/users/{}",
    "urlMain": "https://linuxfr.org/",
    "username_claimed": "pylapp"
  },
  "Listed": {
    "errorType": "response_url",
    "errorUrl": "https://listed.to/@{}",
    "url": "https://listed.to/@{}",
    "urlMain": "https://listed.to/",
    "username_claimed": "listed"
  },
  "LiveJournal": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z][a-zA-Z0-9_-]*$",
    "url": "https://{}.livejournal.com",
    "urlMain": "https://www.livejournal.com/",
    "username_claimed": "blue"
  },
  "Lobsters": {
    "errorType": "status_code",
    "regexCheck": "[A-Za-z0-9][A-Za-z0-9_-]{0,24}",
    "url": "https://lobste.rs/u/{}",
    "urlMain": "https://lobste.rs/",
    "username_claimed": "jcs"
  },
  "LottieFiles": {
    "errorType": "status_code",
    "url": "https://lottiefiles.com/{}",
    "urlMain": "https://lottiefiles.com/",
    "username_claimed": "lottiefiles"
  },
  "LushStories": {
    "errorType": "status_code",
    "isNSFW": true,
    "url": "https://www.lushstories.com/profile/{}",
    "urlMain": "https://www.lushstories.com/",
    "username_claimed": "chris_brown"
  },
  "MMORPG Forum": {
    "errorType": "status_code",
    "url": "https://forums.mmorpg.com/profile/{}",
    "urlMain": "https://forums.mmorpg.com/",
    "username_claimed": "goku"
  },
  "Mamot": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z0-9_]{1,30}$",
    "url": "https://mamot.fr/@{}",
    "urlMain": "https://mamot.fr/",
    "username_claimed": "anciensEnssat"
  },
  "Medium": {
    "errorMsg": "<body",
    "errorType": "message",
    "url": "https://medium.com/@{}",
    "urlMain": "https://medium.com/",
    "urlProbe": "https://medium.com/feed/@{}",
    "username_claimed": "blue"
  },
  "Memrise": {
    "errorType": "status_code",
    "url": "https://www.memrise.com/user/{}/",
    "urlMain": "https://www.memrise.com/",
    "username_claimed": "blue"
  },
  "Minecraft": {
    "errorMsg": "Couldn't find any profile with name",
    "errorType": "message",
    "regexCheck": "^.{1,25}$",
    "url": "https://api.mojang.com/users/profiles/minecraft/{}",
    "urlMain": "https://minecraft.net/",
    "username_claimed": "blue"
  },
  "MixCloud": {
    "errorType": "status_code",
    "url": "https://www.mixcloud.com/{}/",
    "urlMain": "https://www.mixcloud.com/",
    "urlProbe": "https://api.mixcloud.com/{}/",
    "username_claimed": "jenny"
  },
  "Monkeytype": {
    "errorType": "status_code",
    "url": "https://monkeytype.com/profile/{}",
    "urlMain": "https://monkeytype.com/",
    "urlProbe": "https://api.monkeytype.com/users/{}/profile",
    "username_claimed": "Lost_Arrow"
  },
  "Motherless": {
    "errorMsg": "no longer a member",
    "errorType": "message",
    "isNSFW": true,
    "url": "https://motherless.com/m/{}",
    "urlMain": "https://motherless.com/",
    "username_claimed": "hacker"
  },
  "Motorradfrage": {
    "errorType": "status_code",
    "url": "https://www.motorradfrage.net/nutzer/{}",
    "urlMain": "https://www.motorradfrage.net/",
    "username_claimed": "gutefrage"
  },
  "MuseScore": {
    "errorType": "status_code",
    "url": "https://musescore.com/{}",
    "urlMain": "https://musescore.com/",
    "username_claimed": "arrangeme",
    "request_method": "GET"
  },
  "MyAnimeList": {
    "errorType": "status_code",
    "url": "https://myanimelist.net/profile/{}",
    "urlMain": "https://myanimelist.net/",
    "username_claimed": "blue"
  },
  "MyMiniFactory": {
    "errorType": "status_code",
    "url": "https://www.myminifactory.com/users/{}",
    "urlMain": "https://www.myminifactory.com/",
    "username_claimed": "blue"
  },
  "Mydramalist": {
    "errorMsg": "The requested page was not found",
    "errorType": "message",
    "url": "https://www.mydramalist.com/profile/{}",
    "urlMain": "https://mydramalist.com",
    "username_claimed": "elhadidy12398"
  },
  "Myspace": {
    "errorType": "status_code",
    "url": "https://myspace.com/{}",
    "urlMain": "https://myspace.com/",
    "username_claimed": "blue"
  },
  "NICommunityForum": {
    "errorMsg": "The page you were looking for could not be found.",
    "errorType": "message",
    "url": "https://community.native-instruments.com/profile/{}",
    "urlMain": "https://www.native-instruments.com/forum/",
    "username_claimed": "jambert"
  },
  "namuwiki": {
    "__comment__": "This is a Korean site and it's expected to return false negatives in certain other regions.",
    "errorType": "status_code",
    "url": "https://namu.wiki/w/%EC%82%AC%EC%9A%A9%EC%9E%90:{}",
    "urlMain": "https://namu.wiki/",
    "username_claimed": "namu"
  },
  "NationStates Nation": {
    "errorMsg": "Was this your nation? It may have ceased to exist due to inactivity, but can rise again!",
    "errorType": "message",
    "url": "https://nationstates.net/nation={}",
    "urlMain": "https://nationstates.net",
    "username_claimed": "the_holy_principality_of_saint_mark"
  },
  "NationStates Region": {
    "errorMsg": "does not exist.",
    "errorType": "message",
    "url": "https://nationstates.net/region={}",
    "urlMain": "https://nationstates.net",
    "username_claimed": "the_west_pacific"
  },
  "Naver": {
    "errorType": "status_code",
    "url": "https://blog.naver.com/{}",
    "urlMain": "https://naver.com",
    "username_claimed": "blue"
  },
  "Needrom": {
    "errorType": "status_code",
    "url": "https://www.needrom.com/author/{}/",
    "urlMain": "https://www.needrom.com/",
    "username_claimed": "needrom"
  },
  "Newgrounds": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z][a-zA-Z0-9_-]*$",
    "url": "https://{}.newgrounds.com",
    "urlMain": "https://newgrounds.com",
    "username_claimed": "blue"
  },
  "Nextcloud Forum": {
    "errorType": "status_code",
    "regexCheck": "^(?![.-])[a-zA-Z0-9_.-]{3,20}$",
    "url": "https://help.nextcloud.com/u/{}/summary",
    "urlMain": "https://nextcloud.com/",
    "username_claimed": "blue"
  },
  "Nightbot": {
    "errorType": "status_code",
    "url": "https://nightbot.tv/t/{}/commands",
    "urlMain": "https://nightbot.tv/",
    "urlProbe": "https://api.nightbot.tv/1/channels/t/{}",
    "username_claimed": "green"
  },
  "Ninja Kiwi": {
    "errorType": "response_url",
    "errorUrl": "https://ninjakiwi.com/profile/{}",
    "url": "https://ninjakiwi.com/profile/{}",
    "urlMain": "https://ninjakiwi.com/",
    "username_claimed": "Kyruko"
  },
  "NintendoLife": {
    "errorType": "status_code",
    "url": "https://www.nintendolife.com/users/{}",
    "urlMain": "https://www.nintendolife.com/",
    "username_claimed": "goku"
  },
  "NitroType": {
    "errorMsg": "<title>Nitro Type | Competitive Typing Game | Race Your Friends</title>",
    "errorType": "message",
    "url": "https://www.nitrotype.com/racer/{}",
    "urlMain": "https://www.nitrotype.com/",
    "username_claimed": "jianclash"
  },
  "NotABug.org": {
    "errorType": "status_code",
    "url": "https://notabug.org/{}",
    "urlMain": "https://notabug.org/",
    "urlProbe": "https://notabug.org/{}/followers",
    "username_claimed": "red"
  },
  "Nothing Community": {
    "errorType": "status_code",
    "url": "https://nothing.community/u/{}",
    "urlMain": "https://nothing.community/",
    "username_claimed": "Carl"
  },
  "Nyaa.si": {
    "errorType": "status_code",
    "url": "https://nyaa.si/user/{}",
    "urlMain": "https://nyaa.si/",
    "username_claimed": "blue"
  },
  "ObservableHQ": {
    "errorType": "message",
    "errorMsg": "Page not found",
    "url": "https://observablehq.com/@{}",
    "urlMain": "https://observablehq.com/",
    "username_claimed": "mbostock"
  },
  "Open Collective": {
    "errorType": "status_code",
    "url": "https://opencollective.com/{}",
    "urlMain": "https://opencollective.com/",
    "username_claimed": "sindresorhus"
  },
  "OpenGameArt": {
    "errorType": "status_code",
    "url": "https://opengameart.org/users/{}",
    "urlMain": "https://opengameart.org",
    "username_claimed": "ski"
  },
  "OpenStreetMap": {
    "errorType": "status_code",
    "regexCheck": "^[^.]*?$",
    "url": "https://www.openstreetmap.org/user/{}",
    "urlMain": "https://www.openstreetmap.org/",
    "username_claimed": "blue"
  },
  "Odysee": {
    "errorMsg": "<link rel=\"canonical\" content=\"odysee.com\"/>",
    "errorType": "message",
    "url": "https://odysee.com/@{}",
    "urlMain": "https://odysee.com/",
    "username_claimed": "Odysee"
  },
  "Opensource": {
    "errorType": "status_code",
    "url": "https://opensource.com/users/{}",
    "urlMain": "https://opensource.com/",
    "username_claimed": "red"
  },
  "OurDJTalk": {
    "errorMsg": "The specified member cannot be found",
    "errorType": "message",
    "url": "https://ourdjtalk.com/members?username={}",
    "urlMain": "https://ourdjtalk.com/",
    "username_claimed": "steve"
  },
  "Outgress": {
    "errorMsg": "Outgress - Error",
    "errorType": "message",
    "url": "https://outgress.com/agents/{}",
    "urlMain": "https://outgress.com/",
    "username_claimed": "pylapp"
  },
  "PCGamer": {
    "errorMsg": "The specified member cannot be found. Please enter a member's entire name.",
    "errorType": "message",
    "url": "https://forums.pcgamer.com/members/?username={}",
    "urlMain": "https://pcgamer.com",
    "username_claimed": "admin"
  },
  "PSNProfiles.com": {
    "errorType": "response_url",
    "errorUrl": "https://psnprofiles.com/?psnId={}",
    "url": "https://psnprofiles.com/{}",
    "urlMain": "https://psnprofiles.com/",
    "username_claimed": "blue"
  },
  "Packagist": {
    "errorType": "response_url",
    "errorUrl": "https://packagist.org/search/?q={}&reason=vendor_not_found",
    "url": "https://packagist.org/packages/{}/",
    "urlMain": "https://packagist.org/",
    "username_claimed": "psr"
  },
  "Pastebin": {
    "errorMsg": "Not Found (#404)",
    "errorType": "message",
    "url": "https://pastebin.com/u/{}",
    "urlMain": "https://pastebin.com/",
    "username_claimed": "blue"
  },
  "Patched": {
    "errorMsg": "The member you specified is either invalid or doesn't exist.",
    "errorType": "message",
    "url": "https://patched.sh/User/{}",
    "urlMain": "https://patched.sh/",
    "username_claimed": "blue"
  },
  "Patreon": {
    "errorType": "status_code",
    "url": "https://www.patreon.com/{}",
    "urlMain": "https://www.patreon.com/",
    "username_claimed": "blue"
  },
  "PentesterLab": {
    "errorType": "status_code",
    "regexCheck": "^[\\w]{4,30}$",
    "url": "https://pentesterlab.com/profile/{}",
    "urlMain": "https://pentesterlab.com/",
    "username_claimed": "0day"
  },
  "HotUKdeals": {
    "errorType": "status_code",
    "url": "https://www.hotukdeals.com/profile/{}",
    "urlMain": "https://www.hotukdeals.com/",
    "username_claimed": "Blue",
    "request_method": "GET"
  },
  "Mydealz": {
    "errorType": "status_code",
    "url": "https://www.mydealz.de/profile/{}",
    "urlMain": "https://www.mydealz.de/",
    "username_claimed": "blue",
    "request_method": "GET"
  },
  "Chollometro": {
    "errorType": "status_code",
    "url": "https://www.chollometro.com/profile/{}",
    "urlMain": "https://www.chollometro.com/",
    "username_claimed": "blue",
    "request_method": "GET"
  },
  "PepperNL": {
    "errorType": "status_code",
    "url": "https://nl.pepper.com/profile/{}",
    "urlMain": "https://nl.pepper.com/",
    "username_claimed": "Dynaw",
    "request_method": "GET"
  },
  "PepperPL": {
    "errorType": "status_code",
    "url": "https://www.pepper.pl/profile/{}",
    "urlMain": "https://www.pepper.pl/",
    "username_claimed": "FireChicken",
    "request_method": "GET"
  },
  "Preisjaeger": {
    "errorType": "status_code",
    "url": "https://www.preisjaeger.at/profile/{}",
    "urlMain": "https://www.preisjaeger.at/",
    "username_claimed": "Stefan",
    "request_method": "GET"
  },
  "Pepperdeals": {
    "errorType": "status_code",
    "url": "https://www.pepperdeals.se/profile/{}",
    "urlMain": "https://www.pepperdeals.se/",
    "username_claimed": "Mark",
    "request_method": "GET"
  },
  "PepperealsUS": {
    "errorType": "status_code",
    "url": "https://www.pepperdeals.com/profile/{}",
    "urlMain": "https://www.pepperdeals.com/",
    "username_claimed": "Stepan",
    "request_method": "GET"
  },
  "Promodescuentos": {
    "errorType": "status_code",
    "url": "https://www.promodescuentos.com/profile/{}",
    "urlMain": "https://www.promodescuentos.com/",
    "username_claimed": "blue",
    "request_method": "GET"
  },
  "Periscope": {
    "errorType": "status_code",
    "url": "https://www.periscope.tv/{}/",
    "urlMain": "https://www.periscope.tv/",
    "username_claimed": "blue"
  },
  "Pinkbike": {
    "errorType": "status_code",
    "regexCheck": "^[^.]*?$",
    "url": "https://www.pinkbike.com/u/{}/",
    "urlMain": "https://www.pinkbike.com/",
    "username_claimed": "blue"
  },
  "pixelfed.social": {
    "errorType": "status_code",
    "url": "https://pixelfed.social/{}/",
    "urlMain": "https://pixelfed.social",
    "username_claimed": "pylapp"
  },
  "PlayStore": {
    "errorType": "status_code",
    "url": "https://play.google.com/store/apps/developer?id={}",
    "urlMain": "https://play.google.com/store",
    "username_claimed": "Facebook"
  },
  "Playstrategy": {
    "errorType": "status_code",
    "url": "https://playstrategy.org/@/{}",
    "urlMain": "https://playstrategy.org",
    "username_claimed": "oruro"
  },
  "Plurk": {
    "errorMsg": "User Not Found!",
    "errorType": "message",
    "url": "https://www.plurk.com/{}",
    "urlMain": "https://www.plurk.com/",
    "username_claimed": "plurkoffice"
  },
  "PocketStars": {
    "errorMsg": "Join Your Favorite Adult Stars",
    "errorType": "message",
    "isNSFW": true,
    "url": "https://pocketstars.com/{}",
    "urlMain": "https://pocketstars.com/",
    "username_claimed": "hacker"
  },
  "Pokemon Showdown": {
    "errorType": "status_code",
    "url": "https://pokemonshowdown.com/users/{}",
    "urlMain": "https://pokemonshowdown.com",
    "username_claimed": "blue"
  },
  "Polarsteps": {
    "errorType": "status_code",
    "url": "https://polarsteps.com/{}",
    "urlMain": "https://polarsteps.com/",
    "urlProbe": "https://api.polarsteps.com/users/byusername/{}",
    "username_claimed": "james"
  },
  "Polygon": {
    "errorType": "status_code",
    "url": "https://www.polygon.com/users/{}",
    "urlMain": "https://www.polygon.com/",
    "username_claimed": "swiftstickler"
  },
  "Polymart": {
    "errorType": "response_url",
    "errorUrl": "https://polymart.org/user/-1",
    "url": "https://polymart.org/user/{}",
    "urlMain": "https://polymart.org/",
    "username_claimed": "craciu25yt"
  },
  "Pornhub": {
    "errorType": "status_code",
    "isNSFW": true,
    "url": "https://pornhub.com/users/{}",
    "urlMain": "https://pornhub.com/",
    "username_claimed": "blue"
  },
  "ProductHunt": {
    "errorType": "status_code",
    "url": "https://www.producthunt.com/@{}",
    "urlMain": "https://www.producthunt.com/",
    "username_claimed": "jenny"
  },
  "programming.dev": {
    "errorMsg": "Error!",
    "errorType": "message",
    "url": "https://programming.dev/u/{}",
    "urlMain": "https://programming.dev",
    "username_claimed": "pylapp"
  },
  "Pychess": {
    "errorType": "message",
    "errorMsg": "404",
    "url": "https://www.pychess.org/@/{}",
    "urlMain": "https://www.pychess.org",
    "username_claimed": "gbtami"
  },
  "PromoDJ": {
    "errorType": "status_code",
    "url": "http://promodj.com/{}",
    "urlMain": "http://promodj.com/",
    "username_claimed": "blue"
  },
  "Pronouns.page": {
    "errorType": "status_code",
    "url": "https://pronouns.page/@{}",
    "urlMain": "https://pronouns.page/",
    "username_claimed": "andrea"
  },
  "PyPi": {
    "errorType": "status_code",
    "url": "https://pypi.org/user/{}",
    "urlProbe": "https://pypi.org/_includes/administer-user-include/{}",
    "urlMain": "https://pypi.org",
    "username_claimed": "Blue"
  },
  "Python.org Discussions": {
    "errorMsg": "Oops! That page doesn’t exist or is private.",
    "errorType": "message",
