Email OSINT Search — 120+ Sites Account Discovery

Discover which 120+ sites an email address is registered on — LinkedIn, Twitter, Spotify, Pinterest, Imgur, Tumblr, and many more — without ever sending a password-reset notification to the target. Powered by holehe (GPL-3.0, 5.6k+ stars), the standard open-source email OSINT tool.

Built for security researchers, fraud investigators, OSINT analysts, KYC teams, and recruiters who need to verify online presence of a given email address with zero footprint.

Legal Disclaimer: This Actor is an unofficial integration of holehe (megadose) and is not affiliated with or endorsed by the original project. Use only on email addresses you own or have explicit authorization to investigate. Comply with PIPA (KR), GDPR (EU), CCPA (US), and applicable privacy laws.

Why this Actor

• 120+ sites checked in one call (LinkedIn, Twitter/X, Spotify, Pinterest, Imgur, Tumblr, Adobe, Atlassian, etc.)
• No password-reset emails sent to target — uses passive account-existence signals
• Structured JSON output — site name, domain, category per match
• Bulk mode — process up to 50 emails per run (hard cap)
• Pay only per account found — $0.02 per confirmed account
• No subscription, no setup, no scraping — just an API call

Use Cases

• Security incident response — given a breached email, map exposure across SaaS
• Fraud investigation — confirm an email is a real online identity, not a throwaway
• Recruiter verification — confirm candidate email is registered on professional platforms
• KYC enhancement — supplement identity verification with online-account footprint
• OSINT pentesting — reconnaissance phase for authorized engagements
• Data-broker compliance — auditing your own organization's email exposure

Input

Field	Type	Required	Description
emails	array of string	✅	Up to 50 email addresses to investigate
email	string	—	Legacy single-email input (use emails for batch)
timeout	integer	—	Per-site timeout in seconds (default 30)
maxEmails	integer	—	Soft cap per run; hard cap 50

{
  "emails": ["alice@example.com", "bob@example.org"],
  "timeout": 30,
  "maxEmails": 10
}

Output

One dataset item per email:

Field	Type	Description
email	string	Email checked
foundCount	integer	Number of registered accounts discovered
found	array	List of {site, domain, category, rateLimit, fullName, phoneNumber}
sitesChecked	integer	Total sites probed
error	string	Populated only on per-email failure
disclaimer	string	Legal-use notice

{
  "email": "alice@example.com",
  "foundCount": 7,
  "found": [
    {"site": "LinkedIn", "domain": "linkedin.com", "category": "social", "rateLimit": false},
    {"site": "Twitter", "domain": "twitter.com", "category": "social", "rateLimit": false},
    {"site": "Spotify", "domain": "spotify.com", "category": "music", "rateLimit": false}
  ],
  "sitesChecked": 121
}

Pricing

• $0.02 per registered account found (event: account-found)
• No charge for sites where the email is NOT registered
• No charge for failed/rate-limited sites
• Apify platform compute usage is included (no separate charge)

Cost example: Email registered on 10 sites = $0.20. Email registered on 50 sites = $1.00.

Quick Start

curl

curl -X POST "https://api.apify.com/v2/acts/ntriqpro~email-osint-search/runs?token=YOUR_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"emails": ["alice@example.com"]}'

Python (Apify Client)

from apify_client import ApifyClient
client = ApifyClient("YOUR_TOKEN")
run = client.actor("ntriqpro/email-osint-search").call(run_input={
    "emails": ["alice@example.com", "bob@example.org"]
})
items = list(client.dataset(run["defaultDatasetId"]).iterate_items())
for item in items:
    print(f"{item['email']}: {item['foundCount']} accounts")
    for hit in item['found']:
        print(f"  - {hit['site']} ({hit['category']})")

Limitations

Limitation	Detail
Sites blocking holehe	Some platforms have added defenses; ~10-15% sites may return rate-limited
False positives	Existence signals can be ambiguous; treat as leads, not proof
New site discovery	holehe upstream adds sites quarterly; we update with library releases
Rate limiting	Recommended: batch <10 emails per run to avoid IP-based throttling

Technology

• holehe (GPL-3.0) — Email-based account existence checker, 5.6k+ stars
• Apify SDK for Python (Apache 2.0) — Actor runtime
• httpx (BSD) — Async HTTP client

Disclaimer

This Actor is an unofficial open-source wrapper around megadose/holehe. It is not affiliated with, sponsored by, or endorsed by the holehe project, its maintainers, or any of the platforms being probed. OSINT results are based on publicly observable account-existence signals and may produce false positives.

You are solely responsible for ensuring you have legal authorization to investigate any email address. Misuse may violate privacy laws (PIPA, GDPR, CCPA, etc.) and the terms of service of target platforms. This tool is intended for security research, fraud prevention, and authorized investigation use only.

---

🔗 Related Actors by ntriqpro

Build your full OSINT stack:

• maigret-actor — Maigret OSINT Username Search across 3000+ sites (5.0★ rated)
• phish-radar — Phishing & Malicious Domain Detector
• website-tech-detector — Website Tech Stack Scanner
• github-repo-intelligence — GitHub Repo Security Audit

⭐ Rate this Actor

If this saves you investigation time, please leave a review — it helps other security researchers discover it.