    "url": "https://discuss.python.org/u/{}/summary",
    "urlMain": "https://discuss.python.org",
    "username_claimed": "pablogsal"
  },
  "Rajce.net": {
    "errorType": "status_code",
    "regexCheck": "^[\\w@-]+?$",
    "url": "https://{}.rajce.idnes.cz/",
    "urlMain": "https://www.rajce.idnes.cz/",
    "username_claimed": "blue"
  },
  "Rarible": {
    "errorType": "status_code",
    "url": "https://rarible.com/marketplace/api/v4/urls/{}",
    "urlMain": "https://rarible.com/",
    "username_claimed": "blue"
  },
  "Rate Your Music": {
    "errorType": "status_code",
    "url": "https://rateyourmusic.com/~{}",
    "urlMain": "https://rateyourmusic.com/",
    "username_claimed": "blue"
  },
  "Rclone Forum": {
    "errorType": "status_code",
    "url": "https://forum.rclone.org/u/{}",
    "urlMain": "https://forum.rclone.org/",
    "username_claimed": "ncw"
  },
  "RedTube": {
    "errorType": "status_code",
    "isNSFW": true,
    "url": "https://www.redtube.com/users/{}",
    "urlMain": "https://www.redtube.com/",
    "username_claimed": "hacker"
  },
  "Redbubble": {
    "errorType": "status_code",
    "url": "https://www.redbubble.com/people/{}",
    "urlMain": "https://www.redbubble.com/",
    "username_claimed": "blue"
  },
  "Reddit": {
    "errorMsg": "Sorry, nobody on Reddit goes by that name.",
    "errorType": "message",
    "headers": {
      "accept-language": "en-US,en;q=0.9"
    },
    "url": "https://www.reddit.com/user/{}",
    "urlMain": "https://www.reddit.com/",
    "username_claimed": "blue"
  },
  "Realmeye": {
    "errorMsg": "Sorry, but we either:",
    "errorType": "message",
    "url": "https://www.realmeye.com/player/{}",
    "urlMain": "https://www.realmeye.com/",
    "username_claimed": "rotmg"
  },
  "Reisefrage": {
    "errorType": "status_code",
    "url": "https://www.reisefrage.net/nutzer/{}",
    "urlMain": "https://www.reisefrage.net/",
    "username_claimed": "reisefrage"
  },
  "Replit.com": {
    "errorType": "status_code",
    "url": "https://replit.com/@{}",
    "urlMain": "https://replit.com/",
    "username_claimed": "blue"
  },
  "ResearchGate": {
    "errorType": "response_url",
    "errorUrl": "https://www.researchgate.net/directory/profiles",
    "regexCheck": "\\w+_\\w+",
    "url": "https://www.researchgate.net/profile/{}",
    "urlMain": "https://www.researchgate.net/",
    "username_claimed": "John_Smith"
  },
  "ReverbNation": {
    "errorMsg": "Sorry, we couldn't find that page",
    "errorType": "message",
    "url": "https://www.reverbnation.com/{}",
    "urlMain": "https://www.reverbnation.com/",
    "username_claimed": "blue"
  },
  "Roblox": {
    "errorType": "status_code",
    "url": "https://www.roblox.com/user.aspx?username={}",
    "urlMain": "https://www.roblox.com/",
    "username_claimed": "bluewolfekiller"
  },
  "RocketTube": {
    "errorMsg": "OOPS! Houston, we have a problem",
    "errorType": "message",
    "isNSFW": true,
    "url": "https://www.rockettube.com/{}",
    "urlMain": "https://www.rockettube.com/",
    "username_claimed": "Tatteddick5600"
  },
  "RoyalCams": {
    "errorType": "status_code",
    "url": "https://royalcams.com/profile/{}",
    "urlMain": "https://royalcams.com",
    "username_claimed": "asuna-black"
  },
  "Ruby Forums": {
    "errorMsg": "Oops! That page doesn’t exist or is private.",
    "errorType": "message",
    "url": "https://ruby-forum.com/u/{}/summary",
    "urlMain": "https://ruby-forums.com",
    "username_claimed": "rishard"
  },
  "RubyGems": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z][a-zA-Z0-9_-]{1,40}",
    "url": "https://rubygems.org/profiles/{}",
    "urlMain": "https://rubygems.org/",
    "username_claimed": "blue"
  },
  "Rumble": {
    "errorType": "status_code",
    "url": "https://rumble.com/user/{}",
    "urlMain": "https://rumble.com/",
    "username_claimed": "John"
  },
  "RuneScape": {
    "errorMsg": "{\"error\":\"NO_PROFILE\",\"loggedIn\":\"false\"}",
    "errorType": "message",
    "regexCheck": "^(?! )[\\w -]{1,12}(?<! )$",
    "url": "https://apps.runescape.com/runemetrics/app/overview/player/{}",
    "urlMain": "https://www.runescape.com/",
    "urlProbe": "https://apps.runescape.com/runemetrics/profile/profile?user={}",
    "username_claimed": "L33"
  },
  "SWAPD": {
    "errorType": "status_code",
    "url": "https://swapd.co/u/{}",
    "urlMain": "https://swapd.co/",
    "username_claimed": "swapd"
  },
  "Sbazar.cz": {
    "errorType": "status_code",
    "url": "https://www.sbazar.cz/{}",
    "urlMain": "https://www.sbazar.cz/",
    "username_claimed": "blue"
  },
  "Scratch": {
    "errorType": "status_code",
    "url": "https://scratch.mit.edu/users/{}",
    "urlMain": "https://scratch.mit.edu/",
    "username_claimed": "griffpatch"
  },
  "Scribd": {
    "errorMsg": "Page not found",
    "errorType": "message",
    "url": "https://www.scribd.com/{}",
    "urlMain": "https://www.scribd.com/",
    "username_claimed": "blue"
  },
  "SEOForum": {
    "errorType": "status_code",
    "url": "https://seoforum.com/@{}",
    "urlMain": "https://www.seoforum.com/",
    "username_claimed": "ko"
  },
  "ShitpostBot5000": {
    "errorType": "status_code",
    "url": "https://www.shitpostbot.com/user/{}",
    "urlMain": "https://www.shitpostbot.com/",
    "username_claimed": "blue"
  },
  "Signal": {
    "errorMsg": "Oops! That page doesn\u2019t exist or is private.",
    "errorType": "message",
    "url": "https://community.signalusers.org/u/{}",
    "urlMain": "https://community.signalusers.org",
    "username_claimed": "jlund"
  },
  "Sketchfab": {
    "errorType": "status_code",
    "url": "https://sketchfab.com/{}",
    "urlMain": "https://sketchfab.com/",
    "username_claimed": "blue"
  },
  "Slack": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z][a-zA-Z0-9_-]*$",
    "url": "https://{}.slack.com",
    "urlMain": "https://slack.com",
    "username_claimed": "blue"
  },
  "Slant": {
    "errorType": "status_code",
    "regexCheck": "^.{2,32}$",
    "url": "https://www.slant.co/users/{}",
    "urlMain": "https://www.slant.co/",
    "username_claimed": "blue"
  },
  "Slashdot": {
    "errorMsg": "user you requested does not exist",
    "errorType": "message",
    "url": "https://slashdot.org/~{}",
    "urlMain": "https://slashdot.org",
    "username_claimed": "blue"
  },
  "SlideShare": {
    "errorType": "message",
    "errorMsg": "<title>Page no longer exists</title>",
    "url": "https://slideshare.net/{}",
    "urlMain": "https://slideshare.net/",
    "username_claimed": "blue"
  },
  "Slides": {
    "errorCode": 204,
    "errorType": "status_code",
    "url": "https://slides.com/{}",
    "urlMain": "https://slides.com/",
    "username_claimed": "blue"
  },
  "SmugMug": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z]{1,35}$",
    "url": "https://{}.smugmug.com",
    "urlMain": "https://smugmug.com",
    "username_claimed": "winchester"
  },
  "Smule": {
    "errorMsg": "Smule | Page Not Found (404)",
    "errorType": "message",
    "url": "https://www.smule.com/{}",
    "urlMain": "https://www.smule.com/",
    "username_claimed": "blue"
  },
  "Snapchat": {
    "errorType": "status_code",
    "regexCheck": "^[a-z][a-z-_.]{3,15}",
    "request_method": "GET",
    "url": "https://www.snapchat.com/add/{}",
    "urlMain": "https://www.snapchat.com",
    "username_claimed": "teamsnapchat"
  },
  "SOOP": {
    "errorType": "status_code",
    "url": "https://www.sooplive.co.kr/station/{}",
    "urlMain": "https://www.sooplive.co.kr/",
    "urlProbe": "https://api-channel.sooplive.co.kr/v1.1/channel/{}/station",
    "username_claimed": "udkn"
  },
  "SoundCloud": {
    "errorType": "status_code",
    "url": "https://soundcloud.com/{}",
    "urlMain": "https://soundcloud.com/",
    "username_claimed": "blue"
  },
  "SourceForge": {
    "errorType": "status_code",
    "url": "https://sourceforge.net/u/{}",
    "urlMain": "https://sourceforge.net/",
    "username_claimed": "blue"
  },
  "SoylentNews": {
    "errorMsg": "The user you requested does not exist, no matter how much you wish this might be the case.",
    "errorType": "message",
    "url": "https://soylentnews.org/~{}",
    "urlMain": "https://soylentnews.org",
    "username_claimed": "adam"
  },
  "SpeakerDeck": {
    "errorType": "status_code",
    "url": "https://speakerdeck.com/{}",
    "urlMain": "https://speakerdeck.com/",
    "username_claimed": "pylapp"
  },
  "Speedrun.com": {
    "errorType": "status_code",
    "url": "https://speedrun.com/users/{}",
    "urlMain": "https://speedrun.com/",
    "username_claimed": "example"
  },
  "Spells8": {
    "errorType": "status_code",
    "url": "https://forum.spells8.com/u/{}",
    "urlMain": "https://spells8.com",
    "username_claimed": "susurrus"
  },
  "Splice": {
    "errorType": "status_code",
    "url": "https://splice.com/{}",
    "urlMain": "https://splice.com/",
    "username_claimed": "splice"
  },
  "Splits.io": {
    "errorType": "status_code",
    "regexCheck": "^[^.]*?$",
    "url": "https://splits.io/users/{}",
    "urlMain": "https://splits.io",
    "username_claimed": "cambosteve"
  },
  "Sporcle": {
    "errorType": "status_code",
    "url": "https://www.sporcle.com/user/{}/people",
    "urlMain": "https://www.sporcle.com/",
    "username_claimed": "blue"
  },
  "Sportlerfrage": {
    "errorType": "status_code",
    "url": "https://www.sportlerfrage.net/nutzer/{}",
    "urlMain": "https://www.sportlerfrage.net/",
    "username_claimed": "sportlerfrage"
  },
  "SportsRU": {
    "errorType": "status_code",
    "url": "https://www.sports.ru/profile/{}/",
    "urlMain": "https://www.sports.ru/",
    "username_claimed": "blue"
  },
  "Spotify": {
    "errorType": "status_code",
    "url": "https://open.spotify.com/user/{}",
    "urlMain": "https://open.spotify.com/",
    "username_claimed": "blue"
  },
  "Star Citizen": {
    "errorMsg": "404",
    "errorType": "message",
    "url": "https://robertsspaceindustries.com/citizens/{}",
    "urlMain": "https://robertsspaceindustries.com/",
    "username_claimed": "blue"
  },
  "Status Cafe": {
    "errorMsg": "Page Not Found",
    "errorType": "message",
    "url": "https://status.cafe/users/{}",
    "urlMain": "https://status.cafe/",
    "username_claimed": "blue"
  },
  "Steam Community (Group)": {
    "errorMsg": "No group could be retrieved for the given URL",
    "errorType": "message",
    "url": "https://steamcommunity.com/groups/{}",
    "urlMain": "https://steamcommunity.com/",
    "username_claimed": "blue"
  },
  "Steam Community (User)": {
    "errorMsg": "The specified profile could not be found",
    "errorType": "message",
    "url": "https://steamcommunity.com/id/{}/",
    "urlMain": "https://steamcommunity.com/",
    "username_claimed": "blue"
  },
  "Strava": {
    "errorType": "status_code",
    "regexCheck": "^[^.]*?$",
    "url": "https://www.strava.com/athletes/{}",
    "urlMain": "https://www.strava.com/",
    "username_claimed": "blue"
  },
  "SublimeForum": {
    "errorType": "status_code",
    "url": "https://forum.sublimetext.com/u/{}",
    "urlMain": "https://forum.sublimetext.com/",
    "username_claimed": "blue"
  },
  "TETR.IO": {
    "errorMsg": "No such user!",
    "errorType": "message",
    "url": "https://ch.tetr.io/u/{}",
    "urlMain": "https://tetr.io",
    "urlProbe": "https://ch.tetr.io/api/users/{}",
    "username_claimed": "osk"
  },
  "TheMovieDB": {
    "errorType": "status_code",
    "url": "https://www.themoviedb.org/u/{}",
    "urlMain": "https://www.themoviedb.org/",
    "username_claimed": "blue"
  },
  "TikTok": {
    "url": "https://www.tiktok.com/@{}",
    "urlMain": "https://www.tiktok.com",
    "errorType": "message",
    "errorMsg": [
      "\"statusCode\":10221",
      "Govt. of India decided to block 59 apps"
    ],
    "username_claimed": "charlidamelio"
  },
  "Tiendanube": {
    "url": "https://{}.mitiendanube.com/",
    "urlMain": "https://www.tiendanube.com/",
    "errorType": "status_code",
    "username_claimed": "blue"
  },
  "Topcoder": {
    "errorType": "status_code",
    "url": "https://profiles.topcoder.com/{}/",
    "urlMain": "https://topcoder.com/",
    "username_claimed": "USER",
    "urlProbe": "https://api.topcoder.com/v5/members/{}",
    "regexCheck": "^[a-zA-Z0-9_.]+$"
  },
  "Topmate": {
    "errorType": "status_code",
    "url": "https://topmate.io/{}",
    "urlMain": "https://topmate.io/",
    "username_claimed": "blue"
  },
  "TRAKTRAIN": {
    "errorType": "status_code",
    "url": "https://traktrain.com/{}",
    "urlMain": "https://traktrain.com/",
    "username_claimed": "traktrain"
  },
  "Telegram": {
    "errorMsg": [
      "<title>Telegram Messenger</title>",
      "If you have <strong>Telegram</strong>, you can contact <a class=\"tgme_username_link\" href=\"tg://resolve?domain="
    ],
    "errorType": "message",
    "regexCheck": "^[a-zA-Z0-9_]{3,32}[^_]$",
    "url": "https://t.me/{}",
    "urlMain": "https://t.me/",
    "username_claimed": "blue"
  },
  "Tellonym.me": {
    "errorType": "status_code",
    "url": "https://tellonym.me/{}",
    "urlMain": "https://tellonym.me/",
    "username_claimed": "blue"
  },
  "Tenor": {
    "errorType": "status_code",
    "regexCheck": "^[A-Za-z0-9_]{2,32}$",
    "url": "https://tenor.com/users/{}",
    "urlMain": "https://tenor.com/",
    "username_claimed": "red"
  },
  "Terraria Forums": {
    "errorMsg": "The following members could not be found",
    "errorType": "message",
    "url": "https://forums.terraria.org/index.php?search/42798315/&c[users]={}&o=relevance",
    "urlMain": "https://forums.terraria.org/index.php",
    "username_claimed": "blue"
  },
  "ThemeForest": {
    "errorType": "status_code",
    "url": "https://themeforest.net/user/{}",
    "urlMain": "https://themeforest.net/",
    "username_claimed": "user"
  },
  "tistory": {
    "errorType": "status_code",
    "url": "https://{}.tistory.com/",
    "urlMain": "https://www.tistory.com/",
    "username_claimed": "notice"
  },
  "TnAFlix": {
    "errorType": "status_code",
    "isNSFW": true,
    "url": "https://www.tnaflix.com/profile/{}",
    "urlMain": "https://www.tnaflix.com/",
    "username_claimed": "hacker"
  },
  "TradingView": {
    "errorType": "status_code",
    "request_method": "GET",
    "url": "https://www.tradingview.com/u/{}/",
    "urlMain": "https://www.tradingview.com/",
    "username_claimed": "blue"
  },
  "Trakt": {
    "errorType": "status_code",
    "regexCheck": "^[^.]*$",
    "url": "https://www.trakt.tv/users/{}",
    "urlMain": "https://www.trakt.tv/",
    "username_claimed": "blue"
  },
  "TrashboxRU": {
    "errorType": "status_code",
    "regexCheck": "^[A-Za-z0-9_-]{3,16}$",
    "url": "https://trashbox.ru/users/{}",
    "urlMain": "https://trashbox.ru/",
    "username_claimed": "blue"
  },
  "Trawelling": {
    "errorType": "status_code",
    "url": "https://traewelling.de/@{}",
    "urlMain": "https://traewelling.de/",
    "username_claimed": "lassestolley"
  },
  "Trello": {
    "errorMsg": "model not found",
    "errorType": "message",
    "url": "https://trello.com/{}",
    "urlMain": "https://trello.com/",
    "urlProbe": "https://trello.com/1/Members/{}",
    "username_claimed": "blue"
  },
  "TryHackMe": {
    "errorMsg": "{\"success\":false}",
    "errorType": "message",
    "regexCheck": "^[a-zA-Z0-9.]{1,16}$",
    "url": "https://tryhackme.com/p/{}",
    "urlMain": "https://tryhackme.com/",
    "urlProbe": "https://tryhackme.com/api/user/exist/{}",
    "username_claimed": "ashu"
  },
  "Tuna": {
    "errorType": "status_code",
    "regexCheck": "^[a-z0-9]{4,40}$",
    "url": "https://tuna.voicemod.net/user/{}",
    "urlMain": "https://tuna.voicemod.net/",
    "username_claimed": "bob"
  },
  "Tweakers": {
    "errorType": "status_code",
    "url": "https://tweakers.net/gallery/{}",
    "urlMain": "https://tweakers.net",
    "username_claimed": "femme"
  },
  "Twitch": {
    "errorMsg": "content='Twitch is the world&#39;s leading video platform and community for gamers.'",
    "errorType": "message",
    "url": "https://www.twitch.tv/{}",
    "urlMain": "https://www.twitch.tv",
    "username_claimed": "xqc"
  },

  "Trovo": {
    "errorMsg": "Uh Ohhh...",
    "errorType": "message",
    "url": "https://trovo.live/s/{}/",
    "urlMain": "https://trovo.live",
    "username_claimed": "Aimilios"
  },
  "Twitter": {
    "errorMsg": [
      "<div class=\"error-panel\"><span>User ",
      "<title>429 Too Many Requests</title>"
    ],
    "errorType": "message",
    "regexCheck": "^[a-zA-Z0-9_]{1,15}$",
    "url": "https://x.com/{}",
    "urlMain": "https://x.com/",
    "urlProbe": "https://nitter.privacydev.net/{}",
    "username_claimed": "blue"
  },
  "Typeracer": {
    "errorMsg": "Profile Not Found",
    "errorType": "message",
    "url": "https://data.typeracer.com/pit/profile?user={}",
    "urlMain": "https://typeracer.com",
    "username_claimed": "blue"
  },
  "Ultimate-Guitar": {
    "errorType": "status_code",
    "url": "https://ultimate-guitar.com/u/{}",
    "urlMain": "https://ultimate-guitar.com/",
    "username_claimed": "blue"
  },
  "Unsplash": {
    "errorType": "status_code",
    "regexCheck": "^[a-z0-9_]{1,60}$",
    "url": "https://unsplash.com/@{}",
    "urlMain": "https://unsplash.com/",
    "username_claimed": "jenny"
  },
  "Untappd": {
    "errorType": "status_code",
    "url": "https://untappd.com/user/{}",
    "urlMain": "https://untappd.com/",
    "username_claimed": "untappd"
  },
  "Valorant Forums": {
    "errorMsg": "The page you requested could not be found.",
    "errorType": "message",
    "url": "https://valorantforums.com/u/{}",
    "urlMain": "https://valorantforums.com",
    "username_claimed": "Wolves"
  },
  "VK": {
    "errorType": "response_url",
    "errorUrl": "https://www.quora.com/profile/{}",
    "url": "https://vk.com/{}",
    "urlMain": "https://vk.com/",
    "username_claimed": "brown"
  },
  "VSCO": {
    "errorType": "status_code",
    "url": "https://vsco.co/{}",
    "urlMain": "https://vsco.co/",
    "username_claimed": "blue"
  },
  "Velog": {
    "errorType": "status_code",
    "url": "https://velog.io/@{}/posts",
    "urlMain": "https://velog.io/",
    "username_claimed": "qlgks1"
  },
  "Velomania": {
    "errorMsg": "\u041f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u043d\u0435 \u0437\u0430\u0440\u0435\u0433\u0438\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u043d \u0438 \u043d\u0435 \u0438\u043c\u0435\u0435\u0442 \u043f\u0440\u043e\u0444\u0438\u043b\u044f \u0434\u043b\u044f \u043f\u0440\u043e\u0441\u043c\u043e\u0442\u0440\u0430.",
    "errorType": "message",
    "url": "https://forum.velomania.ru/member.php?username={}",
    "urlMain": "https://forum.velomania.ru/",
    "username_claimed": "red"
  },
  "Venmo": {
    "errorMsg": ["Venmo | Page Not Found"],
    "errorType": "message",
    "headers": {
      "Host": "account.venmo.com"
    },
    "url": "https://account.venmo.com/u/{}",
    "urlMain": "https://venmo.com/",
    "urlProbe": "https://test1.venmo.com/u/{}",
    "username_claimed": "jenny"
  },
  "Vero": {
    "errorMsg": "Not Found",
    "errorType": "message",
    "request_method": "GET",
    "url": "https://vero.co/{}",
    "urlMain": "https://vero.co/",
    "username_claimed": "blue"
  },
  "Vimeo": {
    "errorType": "status_code",
    "url": "https://vimeo.com/{}",
    "urlMain": "https://vimeo.com/",
    "username_claimed": "blue"
  },
  "VirusTotal": {
    "errorType": "status_code",
    "request_method": "GET",
    "url": "https://www.virustotal.com/gui/user/{}",
    "urlMain": "https://www.virustotal.com/",
    "urlProbe": "https://www.virustotal.com/ui/users/{}/avatar",
    "username_claimed": "blue"
  },
  "VLR": {
    "errorType": "status_code",
    "url": "https://www.vlr.gg/user/{}",
    "urlMain": "https://www.vlr.gg",
    "username_claimed": "optms"
  },
  "WICG Forum": {
    "errorType": "status_code",
    "regexCheck": "^(?![.-])[a-zA-Z0-9_.-]{3,20}$",
    "url": "https://discourse.wicg.io/u/{}/summary",
    "urlMain": "https://discourse.wicg.io/",
    "username_claimed": "stefano"
  },
  "Wakatime": {
    "errorType": "status_code",
    "url": "https://wakatime.com/@{}",
    "urlMain": "https://wakatime.com/",
    "username_claimed": "blue"
  },
  "Warrior Forum": {
    "errorType": "status_code",
    "url": "https://www.warriorforum.com/members/{}.html",
    "urlMain": "https://www.warriorforum.com/",
    "username_claimed": "blue"
  },
  "Wattpad": {
    "errorType": "status_code",
    "url": "https://www.wattpad.com/user/{}",
    "urlMain": "https://www.wattpad.com/",
    "urlProbe": "https://www.wattpad.com/api/v3/users/{}/",
    "username_claimed": "Dogstho7951"
  },
  "WebNode": {
    "errorType": "status_code",
    "regexCheck": "^[\\w@-]+?$",
    "url": "https://{}.webnode.cz/",
    "urlMain": "https://www.webnode.cz/",
    "username_claimed": "radkabalcarova"
  },
  "Weblate": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z0-9@._-]{1,150}$",
    "url": "https://hosted.weblate.org/user/{}/",
    "urlMain": "https://hosted.weblate.org/",
    "username_claimed": "adam"
  },
  "Weebly": {
    "errorType": "status_code",
    "regexCheck": "^[a-zA-Z0-9-]{1,63}$",
    "url": "https://{}.weebly.com/",
    "urlMain": "https://weebly.com/",
    "username_claimed": "blue"
  },
  "Wikidot": {
    "errorMsg": "User does not exist.",
    "errorType": "message",
    "url": "http://www.wikidot.com/user:info/{}",
    "urlMain": "http://www.wikidot.com/",
    "username_claimed": "blue"
  },
  "Wikipedia": {
    "errorMsg": "centralauth-admin-nonexistent:",
    "errorType": "message",
    "url": "https://en.wikipedia.org/wiki/Special:CentralAuth/{}?uselang=qqx",
    "urlMain": "https://www.wikipedia.org/",
    "username_claimed": "Hoadlck"
  },
  "Windy": {
    "errorType": "status_code",
    "url": "https://community.windy.com/user/{}",
    "urlMain": "https://windy.com/",
    "username_claimed": "blue"
  },
  "Wix": {
    "errorType": "status_code",
    "regexCheck": "^[\\w@-]+?$",
    "url": "https://{}.wix.com",
    "urlMain": "https://wix.com/",
    "username_claimed": "support"
  },
  "WolframalphaForum": {
    "errorType": "status_code",
    "url": "https://community.wolfram.com/web/{}/home",
    "urlMain": "https://community.wolfram.com/",
    "username_claimed": "unico"
  },
  "WordPress": {
    "errorType": "response_url",
    "errorUrl": "wordpress.com/typo/?subdomain=",
    "regexCheck": "^[a-zA-Z][a-zA-Z0-9_-]*$",
    "url": "https://{}.wordpress.com/",
    "urlMain": "https://wordpress.com",
    "username_claimed": "blue"
  },
  "WordPressOrg": {
    "errorType": "response_url",
    "errorUrl": "https://wordpress.org",
    "url": "https://profiles.wordpress.org/{}/",
    "urlMain": "https://wordpress.org/",
    "username_claimed": "blue"
  },
  "Wordnik": {
    "errorMsg": "Page Not Found",
    "errorType": "message",
    "regexCheck": "^[a-zA-Z0-9_.+-]{1,40}$",
    "url": "https://www.wordnik.com/users/{}",
    "urlMain": "https://www.wordnik.com/",
    "username_claimed": "blue"
  },
  "Wykop": {
    "errorType": "status_code",
    "url": "https://www.wykop.pl/ludzie/{}",
    "urlMain": "https://www.wykop.pl",
    "username_claimed": "blue"
  },
  "Xbox Gamertag": {
    "errorType": "status_code",
    "url": "https://xboxgamertag.com/search/{}",
    "urlMain": "https://xboxgamertag.com/",
    "username_claimed": "red"
  },
  "Xvideos": {
    "errorType": "status_code",
    "isNSFW": true,
    "url": "https://xvideos.com/profiles/{}",
    "urlMain": "https://xvideos.com/",
    "username_claimed": "blue"
  },
  "YandexMusic": {
    "__comment__": "The first and third errorMsg relate to geo-restrictions and bot detection/captchas.",
    "errorMsg": [
      "\u041e\u0448\u0438\u0431\u043a\u0430 404",
      "<meta name=\"description\" content=\"\u041e\u0442\u043a\u0440\u044b\u0432\u0430\u0439\u0442\u0435 \u043d\u043e\u0432\u0443\u044e \u043c\u0443\u0437\u044b\u043a\u0443 \u043a\u0430\u0436\u0434\u044b\u0439 \u0434\u0435\u043d\u044c.",
      "<input type=\"submit\" class=\"CheckboxCaptcha-Button\""
    ],
    "errorType": "message",
    "url": "https://music.yandex/users/{}/playlists",
    "urlMain": "https://music.yandex",
    "username_claimed": "ya.playlist"
  },
  "YouNow": {
    "errorMsg": "No users found",
    "errorType": "message",
    "url": "https://www.younow.com/{}/",
    "urlMain": "https://www.younow.com/",
    "urlProbe": "https://api.younow.com/php/api/broadcast/info/user={}/",
    "username_claimed": "blue"
  },
  "YouPic": {
    "errorType": "status_code",
    "url": "https://youpic.com/photographer/{}/",
    "urlMain": "https://youpic.com/",
    "username_claimed": "blue"
  },
  "YouPorn": {
    "errorType": "status_code",
    "isNSFW": true,
    "url": "https://youporn.com/uservids/{}",
    "urlMain": "https://youporn.com",
    "username_claimed": "blue"
  },
  "YouTube": {
    "errorType": "status_code",
    "url": "https://www.youtube.com/@{}",
    "urlMain": "https://www.youtube.com/",
    "username_claimed": "youtube"
  },
  "akniga": {
    "errorType": "status_code",
    "url": "https://akniga.org/profile/{}",
    "urlMain": "https://akniga.org/profile/blue/",
    "username_claimed": "blue"
  },
  "authorSTREAM": {
    "errorType": "status_code",
    "url": "http://www.authorstream.com/{}/",
    "urlMain": "http://www.authorstream.com/",
    "username_claimed": "blue"
  },
  "babyblogRU": {
    "errorType": "response_url",
    "errorUrl": "https://www.babyblog.ru/",
    "url": "https://www.babyblog.ru/user/{}",
    "urlMain": "https://www.babyblog.ru/",
    "username_claimed": "blue"
  },
  "chaos.social": {
    "errorType": "status_code",
    "url": "https://chaos.social/@{}",
    "urlMain": "https://chaos.social/",
    "username_claimed": "rixx"
  },
  "couchsurfing": {
    "errorType": "status_code",
    "url": "https://www.couchsurfing.com/people/{}",
    "urlMain": "https://www.couchsurfing.com/",
    "username_claimed": "blue"
  },
  "d3RU": {
    "errorType": "status_code",
    "url": "https://d3.ru/user/{}/posts",
    "urlMain": "https://d3.ru/",
    "username_claimed": "blue"
  },
  "dailykos": {
    "errorMsg": "{\"result\":true,\"message\":null}",
    "errorType": "message",
    "url": "https://www.dailykos.com/user/{}",
    "urlMain": "https://www.dailykos.com",
    "urlProbe": "https://www.dailykos.com/signup/check_nickname?nickname={}",
    "username_claimed": "blue"
  },
  "datingRU": {
    "errorType": "status_code",
    "url": "http://dating.ru/{}",
    "urlMain": "http://dating.ru",
    "username_claimed": "blue"
  },
  "devRant": {
    "errorType": "response_url",
    "errorUrl": "https://devrant.com/",
    "url": "https://devrant.com/users/{}",
    "urlMain": "https://devrant.com/",
    "username_claimed": "blue"
  },
  "drive2": {
    "errorType": "status_code",
    "url": "https://www.drive2.ru/users/{}",
    "urlMain": "https://www.drive2.ru/",
    "username_claimed": "blue"
  },
  "eGPU": {
    "errorType": "status_code",
    "url": "https://egpu.io/forums/profile/{}/",
    "urlMain": "https://egpu.io/",
    "username_claimed": "blue"
  },
  "eintracht": {
    "errorType": "status_code",
    "regexCheck": "^[^.]*?$",
    "url": "https://community.eintracht.de/fans/{}",
    "urlMain": "https://eintracht.de",
    "username_claimed": "blue"
  },
  "fixya": {
    "errorType": "status_code",
    "url": "https://www.fixya.com/users/{}",
    "urlMain": "https://www.fixya.com",
    "username_claimed": "adam"
  },
  "fl": {
    "errorType": "status_code",
    "url": "https://www.fl.ru/users/{}",
    "urlMain": "https://www.fl.ru/",
    "username_claimed": "blue"
  },
  "forum_guns": {
    "errorMsg": "action=https://forum.guns.ru/forummisc/blog/search",
    "errorType": "message",
    "url": "https://forum.guns.ru/forummisc/blog/{}",
    "urlMain": "https://forum.guns.ru/",
    "username_claimed": "red"
  },
  "freecodecamp": {
    "errorType": "status_code",
    "url": "https://www.freecodecamp.org/{}",
    "urlMain": "https://www.freecodecamp.org/",
    "urlProbe": "https://api.freecodecamp.org/api/users/get-public-profile?username={}",
    "username_claimed": "naveennamani"
  },
  "furaffinity": {
    "errorMsg": "This user cannot be found.",
    "errorType": "message",
    "url": "https://www.furaffinity.net/user/{}",
    "urlMain": "https://www.furaffinity.net",
    "username_claimed": "jesus"
  },
  "geocaching": {
    "errorType": "status_code",
    "url": "https://www.geocaching.com/p/default.aspx?u={}",
    "urlMain": "https://www.geocaching.com/",
    "username_claimed": "blue"
  },
  "habr": {
    "errorType": "status_code",
    "url": "https://habr.com/ru/users/{}",
    "urlMain": "https://habr.com/",
    "username_claimed": "blue"
  },
  "hackster": {
    "errorType": "status_code",
    "url": "https://www.hackster.io/{}",
    "urlMain": "https://www.hackster.io",
    "username_claimed": "blue"
  },
  "hunting": {
    "errorMsg": "\u0423\u043a\u0430\u0437\u0430\u043d\u043d\u044b\u0439 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u043d\u0435 \u043d\u0430\u0439\u0434\u0435\u043d. \u041f\u043e\u0436\u0430\u043b\u0443\u0439\u0441\u0442\u0430, \u0432\u0432\u0435\u0434\u0438\u0442\u0435 \u0434\u0440\u0443\u0433\u043e\u0435 \u0438\u043c\u044f.",
    "errorType": "message",
    "url": "https://www.hunting.ru/forum/members/?username={}",
    "urlMain": "https://www.hunting.ru/forum/",
    "username_claimed": "red"
  },
  "igromania": {
    "errorMsg": "\u041f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u043d\u0435 \u0437\u0430\u0440\u0435\u0433\u0438\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u043d \u0438 \u043d\u0435 \u0438\u043c\u0435\u0435\u0442 \u043f\u0440\u043e\u0444\u0438\u043b\u044f \u0434\u043b\u044f \u043f\u0440\u043e\u0441\u043c\u043e\u0442\u0440\u0430.",
    "errorType": "message",
    "url": "http://forum.igromania.ru/member.php?username={}",
    "urlMain": "http://forum.igromania.ru/",
    "username_claimed": "blue"
  },
  "interpals": {
    "errorMsg": "The requested user does not exist or is inactive",
    "errorType": "message",
    "url": "https://www.interpals.net/{}",
    "urlMain": "https://www.interpals.net/",
    "username_claimed": "blue"
  },
  "irecommend": {
    "errorType": "status_code",
    "url": "https://irecommend.ru/users/{}",
    "urlMain": "https://irecommend.ru/",
    "username_claimed": "blue"
  },
  "jbzd.com.pl": {
    "errorType": "status_code",
    "url": "https://jbzd.com.pl/uzytkownik/{}",
    "urlMain": "https://jbzd.com.pl/",
    "username_claimed": "blue"
  },
  "jeuxvideo": {
    "errorType": "status_code",
    "request_method": "GET",
    "url": "https://www.jeuxvideo.com/profil/{}",
    "urlMain": "https://www.jeuxvideo.com",
    "urlProbe": "https://www.jeuxvideo.com/profil/{}?mode=infos",
    "username_claimed": "adam"
  },
  "kofi": {
    "errorType": "response_url",
    "errorUrl": "https://ko-fi.com/art?=redirect",
    "url": "https://ko-fi.com/{}",
    "urlMain": "https://ko-fi.com",
    "username_claimed": "yeahkenny"
  },
  "kwork": {
    "errorType": "status_code",
    "url": "https://kwork.ru/user/{}",
    "urlMain": "https://www.kwork.ru/",
    "username_claimed": "blue"
  },
  "last.fm": {
    "errorType": "status_code",
    "url": "https://last.fm/user/{}",
    "urlMain": "https://last.fm/",
    "username_claimed": "blue"
  },
  "leasehackr": {
    "errorType": "status_code",
    "url": "https://forum.leasehackr.com/u/{}/summary/",
    "urlMain": "https://forum.leasehackr.com/",
    "username_claimed": "adam"
  },
  "livelib": {
    "errorType": "status_code",
    "url": "https://www.livelib.ru/reader/{}",
    "urlMain": "https://www.livelib.ru/",
    "username_claimed": "blue"
  },
  "mastodon.cloud": {
    "errorType": "status_code",
    "url": "https://mastodon.cloud/@{}",
    "urlMain": "https://mastodon.cloud/",
    "username_claimed": "TheAdmin"
  },
  "mastodon.social": {
    "errorType": "status_code",
    "url": "https://mastodon.social/@{}",
    "urlMain": "https://chaos.social/",
    "username_claimed": "Gargron"
  },
  "mastodon.xyz": {
    "errorType": "status_code",
    "url": "https://mastodon.xyz/@{}",
    "urlMain": "https://mastodon.xyz/",
    "username_claimed": "TheKinrar"
  },
  "mstdn.social": {
    "errorType": "status_code",
    "url": "https://mstdn.social/@{}",
    "urlMain": "https://mstdn.social/",
    "username_claimed": "MagicLike"
  },
  "mercadolivre": {
    "errorType": "status_code",
    "url": "https://www.mercadolivre.com.br/perfil/{}",
    "urlMain": "https://www.mercadolivre.com.br",
    "username_claimed": "blue"
  },
  "minds": {
    "errorMsg": "\"valid\":true",
    "errorType": "message",
    "url": "https://www.minds.com/{}/",
    "urlMain": "https://www.minds.com",
    "urlProbe": "https://www.minds.com/api/v3/register/validate?username={}",
    "username_claimed": "john"
  },
  "moikrug": {
    "errorType": "status_code",
    "url": "https://moikrug.ru/{}",
    "urlMain": "https://moikrug.ru/",
    "username_claimed": "blue"
  },
  "mstdn.io": {
    "errorType": "status_code",
    "url": "https://mstdn.io/@{}",
    "urlMain": "https://mstdn.io/",
    "username_claimed": "blue"
  },
  "nairaland.com": {
    "errorType": "status_code",
    "url": "https://www.nairaland.com/{}",
    "urlMain": "https://www.nairaland.com/",
    "username_claimed": "red"
  },
  "n8n Community": {
    "errorType": "status_code",
    "url": "https://community.n8n.io/u/{}/summary",
    "urlMain": "https://community.n8n.io/",
    "username_claimed": "n8n"
  },
  "nnRU": {
    "errorType": "status_code",
    "regexCheck": "^[\\w@-]+?$",
    "url": "https://{}.www.nn.ru/",
    "urlMain": "https://www.nn.ru/",
    "username_claimed": "blue"
  },
  "note": {
    "errorType": "status_code",
    "url": "https://note.com/{}",
    "urlMain": "https://note.com/",
    "username_claimed": "blue"
  },
  "npm": {
    "errorType": "status_code",
    "url": "https://www.npmjs.com/~{}",
    "urlMain": "https://www.npmjs.com/",
    "username_claimed": "kennethsweezy"
  },
  "omg.lol": {
    "errorMsg": "\"available\": true",
    "errorType": "message",
    "url": "https://{}.omg.lol",
    "urlMain": "https://home.omg.lol",
    "urlProbe": "https://api.omg.lol/address/{}/availability",
    "username_claimed": "adam"
  },
  "opennet": {
    "errorMsg": "\u0418\u043c\u044f \u0443\u0447\u0430\u0441\u0442\u043d\u0438\u043a\u0430 \u043d\u0435 \u043d\u0430\u0439\u0434\u0435\u043d\u043e",
    "errorType": "message",
    "regexCheck": "^[^-]*$",
    "url": "https://www.opennet.ru/~{}",
    "urlMain": "https://www.opennet.ru/",
    "username_claimed": "anonismus"
  },
  "osu!": {
    "errorType": "status_code",
    "url": "https://osu.ppy.sh/users/{}",
    "urlMain": "https://osu.ppy.sh/",
    "username_claimed": "blue"
  },
  "phpRU": {
    "errorMsg": "\u0423\u043a\u0430\u0437\u0430\u043d\u043d\u044b\u0439 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u043d\u0435 \u043d\u0430\u0439\u0434\u0435\u043d. \u041f\u043e\u0436\u0430\u043b\u0443\u0439\u0441\u0442\u0430, \u0432\u0432\u0435\u0434\u0438\u0442\u0435 \u0434\u0440\u0443\u0433\u043e\u0435 \u0438\u043c\u044f.",
    "errorType": "message",
    "url": "https://php.ru/forum/members/?username={}",
    "urlMain": "https://php.ru/forum/",
    "username_claimed": "apple"
  },
  "pikabu": {
    "errorType": "status_code",
    "url": "https://pikabu.ru/@{}",
    "urlMain": "https://pikabu.ru/",
    "username_claimed": "blue"
  },
  "Pinterest": {
    "errorType": "status_code",
    "errorUrl": "https://www.pinterest.com/",
    "url": "https://www.pinterest.com/{}/",
    "urlProbe": "https://www.pinterest.com/oembed.json?url=https://www.pinterest.com/{}/",
    "urlMain": "https://www.pinterest.com/",
    "username_claimed": "blue"
  },
  "pr0gramm": {
    "errorType": "status_code",
    "url": "https://pr0gramm.com/user/{}",
    "urlMain": "https://pr0gramm.com/",
    "urlProbe": "https://pr0gramm.com/api/profile/info?name={}",
    "username_claimed": "cha0s"
  },
  "prog.hu": {
    "errorType": "response_url",
    "errorUrl": "https://prog.hu/azonosito/info/{}",
    "url": "https://prog.hu/azonosito/info/{}",
    "urlMain": "https://prog.hu/",
    "username_claimed": "Sting"
  },
  "satsisRU": {
    "errorType": "status_code",
    "url": "https://satsis.info/user/{}",
    "urlMain": "https://satsis.info/",
    "username_claimed": "red"
  },
  "sessionize": {
    "errorType": "status_code",
    "url": "https://sessionize.com/{}",
    "urlMain": "https://sessionize.com/",
    "username_claimed": "jason-mayes"
  },
  "social.tchncs.de": {
    "errorType": "status_code",
    "url": "https://social.tchncs.de/@{}",
    "urlMain": "https://social.tchncs.de/",
    "username_claimed": "Milan"
  },
  "spletnik": {
    "errorType": "status_code",
    "url": "https://spletnik.ru/user/{}",
    "urlMain": "https://spletnik.ru/",
    "username_claimed": "blue"
  },
  "svidbook": {
    "errorType": "status_code",
    "url": "https://www.svidbook.ru/user/{}",
    "urlMain": "https://www.svidbook.ru/",
    "username_claimed": "green"
  },
  "threads": {
    "errorMsg": "<title>Threads • Log in</title>",
    "errorType": "message",
    "headers": {
      "Sec-Fetch-Mode": "navigate"
    },
    "url": "https://www.threads.net/@{}",
    "urlMain": "https://www.threads.net/",
    "username_claimed": "zuck"
  },
  "toster": {
    "errorType": "status_code",
    "url": "https://www.toster.ru/user/{}/answers",
    "urlMain": "https://www.toster.ru/",
    "username_claimed": "adam"
  },
  "tumblr": {
    "errorType": "status_code",
    "url": "https://{}.tumblr.com/",
    "urlMain": "https://www.tumblr.com/",
    "username_claimed": "goku"
  },
  "uid": {
    "errorType": "status_code",
    "url": "http://uid.me/{}",
    "urlMain": "https://uid.me/",
    "username_claimed": "blue"
  },
  "write.as": {
    "errorType": "status_code",
    "url": "https://write.as/{}",
    "urlMain": "https://write.as",
    "username_claimed": "pylapp"
  },
  "xHamster": {
    "errorType": "status_code",
    "isNSFW": true,
    "url": "https://xhamster.com/users/{}",
    "urlMain": "https://xhamster.com",
    "urlProbe": "https://xhamster.com/users/{}?old_browser=true",
    "username_claimed": "blue"
  },
  "znanylekarz.pl": {
    "errorType": "status_code",
    "url": "https://www.znanylekarz.pl/{}",
    "urlMain": "https://znanylekarz.pl",
    "username_claimed": "janusz-nowak"
  },
  "Platzi": {
    "errorType": "status_code",
    "errorCode": 404,
    "url": "https://platzi.com/p/{}/",
    "urlMain": "https://platzi.com/",
    "username_claimed": "freddier",
    "request_method": "GET"
  },
  "BabyRu": {
    "url": "https://www.baby.ru/u/{}",
    "urlMain": "https://www.baby.ru/",
    "errorType": "message",
    "errorMsg": [
      "\u0421\u0442\u0440\u0430\u043d\u0438\u0446\u0430, \u043a\u043e\u0442\u043e\u0440\u0443\u044e \u0432\u044b \u0438\u0441\u043a\u0430\u043b\u0438, \u043d\u0435 \u043d\u0430\u0439\u0434\u0435\u043d\u0430",
      "\u0414\u043e\u0441\u0442\u0443\u043f \u0441 \u0432\u0430\u0448\u0435\u0433\u043e IP-\u0430\u0434\u0440\u0435\u0441\u0430 \u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d"
    ],
    "username_claimed": "example"
  }
}


================================================
FILE: the_big_brother/resources/data.schema.json
================================================
{
  "$schema": "https://json-schema.org/draft/2020-12/schema",
  "title": "Sherlock Target Manifest",
  "description": "Social media targets to probe for the existence of known usernames",
  "type": "object",
  "properties": {
    "$schema": { "type": "string" }
  },
  "patternProperties": {
    "^(?!\\$).*?$": {
      "type": "object",
      "description": "Target name and associated information (key should be human readable name)",
      "required": ["url", "urlMain", "errorType", "username_claimed"],
      "properties": {
        "url": { "type": "string" },
        "urlMain": { "type": "string" },
        "urlProbe": { "type": "string" },
        "username_claimed": { "type": "string" },
        "regexCheck": { "type": "string" },
        "isNSFW": { "type": "boolean" },
        "headers": { "type": "object" },
        "request_payload": { "type": "object" },
        "__comment__": {
          "type": "string",
          "description": "Used to clarify important target information if (and only if) a commit message would not suffice.\nThis key should not be parsed anywhere within Sherlock."
        },
        "tags": {
          "oneOf": [
            { "$ref": "#/$defs/tag" },
            { "type": "array", "items": { "$ref": "#/$defs/tag" } }
          ]
        },
        "request_method": {
          "type": "string",
          "enum": ["GET", "POST", "HEAD", "PUT"]
        },
        "errorType": {
          "oneOf": [
            {
              "type": "string",
              "enum": ["message", "response_url", "status_code"]
            },
            {
              "type": "array",
              "items": {
                "type": "string",
                "enum": ["message", "response_url", "status_code"]
              }
            }
          ]
        },
        "errorMsg": {
          "oneOf": [
            { "type": "string" },
            { "type": "array", "items": { "type": "string" } }
          ]
        },
        "errorCode": {
          "oneOf": [
            { "type": "integer" },
            { "type": "array", "items": { "type": "integer" } }
          ]
        },
        "errorUrl": { "type": "string" },
        "response_url": { "type": "string" }
      },
      "dependencies": {
        "errorMsg": {
          "oneOf": [
            { "properties": { "errorType": { "const": "message" } } },
            {
              "properties": {
                "errorType": {
                  "type": "array",
                  "contains": { "const": "message" }
                }
              }
            }
          ]
        },
        "errorUrl": {
          "oneOf": [
            { "properties": { "errorType": { "const": "response_url" } } },
            {
              "properties": {
                "errorType": {
                  "type": "array",
                  "contains": { "const": "response_url" }
                }
              }
            }
          ]
        },
        "errorCode": {
          "oneOf": [
            { "properties": { "errorType": { "const": "status_code" } } },
            {
              "properties": {
                "errorType": {
                  "type": "array",
                  "contains": { "const": "status_code" }
                }
              }
            }
          ]
        }
      },
      "allOf": [
        {
          "if": {
            "anyOf": [
              { "properties": { "errorType": { "const": "message" } } },
              {
                "properties": {
                  "errorType": {
                    "type": "array",
                    "contains": { "const": "message" }
                  }
                }
              }
            ]
          },
          "then": { "required": ["errorMsg"] }
        },
        {
          "if": {
            "anyOf": [
              { "properties": { "errorType": { "const": "response_url" } } },
              {
                "properties": {
                  "errorType": {
                    "type": "array",
                    "contains": { "const": "response_url" }
                  }
                }
              }
            ]
          },
          "then": { "required": ["errorUrl"] }
        }
      ],
      "additionalProperties": false
    }
  },
  "additionalProperties": false,
  "$defs": {
    "tag": { "type": "string", "enum": ["adult", "gaming"] }
  }
}


================================================
FILE: the_big_brother/result.py
================================================
"""The Big Brother Result Module

This module defines various objects for recording the results of queries.
"""
from enum import Enum


class QueryStatus(Enum):
    """Query Status Enumeration.

    Describes status of query about a given username.
    """
    CLAIMED   = "Claimed"   # Username Detected
    AVAILABLE = "Available" # Username Not Detected
    UNKNOWN   = "Unknown"   # Error Occurred While Trying To Detect Username
    ILLEGAL   = "Illegal"   # Username Not Allowable For This Site
    WAF       = "WAF"       # Request blocked by WAF (i.e. Cloudflare)

    def __str__(self):
        """Convert Object To String.

        Keyword Arguments:
        self                   -- This object.

        Return Value:
        Nicely formatted string to get information about this object.
        """
        return self.value

class QueryResult():
    """Query Result Object.

    Describes result of query about a given username.
    """
    def __init__(self, username, site_name, site_url_user, status,
                 query_time=None, context=None):
        """Create Query Result Object.

        Contains information about a specific method of detecting usernames on
        a given type of web sites.

        Keyword Arguments:
        self                   -- This object.
        username               -- String indicating username that query result
                                  was about.
        site_name              -- String which identifies site.
        site_url_user          -- String containing URL for username on site.
                                  NOTE:  The site may or may not exist:  this
                                         just indicates what the name would
                                         be, if it existed.
        status                 -- Enumeration of type QueryStatus() indicating
                                  the status of the query.
        query_time             -- Time (in seconds) required to perform query.
                                  Default of None.
        context                -- String indicating any additional context
                                  about the query.  For example, if there was
                                  an error, this might indicate the type of
                                  error that occurred.
                                  Default of None.

        Return Value:
        Nothing.
        """

        self.username      = username
        self.site_name     = site_name
        self.site_url_user = site_url_user
        self.status        = status
        self.query_time    = query_time
        self.context       = context

        return

    def __str__(self):
        """Convert Object To String.

        Keyword Arguments:
        self                   -- This object.

        Return Value:
        Nicely formatted string to get information about this object.
        """
        status = str(self.status)
        if self.context is not None:
            # There is extra context information available about the results.
            # Append it to the normal response text.
            status += f" ({self.context})"

        return status


================================================
FILE: the_big_brother/reverse_search.py
================================================
from playwright.async_api import async_playwright
import urllib.parse
import asyncio
import random

class ReverseImageSearcher:
    def __init__(self, headless=True):
        self.headless = headless

    async def _search_google(self, context, encoded_url):
        results = []
        try:
            print("   [+] Scanning Google Images... (Async)")
            page = await context.new_page()
            # Using Google Images instead of Lens, with SafeSearch OFF
            url = f"https://www.google.com/searchbyimage?image_url={encoded_url}&safe=off"
            await page.goto(url, timeout=30000)
            
            # CONSENT HANDLING
            try:
                # Try generic "Reject all" or "Accept all" buttons which cover most EU/US cases
                if await page.get_by_role("button", name="Reject all").is_visible():
                    await page.get_by_role("button", name="Reject all").click()
                elif await page.get_by_role("button", name="Accept all").is_visible():
                     await page.get_by_role("button", name="Accept all").click()
            except: pass

            await asyncio.sleep(random.uniform(2.5, 4.0))

            results = await page.evaluate("""() => {
                const imgs = Array.from(document.querySelectorAll('img'));
                return imgs
                    .map(img => img.src || img.getAttribute('data-src'))
                    .filter(src => src && src.startsWith('http') && src.length > 80 && !src.includes('gstatic') && !src.includes('google')) 
                    .slice(0, 5);
            }""")
            print(f"   [+] Google: Found {len(results)} matches.")
            await page.close()
        except Exception as e:
            print(f"   [-] Google Error: {e}")
        return results

    async def _search_bing(self, context, encoded_url):
        results = []
        try:
            print("   [+] Scanning Bing Visual... (Async)")
            page = await context.new_page()
            url = f"https://www.bing.com/images/search?view=detailv2&iss=sbi&form=SBIHMP&q=imgurl:{encoded_url}&adlt=off"
            await page.goto(url, timeout=30000)
            
             # Cookie banner check
            try:
                if await page.locator('#bnp_btn_reject').is_visible():
                    await page.click('#bnp_btn_reject')
            except: pass
            
            await asyncio.sleep(random.uniform(2.0, 3.5))

            results = await page.evaluate("""() => {
                const imgs = Array.from(document.querySelectorAll('img'));
                return imgs
                    .map(img => img.src || img.getAttribute('data-src'))
                    .filter(src => src && src.startsWith('http') && src.length > 50 && !src.includes('bing.com'))
                    .slice(0, 5);
            }""")
            print(f"   [+] Bing: Found {len(results)} matches.")
            await page.close()
        except Exception as e:
            print(f"   [-] Bing Error: {e}")
        return results

    async def _search_yandex(self, context, encoded_url):
        results = []
        try:
            print("   [+] Scanning Yandex Visual... (Async)")
            page = await context.new_page()
            url = f"https://yandex.com/images/search?rpt=imageview&url={encoded_url}"
            # Yandex needs retry logic often
            try:
                await page.goto(url, timeout=40000)
            except:
                await page.reload()
            
            await asyncio.sleep(random.uniform(3.0, 5.0))

            results = await page.evaluate("""() => {
                const imgs = Array.from(document.querySelectorAll('.serp-item__thumb, img.serp-item__img, .CbirSites-ItemThumb'));
                return imgs
                        .map(img => img.src || img.getAttribute('data-src'))
                        .filter(src => src && src.startsWith('http') && src.length > 50)
                        .slice(0, 5);
            }""")
            print(f"   [+] Yandex: Found {len(results)} matches.")
            await page.close()
        except Exception as e:
            print(f"   [-] Yandex Error: {e}")
        return results

    async def _search_tineye(self, context, encoded_url):
        results = []
        try:
            print("   [+] Scanning TinEye... (Async)")
            page = await context.new_page()
            url = f"https://tineye.com/search?url={encoded_url}"
            await page.goto(url, timeout=30000)
            
            await asyncio.sleep(random.uniform(2.0, 4.0))

            results = await page.evaluate("""() => {
                 // TinEye results are usually in .match div with .match-thumb img
                const imgs = Array.from(document.querySelectorAll('.match-thumb img, .result-match img'));
                return imgs
                    .map(img => img.src)
                    .filter(src => src && src.startsWith('http'))
                    .slice(0, 5);
            }""")
            print(f"   [+] TinEye: Found {len(results)} matches.")
            await page.close()
        except Exception as e:
            print(f"   [-] TinEye Error: {e}")
        return results

    async def search(self, image_url: str) -> dict:
        results = {"google": [], "bing": [], "yandex": [], "tineye": []}
        encoded_url = urllib.parse.quote(image_url)
        print(f"[*] Starting Async Quad-Vector Search for: {image_url}")

        async with async_playwright() as p:
            browser = await p.chromium.launch(
                headless=self.headless,
                args=['--disable-blink-features=AutomationControlled']
            )
            
            ctx_g = await browser.new_context(viewport={"width":1920,"height":1080}, user_agent="Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36")
            ctx_b = await browser.new_context(viewport={"width":1920,"height":1080}, user_agent="Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15")
            ctx_y = await browser.new_context(viewport={"width":1920,"height":1080}, user_agent="Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36")
            ctx_t = await browser.new_context(viewport={"width":1920,"height":1080}, user_agent="Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36")

            # Run in parallel
            g_res, b_res, y_res, t_res = await asyncio.gather(
                self._search_google(ctx_g, encoded_url),
                self._search_bing(ctx_b, encoded_url),
                self._search_yandex(ctx_y, encoded_url),
                self._search_tineye(ctx_t, encoded_url)
            )
            
            results["google"] = g_res
            results["bing"] = b_res
            results["yandex"] = y_res
            results["tineye"] = t_res
            
            await browser.close()
            
        print("[*] Deep Search Complete.")
        return results


================================================
FILE: the_big_brother/scanner.py
================================================
#! /usr/bin/env python3

"""
Find Usernames Across Social Networks Module

This module contains the main logic to search for usernames at social
networks.
"""

import sys

try:
    from the_big_brother.__init__ import import_error_test_var # noqa: F401
except ImportError:
    print("Did you run The Big Brother with `python3 the_big_brother/scanner.py ...`?")
    print("This is an outdated method. Please use the installed package or run as module.")
    sys.exit(1)

import csv
import signal
import pandas as pd
import os
import re
from argparse import ArgumentParser, RawDescriptionHelpFormatter
from json import loads as json_loads
from time import monotonic, sleep
from typing import Optional, Union

import requests
from requests_futures.sessions import FuturesSession

from the_big_brother.__init__ import (
    __longname__,
    __shortname__,
    __version__,
    forge_api_latest_release,
)

from the_big_brother.result import QueryStatus
from the_big_brother.result import QueryResult
from the_big_brother.notify import QueryNotify
from the_big_brother.notify import QueryNotifyPrint
from the_big_brother.sites import SitesInformation
from colorama import init
from argparse import ArgumentTypeError


class BigBrotherFuturesSession(FuturesSession):
    def request(self, method, url, hooks=None, *args, **kwargs):
        """Request URL.

        This extends the FuturesSession request method to calculate a response
        time metric to each request.

        It is taken (almost) directly from the following Stack Overflow answer:
        https://github.com/ross/requests-futures#working-in-the-background

        Keyword Arguments:
        self                   -- This object.
        method                 -- String containing method desired for request.
        url                    -- String containing URL for request.
        hooks                  -- Dictionary containing hooks to execute after
                                  request finishes.
        args                   -- Arguments.
        kwargs                 -- Keyword arguments.

        Return Value:
        Request object.
        """
        # Record the start time for the request.
        if hooks is None:
            hooks = {}
        start = monotonic()

        def response_time(resp, *args, **kwargs):
            """Response Time Hook.

            Keyword Arguments:
            resp                   -- Response object.
            args                   -- Arguments.
            kwargs                 -- Keyword arguments.

            Return Value:
            Nothing.
            """
            resp.elapsed = monotonic() - start

            return

        # Install hook to execute when response completes.
        # Make sure that the time measurement hook is first, so we will not
        # track any later hook's execution time.
        try:
            if isinstance(hooks["response"], list):
                hooks["response"].insert(0, response_time)
            elif isinstance(hooks["response"], tuple):
                # Convert tuple to list and insert time measurement hook first.
                hooks["response"] = list(hooks["response"])
                hooks["response"].insert(0, response_time)
            else:
                # Must have previously contained a single hook function,
                # so convert to list.
                hooks["response"] = [response_time, hooks["response"]]
        except KeyError:
            # No response hook was already defined, so install it ourselves.
            hooks["response"] = [response_time]

        return super(BigBrotherFuturesSession, self).request(
            method, url, hooks=hooks, *args, **kwargs
        )


def get_response(request_future, error_type, social_network):
    # Default for Response object if some failure occurs.
    response = None

    error_context = "General Unknown Error"
    exception_text = None
    try:
        response = request_future.result()
        if response.status_code:
            # Status code exists in response object
            error_context = None
    except requests.exceptions.HTTPError as errh:
        error_context = "HTTP Error"
        exception_text = str(errh)
    except requests.exceptions.ProxyError as errp:
        error_context = "Proxy Error"
        exception_text = str(errp)
    except requests.exceptions.ConnectionError as errc:
        error_context = "Error Connecting"
        exception_text = str(errc)
    except requests.exceptions.Timeout as errt:
        error_context = "Timeout Error"
        exception_text = str(errt)
    except requests.exceptions.RequestException as err:
        error_context = "Unknown Error"
        exception_text = str(err)

    return response, error_context, exception_text


def interpolate_string(input_object, username):
    if isinstance(input_object, str):
        return input_object.replace("{}", username)
    elif isinstance(input_object, dict):
        return {k: interpolate_string(v, username) for k, v in input_object.items()}
    elif isinstance(input_object, list):
        return [interpolate_string(i, username) for i in input_object]
    return input_object


def check_for_parameter(username):
    """checks if {?} exists in the username
    if exist it means that scanner is looking for more multiple username"""
    return "{?}" in username


checksymbols = ["_", "-", "."]


def multiple_usernames(username):
    """replace the parameter with with symbols and return a list of usernames"""
    allUsernames = []
    for i in checksymbols:
        allUsernames.append(username.replace("{?}", i))
    return allUsernames


def scan(
    username: str,
    site_data: dict[str, dict[str, str]],
    query_notify: QueryNotify,
    dump_response: bool = False,
    proxy: Optional[str] = None,
    timeout: int = 60,
) -> dict[str, dict[str, Union[str, QueryResult]]]:
    """Run The Big Brother Analysis.

    Checks for existence of username on various social media sites.

    Keyword Arguments:
    username               -- String indicating username that report
                              should be created against.
    site_data              -- Dictionary containing all of the site data.
    query_notify           -- Object with base type of QueryNotify().
                              This will be used to notify the caller about
                              query results.
    proxy                  -- String indicating the proxy URL
    timeout                -- Time in seconds to wait before timing out request.
                              Default is 60 seconds.

    Return Value:
    Dictionary containing results from report. Key of dictionary is the name
    of the social network site, and the value is another dictionary with
    the following keys:
        url_main:      URL of main site.
        url_user:      URL of user on site (if account exists).
        status:        QueryResult() object indicating results of test for
                       account existence.
        http_status:   HTTP status code of query which checked for existence on
                       site.
        response_text: Text that came back from request.  May be None if
                       there was an HTTP error when checking for existence.
    """

    # Notify caller that we are starting the query.
    query_notify.start(username)

    # Normal requests
    underlying_session = requests.session()

    # Limit number of workers to 20.
    # This is probably vastly overkill.
    if len(site_data) >= 20:
        max_workers = 20
    else:
        max_workers = len(site_data)

    # Create multi-threaded session for all requests.
    session = BigBrotherFuturesSession(
        max_workers=max_workers, session=underlying_session
    )

    # Results from analysis of all sites
    results_total = {}

    # First create futures for all requests. This allows for the requests to run in parallel
    for social_network, net_info in site_data.items():
        # Results from analysis of this specific site
        results_site = {"url_main": net_info.get("urlMain")}

        # Record URL of main site

        # A user agent is needed because some sites don't return the correct
        # information since they think that we are bots (Which we actually are...)
        headers = {
            "User-Agent": "Mozilla/5.0 (X11; Linux x86_64; rv:129.0) Gecko/20100101 Firefox/129.0",
        }

        if "headers" in net_info:
            # Override/append any extra headers required by a given site.
            headers.update(net_info["headers"])

        # URL of user on site (if it exists)
        url = interpolate_string(net_info["url"], username.replace(' ', '%20'))

        # Don't make request if username is invalid for the site
        regex_check = net_info.get("regexCheck")
        if regex_check and re.search(regex_check, username) is None:
            # No need to do the check at the site: this username is not allowed.
            results_site["status"] = QueryResult(
                username, social_network, url, QueryStatus.ILLEGAL
            )
            results_site["url_user"] = ""
            results_site["http_status"] = ""
            results_site["response_text"] = ""
            query_notify.update(results_site["status"])
        else:
            # URL of user on site (if it exists)
            results_site["url_user"] = url
            url_probe = net_info.get("urlProbe")
            request_method = net_info.get("request_method")
            request_payload = net_info.get("request_payload")
            request = None

            if request_method is not None:
                if request_method == "GET":
                    request = session.get
                elif request_method == "HEAD":
                    request = session.head
                elif request_method == "POST":
                    request = session.post
                elif request_method == "PUT":
                    request = session.put
                else:
                    raise RuntimeError(f"Unsupported request_method for {url}")

            if request_payload is not None:
                request_payload = interpolate_string(request_payload, username)

            if url_probe is None:
                # Probe URL is normal one seen by people out on the web.
                url_probe = url
            else:
                # There is a special URL for probing existence separate
                # from where the user profile normally can be found.
                url_probe = interpolate_string(url_probe, username)

            if request is None:
                if net_info["errorType"] == "status_code":
                    # In most cases when we are detecting by status code,
                    # it is not necessary to get the entire body:  we can
                    # detect fine with just the HEAD response.
                    request = session.head
                else:
                    # Either this detect method needs the content associated
                    # with the GET response, or this specific website will
                    # not respond properly unless we request the whole page.
                    request = session.get
            
            # Add delay to prevent rate limiting (reduced for speed)
            sleep(0.1)

            if net_info["errorType"] == "response_url":
                # Site forwards request to a different URL if username not
                # found.  Disallow the redirect so we can capture the
                # http status from the original URL request.
                allow_redirects = False
            else:
                # Allow whatever redirect that the site wants to do.
                # The final result of the request will be what is available.
                allow_redirects = True

            # This future starts running the request in a new thread, doesn't block the main thread
            if proxy is not None:
                proxies = {"http": proxy, "https": proxy}
                future = request(
                    url=url_probe,
                    headers=headers,
                    proxies=proxies,
                    allow_redirects=allow_redirects,
                    timeout=timeout,
                    json=request_payload,
                )
            else:
                future = request(
                    url=url_probe,
                    headers=headers,
                    allow_redirects=allow_redirects,
                    timeout=timeout,
                    json=request_payload,
                )

            # Store future in data for access later
            net_info["request_future"] = future

        # Add this site's results into final dictionary with all the other results.
        results_total[social_network] = results_site

    # Open the file containing account links
    for social_network, net_info in site_data.items():
        # Retrieve results again
        results_site = results_total.get(social_network)

        # Retrieve other site information again
        url = results_site.get("url_user")
        status = results_site.get("status")
        if status is not None:
            # We have already determined the user doesn't exist here
            continue

        # Get the expected error type
        error_type = net_info["errorType"]
        if isinstance(error_type, str):
            error_type: list[str] = [error_type]

        # Retrieve future and ensure it has finished
        future = net_info["request_future"]
        r, error_text, exception_text = get_response(
            request_future=future, error_type=error_type, social_network=social_network
        )

        # Get response time for response of our request.
        try:
            response_time = r.elapsed
        except AttributeError:
            response_time = None

        # Attempt to get request information
        try:
            http_status = r.status_code
        except Exception:
            http_status = "?"
        try:
            response_text = r.text.encode(r.encoding or "UTF-8")
        except Exception:
            response_text = ""

        query_status = QueryStatus.UNKNOWN
        error_context = None

        # As WAFs advance and evolve, they will occasionally block The Big Brother and
        # lead to false positives and negatives. Fingerprints should be added
        # here to filter results that fail to bypass WAFs. Fingerprints should
        # be highly targetted. Comment at the end of each fingerprint to
        # indicate target and date fingerprinted.
        WAFHitMsgs = [
            r'.loading-spinner{visibility:hidden}body.no-js .challenge-running{display:none}body.dark{background-color:#222;color:#d9d9d9}body.dark a{color:#fff}body.dark a:hover{color:#ee730a;text-decoration:underline}body.dark .lds-ring div{border-color:#999 transparent transparent}body.dark .font-red{color:#b20f03}body.dark', # 2024-05-13 Cloudflare
            r'<span id="challenge-error-text">', # 2024-11-11 Cloudflare error page
            r'AwsWafIntegration.forceRefreshToken', # 2024-11-11 Cloudfront (AWS)
            r'{return l.onPageView}}),Object.defineProperty(r,"perimeterxIdentifiers",{enumerable:' # 2024-04-09 PerimeterX / Human Security
        ]

        if error_text is not None:
            error_context = error_text

        elif any(hitMsg in r.text for hitMsg in WAFHitMsgs):
            query_status = QueryStatus.WAF

        else:
            if any(errtype not in ["message", "status_code", "response_url"] for errtype in error_type):
                error_context = f"Unknown error type '{error_type}' for {social_network}"
                query_status = QueryStatus.UNKNOWN
            else:
                if "message" in error_type:
                    # error_flag True denotes no error found in the HTML
                    # error_flag False denotes error found in the HTML
                    error_flag = True
                    errors = net_info.get("errorMsg")
                    # errors will hold the error message
                    # it can be string or list
                    # by isinstance method we can detect that
                    # and handle the case for strings as normal procedure
                    # and if its list we can iterate the errors
                    if isinstance(errors, str):
                        # Checks if the error message is in the HTML
                        # if error is present we will set flag to False
                        if errors in r.text:
                            error_flag = False
                    else:
                        # If it's list, it will iterate all the error message
                        for error in errors:
                            if error in r.text:
                                error_flag = False
                                break
                    if error_flag:
                        query_status = QueryStatus.CLAIMED
                    else:
                        query_status = QueryStatus.AVAILABLE

                if "status_code" in error_type and query_status is not QueryStatus.AVAILABLE:
                    error_codes = net_info.get("errorCode")
                    query_status = QueryStatus.CLAIMED

                    # Type consistency, allowing for both singlets and lists in manifest
                    if isinstance(error_codes, int):
                        error_codes = [error_codes]

                    if error_codes is not None and r.status_code in error_codes:
                        query_status = QueryStatus.AVAILABLE
                    elif r.status_code >= 300 or r.status_code < 200:
                        query_status = QueryStatus.AVAILABLE

                if "response_url" in error_type and query_status is not QueryStatus.AVAILABLE:
                    # For this detection method, we have turned off the redirect.
                    # So, there is no need to check the response URL: it will always
                    # match the request.  Instead, we will ensure that the response
                    # code indicates that the request was successful (i.e. no 404, or
                    # forward to some odd redirect).
                    if 200 <= r.status_code < 300:
                        query_status = QueryStatus.CLAIMED
                    else:
                        query_status = QueryStatus.AVAILABLE

        if dump_response:
            print("+++++++++++++++++++++")
            print(f"TARGET NAME   : {social_network}")
            print(f"USERNAME      : {username}")
            print(f"TARGET URL    : {url}")
            print(f"TEST METHOD   : {error_type}")
            try:
                print(f"STATUS CODES  : {net_info['errorCode']}")
            except KeyError:
                pass
            print("Results...")
            try:
                print(f"RESPONSE CODE : {r.status_code}")
            except Exception:
                pass
            try:
                print(f"ERROR TEXT    : {net_info['errorMsg']}")
            except KeyError:
                pass
            print(">>>>> BEGIN RESPONSE TEXT")
            try:
                print(r.text)
            except Exception:
                pass
            print("<<<<< END RESPONSE TEXT")
            print("VERDICT       : " + str(query_status))
            print("+++++++++++++++++++++")

        # Notify caller about results of query.
        result: QueryResult = QueryResult(
            username=username,
            site_name=social_network,
            site_url_user=url,
            status=query_status,
            query_time=response_time,
            context=error_context,
        )
        query_notify.update(result)

        # Save status of request
        results_site["status"] = result

        # Save results from request
        results_site["http_status"] = http_status
        results_site["response_text"] = response_text

        # Add this site's results into final dictionary with all of the other results.
        results_total[social_network] = results_site

    return results_total


def timeout_check(value):
    """Check Timeout Argument.

    Checks timeout for validity.

    Keyword Arguments:
    value                  -- Time in seconds to wait before timing out request.

    Return Value:
    Floating point number representing the time (in seconds) that should be
    used for the timeout.

    NOTE:  Will raise an exception if the timeout in invalid.
    """

    float_value = float(value)

    if float_value <= 0:
        raise ArgumentTypeError(
            f"Invalid timeout value: {value}. Timeout must be a positive number."
        )

    return float_value


def handler(signal_received, frame):
    """Exit gracefully without throwing errors

    Source: https://www.devdungeon.com/content/python-catch-sigint-ctrl-c
    """
    sys.exit(0)


def main():
    parser = ArgumentParser(
        formatter_class=RawDescriptionHelpFormatter,
        description=f"{__longname__} (Version {__version__})",
    )
    parser.add_argument(
        "--version",
        action="version",
        version=f"{__shortname__} v{__version__}",
        help="Display version information and dependencies.",
    )
    parser.add_argument(
        "--verbose",
        "-v",
        "-d",
        "--debug",
        action="store_true",
        dest="verbose",
        default=False,
        help="Display extra debugging information and metrics.",
    )
    parser.add_argument(
        "--folderoutput",
        "-fo",
        dest="folderoutput",
        help="If using multiple usernames, the output of the results will be saved to this folder.",
    )
    parser.add_argument(
        "--output",
        "-o",
        dest="output",
        help="If using single username, the output of the result will be saved to this file.",
    )
    parser.add_argument(
        "--csv",
        action="store_true",
        dest="csv",
        default=False,
        help="Create Comma-Separated Values (CSV) File.",
    )
    parser.add_argument(
        "--xlsx",
        action="store_true",
        dest="xlsx",
        default=False,
        help="Create the standard file for the modern Microsoft Excel spreadsheet (xlsx).",
    )
    parser.add_argument(
        "--site",
        action="append",
        metavar="SITE_NAME",
        dest="site_list",
        default=[],
        help="Limit analysis to just the listed sites. Add multiple options to specify more than one site.",
    )
    parser.add_argument(
        "--proxy",
        "-p",
        metavar="PROXY_URL",
        action="store",
        dest="proxy",
        default=None,
        help="Make requests over a proxy. e.g. socks5://127.0.0.1:1080",
    )
    parser.add_argument(
        "--dump-response",
        action="store_true",
        dest="dump_response",
        default=False,
        help="Dump the HTTP response to stdout for targeted debugging.",
    )
    parser.add_argument(
        "--json",
        "-j",
        metavar="JSON_FILE",
        dest="json_file",
        default=None,
        help="Load data from a JSON file or an online, valid, JSON file. Upstream PR numbers also accepted.",
    )
    parser.add_argument(
        "--timeout",
        action="store",
        metavar="TIMEOUT",
        dest="timeout",
        type=timeout_check,
        default=60,
        help="Time (in seconds) to wait for response to requests (Default: 60)",
    )
    parser.add_argument(
        "--print-all",
        action="store_true",
        dest="print_all",
        default=False,
        help="Output sites where the username was not found.",
    )
    parser.add_argument(
        "--print-found",
        action="store_true",
        dest="print_found",
        default=True,
        help="Output sites where the username was found (also if exported as file).",
    )
    parser.add_argument(
        "--no-color",
        action="store_true",
        dest="no_color",
        default=False,
        help="Don't color terminal output",
    )
    parser.add_argument(
        "username",
        nargs="+",
        metavar="USERNAMES",
        action="store",
        help="One or more usernames to check with social networks. Check similar usernames using {?} (replace to '_', '-', '.').",
    )
    parser.add_argument(
        "--browse",
        "-b",
        action="store_true",
        dest="browse",
        default=False,
        help="Browse to all results on default browser.",
    )

    parser.add_argument(
        "--local",
        "-l",
        action="store_true",
        default=False,
        help="Force the use of the local data.json file.",
    )

    parser.add_argument(
        "--nsfw",
        action="store_true",
        default=False,
        help="Include checking of NSFW sites from default list.",
    )

    # TODO deprecated in favor of --txt, retained for workflow compatibility, to be removed
    # in future release
    parser.add_argument(
        "--no-txt",
        action="store_true",
        dest="no_txt",
        default=False,
        help="Disable creation of a txt file - WILL BE DEPRECATED",
    )

    parser.add_argument(
        "--txt",
        action="store_true",
        dest="output_txt",
        default=False,
        help="Enable creation of a txt file",
    )

    parser.add_argument(
        "--ignore-exclusions",
        action="store_true",
        dest="ignore_exclusions",
        default=False,
        help="Ignore upstream exclusions (may return more false positives)",
    )

    args = parser.parse_args()

    # If the user presses CTRL-C, exit gracefully without throwing errors
    signal.signal(signal.SIGINT, handler)

    # Check for newer version of Sherlock. If it exists, let the user know about it
    try:
        latest_release_raw = requests.get(forge_api_latest_release, timeout=10).text
        latest_release_json = json_loads(latest_release_raw)
        latest_remote_tag = latest_release_json["tag_name"]

        # if latest_remote_tag[1:] != __version__:
        #     print(
        #         f"Update available! {__version__} --> {latest_remote_tag[1:]}"
        #         f"\n{latest_release_json['html_url']}"
        #     )
        pass # Update check disabled

    except Exception as error:
        print(f"A problem occurred while checking for an update: {error}")

    # Make prompts
    if args.proxy is not None:
        print("Using the proxy: " + args.proxy)

    if args.no_color:
        # Disable color output.
        init(strip=True, convert=False)
    else:
        # Enable color output.
        init(autoreset=True)

    # Check if both output methods are entered as input.
    if args.output is not None and args.folderoutput is not None:
        print("You can only use one of the output methods.")
        sys.exit(1)

    # Check validity for single username output.
    if args.output is not None and len(args.username) != 1:
        print("You can only use --output with a single username")
        sys.exit(1)

    # Create object with all information about sites we are aware of.
    try:
        if args.local:
            sites = SitesInformation(
                os.path.join(os.path.dirname(__file__), "resources/data.json"),
                honor_exclusions=False,
            )
        else:
            json_file_location = args.json_file
            if args.json_file:
                # If --json parameter is a number, interpret it as a pull request number
                if args.json_file.isnumeric():
                    pull_number = args.json_file
                    pull_url = f"https://api.github.com/repos/sherlock-project/sherlock/pulls/{pull_number}"
                    pull_request_raw = requests.get(pull_url, timeout=10).text
                    pull_request_json = json_loads(pull_request_raw)

                    # Check if it's a valid pull request
                    if "message" in pull_request_json:
                        print(f"ERROR: Pull request #{pull_number} not found.")
                        sys.exit(1)

                    head_commit_sha = pull_request_json["head"]["sha"]
                    json_file_location = f"https://raw.githubusercontent.com/sherlock-project/sherlock/{head_commit_sha}/sherlock_project/resources/data.json"

            sites = SitesInformation(
                data_file_path=json_file_location,
                honor_exclusions=not args.ignore_exclusions,
                do_not_exclude=args.site_list,
            )
    except Exception as error:
        print(f"ERROR:  {error}")
        sys.exit(1)

    if not args.nsfw:
        sites.remove_nsfw_sites(do_not_remove=args.site_list)

    # Create original dictionary from SitesInformation() object.
    # Eventually, the rest of the code will be updated to use the new object
    # directly, but this will glue the two pieces together.
    site_data_all = {site.name: site.information for site in sites}
    if args.site_list == []:
        # Not desired to look at a sub-set of sites
        site_data = site_data_all
    else:
        # User desires to selectively run queries on a sub-set of the site list.
        # Make sure that the sites are supported & build up pruned site database.
        site_data = {}
        site_missing = []
        for site in args.site_list:
            counter = 0
            for existing_site in site_data_all:
                if site.lower() == existing_site.lower():
                    site_data[existing_site] = site_data_all[existing_site]
                    counter += 1
            if counter == 0:
                # Build up list of sites not supported for future error message.
                site_missing.append(f"'{site}'")

        if site_missing:
            print(f"Error: Desired sites not found: {', '.join(site_missing)}.")

        if not site_data:
            sys.exit(1)

    # Create notify object for query results.
    query_notify = QueryNotifyPrint(
        result=None, verbose=args.verbose, print_all=args.print_all, browse=args.browse
    )

    # Run report on all specified users.
    all_usernames = []
    for username in args.username:
        if check_for_parameter(username):
            for name in multiple_usernames(username):
                all_usernames.append(name)
        else:
            all_usernames.append(username)
    for username in all_usernames:
        results = scan(
            username,
            site_data,
            query_notify,
            dump_response=args.dump_response,
            proxy=args.proxy,
            timeout=args.timeout,
        )

        if args.output:
            result_file = args.output
        elif args.folderoutput:
            # The usernames results should be stored in a targeted folder.
            # If the folder doesn't exist, create it first
            os.makedirs(args.folderoutput, exist_ok=True)
            result_file = os.path.join(args.folderoutput, f"{username}.txt")
        else:
            result_file = f"{username}.txt"

        if args.output_txt:
            with open(result_file, "w", encoding="utf-8") as file:
                exists_counter = 0
                for website_name in results:
                    dictionary = results[website_name]
                    if dictionary.get("status").status == QueryStatus.CLAIMED:
                        exists_counter += 1
                        file.write(dictionary["url_user"] + "\n")
                file.write(f"Total Websites Username Detected On : {exists_counter}\n")

        if args.csv:
            result_file = f"{username}.csv"
            if args.folderoutput:
                # The usernames results should be stored in a targeted folder.
                # If the folder doesn't exist, create it first
                os.makedirs(args.folderoutput, exist_ok=True)
                result_file = os.path.join(args.folderoutput, result_file)

            with open(result_file, "w", newline="", encoding="utf-8") as csv_report:
                writer = csv.writer(csv_report)
                writer.writerow(
                    [
                        "username",
                        "name",
                        "url_main",
                        "url_user",
                        "exists",
                        "http_status",
                        "response_time_s",
                    ]
                )
                for site in results:
                    if (
                        args.print_found
                        and not args.print_all
                        and results[site]["status"].status != QueryStatus.CLAIMED
                    ):
                        continue

                    response_time_s = results[site]["status"].query_time
                    if response_time_s is None:
                        response_time_s = ""
                    writer.writerow(
                        [
                            username,
                            site,
                            results[site]["url_main"],
                            results[site]["url_user"],
                            str(results[site]["status"].status),
                            results[site]["http_status"],
                            response_time_s,
                        ]
                    )
        if args.xlsx:
            usernames = []
            names = []
            url_main = []
            url_user = []
            exists = []
            http_status = []
            response_time_s = []

            for site in results:
                if (
                    args.print_found
                    and not args.print_all
                    and results[site]["status"].status != QueryStatus.CLAIMED
                ):
                    continue

                if response_time_s is None:
                    response_time_s.append("")
                else:
                    response_time_s.append(results[site]["status"].query_time)
                usernames.append(username)
                names.append(site)
                url_main.append(results[site]["url_main"])
                url_user.append(results[site]["url_user"])
                exists.append(str(results[site]["status"].status))
                http_status.append(results[site]["http_status"])

            DataFrame = pd.DataFrame(
                {
                    "username": usernames,
                    "name": names,
                    "url_main": [f'=HYPERLINK(\"{u}\")' for u in url_main],
                    "url_user": [f'=HYPERLINK(\"{u}\")' for u in url_user],
                    "exists": exists,
                    "http_status": http_status,
                    "response_time_s": response_time_s,
                }
            )
            DataFrame.to_excel(f"{username}.xlsx", sheet_name="sheet1", index=False)

        print()
    query_notify.finish()


if __name__ == "__main__":
    main()


================================================
FILE: the_big_brother/sites.py
================================================
"""The Big Brother Sites Information Module

This module supports storing information about websites.
This is the raw data that will be used to search for usernames.
"""
import json
import requests
import secrets


MANIFEST_URL = "https://raw.githubusercontent.com/sherlock-project/sherlock/master/sherlock_project/resources/data.json"
EXCLUSIONS_URL = "https://raw.githubusercontent.com/sherlock-project/sherlock/refs/heads/exclusions/false_positive_exclusions.txt"

class SiteInformation:
    def __init__(self, name, url_home, url_username_format, username_claimed,
                information, is_nsfw, username_unclaimed=secrets.token_urlsafe(10)):
        """Create Site Information Object.

        Contains information about a specific website.

        Keyword Arguments:
        self                   -- This object.
        name                   -- String which identifies site.
        url_home               -- String containing URL for home of site.
        url_username_format    -- String containing URL for Username format
                                  on site.
                                  NOTE:  The string should contain the
                                         token "{}" where the username should
                                         be substituted.  For example, a string
                                         of "https://somesite.com/users/{}"
                                         indicates that the individual
                                         usernames would show up under the
                                         "https://somesite.com/users/" area of
                                         the website.
        username_claimed       -- String containing username which is known
                                  to be claimed on website.
        username_unclaimed     -- String containing username which is known
                                  to be unclaimed on website.
        information            -- Dictionary containing all known information
                                  about website.
                                  NOTE:  Custom information about how to
                                         actually detect the existence of the
                                         username will be included in this
                                         dictionary.  This information will
                                         be needed by the detection method,
                                         but it is only recorded in this
                                         object for future use.
        is_nsfw                -- Boolean indicating if site is Not Safe For Work.

        Return Value:
        Nothing.
        """

        self.name = name
        self.url_home = url_home
        self.url_username_format = url_username_format

        self.username_claimed = username_claimed
        self.username_unclaimed = secrets.token_urlsafe(32)
        self.information = information
        self.is_nsfw  = is_nsfw

        return

    def __str__(self):
        """Convert Object To String.

        Keyword Arguments:
        self                   -- This object.

        Return Value:
        Nicely formatted string to get information about this object.
        """

        return f"{self.name} ({self.url_home})"


from typing import Optional

class SitesInformation:
    def __init__(
            self,
            data_file_path: Optional[str] = None,
            honor_exclusions: bool = True,
            do_not_exclude: list[str] = [],
        ):
        """Create Sites Information Object.

        Contains information about all supported websites.

        Keyword Arguments:
        self                   -- This object.
        data_file_path         -- String which indicates path to data file.
                                  The file name must end in ".json".

                                  There are 3 possible formats:
                                   * Absolute File Format
                                     For example, "c:/stuff/data.json".
                                   * Relative File Format
                                     The current working directory is used
                                     as the context.
                                     For example, "data.json".
                                   * URL Format
                                     For example,
                                     "https://example.com/data.json", or
                                     "http://example.com/data.json".

                                  An exception will be thrown if the path
                                  to the data file is not in the expected
                                  format, or if there was any problem loading
                                  the file.

                                  If this option is not specified, then a
                                  default site list will be used.

        Return Value:
        Nothing.
        """

        if not data_file_path:
            # The default data file is the live data.json which is in the GitHub repo. The reason why we are using
            # this instead of the local one is so that the user has the most up-to-date data. This prevents
            # users from creating issue about false positives which has already been fixed or having outdated data
            data_file_path = MANIFEST_URL

        # Ensure that specified data file has correct extension.
        if not data_file_path.lower().endswith(".json"):
            raise FileNotFoundError(f"Incorrect JSON file extension for data file '{data_file_path}'.")

        # if "http://"  == data_file_path[:7].lower() or "https://" == data_file_path[:8].lower():
        if data_file_path.lower().startswith("http"):
            # Reference is to a URL.
            try:
                response = requests.get(url=data_file_path, timeout=30)
            except Exception as error:
                raise FileNotFoundError(
                    f"Problem while attempting to access data file URL '{data_file_path}':  {error}"
                )

            if response.status_code != 200:
                raise FileNotFoundError(f"Bad response while accessing "
                                        f"data file URL '{data_file_path}'."
                                        )
            try:
                site_data = response.json()
            except Exception as error:
                raise ValueError(
                    f"Problem parsing json contents at '{data_file_path}':  {error}."
                )

        else:
            # Reference is to a file.
            try:
                with open(data_file_path, "r", encoding="utf-8") as file:
                    try:
                        site_data = json.load(file)
                    except Exception as error:
                        raise ValueError(
                            f"Problem parsing json contents at '{data_file_path}':  {error}."
                        )

            except FileNotFoundError:
                raise FileNotFoundError(f"Problem while attempting to access "
                                        f"data file '{data_file_path}'."
                                        )

        site_data.pop('$schema', None)

        if honor_exclusions:
            try:
                response = requests.get(url=EXCLUSIONS_URL, timeout=10)
                if response.status_code == 200:
                    exclusions = response.text.splitlines()
                    exclusions = [exclusion.strip() for exclusion in exclusions]

                    for site in do_not_exclude:
                        if site in exclusions:
                            exclusions.remove(site)

                    for exclusion in exclusions:
                        try:
                            site_data.pop(exclusion, None)
                        except KeyError:
                            pass

            except Exception:
                # If there was any problem loading the exclusions, just continue without them
                print("Warning: Could not load exclusions, continuing without them.")
                honor_exclusions = False

        self.sites = {}

        # Add all site information from the json file to internal site list.
        for site_name in site_data:
            try:

                self.sites[site_name] = \
                    SiteInformation(site_name,
                                    site_data[site_name]["urlMain"],
                                    site_data[site_name]["url"],
                                    site_data[site_name]["username_claimed"],
                                    site_data[site_name],
                                    site_data[site_name].get("isNSFW",False)

                                    )
            except KeyError as error:
                raise ValueError(
                    f"Problem parsing json contents at '{data_file_path}':  Missing attribute {error}."
                )
            except TypeError:
                print(f"Encountered TypeError parsing json contents for target '{site_name}' at {data_file_path}\nSkipping target.\n")

        return

    def remove_nsfw_sites(self, do_not_remove: list = []):
        """
        Remove NSFW sites from the sites, if isNSFW flag is true for site

        Keyword Arguments:
        self                   -- This object.

        Return Value:
        None
        """
        sites = {}
        do_not_remove = [site.casefold() for site in do_not_remove]
        for site in self.sites:
            if self.sites[site].is_nsfw and site.casefold() not in do_not_remove:
                continue
            sites[site] = self.sites[site]
        self.sites =  sites

    def site_name_list(self):
        """Get Site Name List.

        Keyword Arguments:
        self                   -- This object.

        Return Value:
        List of strings containing names of sites.
        """

        return sorted([site.name for site in self], key=str.lower)

    def __iter__(self):
        """Iterator For Object.

        Keyword Arguments:
        self                   -- This object.

        Return Value:
        Iterator for sites object.
        """

        for site_name in self.sites:
            yield self.sites[site_name]

    def __len__(self):
        """Length For Object.

        Keyword Arguments:
        self                   -- This object.

        Return Value:
        Length of sites object.
        """
        return len(self.sites)


================================================
FILE: the_big_brother/validators/headless_validator.py
================================================
from dataclasses import dataclass
from typing import Optional

try:
    from playwright.sync_api import sync_playwright
except ImportError:
    sync_playwright = None

@dataclass
class LinkValidationResult:
    url: str
    is_profile: bool
    reason: Optional[str] = None
    title: Optional[str] = None
    final_url: Optional[str] = None
    visible_text: Optional[str] = None

class HeadlessValidator:
    def __init__(self, headless: bool = True):
        self.headless = headless
        self.playwright = None
        self.browser = None
        if sync_playwright is None:
            print("Warning: Playwright is not installed. Headless validation will fail.")

    def __enter__(self):
        if sync_playwright:
            self.playwright = sync_playwright().start()
            self.browser = self.playwright.chromium.launch(headless=self.headless)
        return self

    def __exit__(self, exc_type, exc_val, exc_tb):
        if self.browser:
            self.browser.close()
        if self.playwright:
            self.playwright.stop()

    def validate(self, url: str) -> LinkValidationResult:
        if not self.browser:
            if not sync_playwright:
                 return LinkValidationResult(url, False, reason="Playwright not installed")
            # If used without context manager, launch for single use (slower)
            with sync_playwright() as p:
                browser = p.chromium.launch(headless=self.headless)
                return self._validate_with_browser(browser, url)
        
        return self._validate_with_browser(self.browser, url)

    def _validate_with_browser(self, browser, url: str) -> LinkValidationResult:
        context = browser.new_context(
            user_agent="Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36"
        )
        page = context.new_page()
        try:
            # Navigate
            response = page.goto(url, timeout=30000, wait_until="domcontentloaded")
            
            if not response:
                page.close()
                return LinkValidationResult(url, False, reason="No response")

            final_url = page.url
            title = page.title()
            
            # Status check
            if response.status >= 400:
                page.close()
                return LinkValidationResult(url, False, reason=f"HTTP {response.status}", title=title, final_url=final_url)

            # Heuristic 1: Title content
            error_keywords_title = ["page not found", "404", "not found", "doesn't exist", "does not exist", "user not found"]
            if any(k in title.lower() for k in error_keywords_title):
                page.close()
                return LinkValidationResult(url, False, reason="Title indicated 404", title=title, final_url=final_url)

            # Get text
            body_text = page.evaluate("document.body.innerText")
            validation_text = body_text[:1000] # First 1000 chars

            # Heuristic 2: Body content
            error_keywords_body = ["this page isn't available", "sorry, this content isn't available right now"]
            if any(k in body_text.lower() for k in error_keywords_body):
                 page.close()
                 return LinkValidationResult(url, False, reason="Body content indicated 404", title=title, final_url=final_url)
            
            page.close()
            return LinkValidationResult(url, True, title=title, final_url=final_url, visible_text=validation_text)

        except Exception as e:
            page.close()
            return LinkValidationResult(url, False, reason=f"Browsing error: {str(e)}")