Maigret is an MIT-licensed Python tool maintained at github.com/soxoj/maigret. Given one or more usernames, it probes a large catalog of websites (3,000+ in the README’s headline figure), extracts public profile metadata where possible, supports recursive expansion from discovered IDs, and exports HTML, PDF, JSON, CSV, graph views, and more. No API keys are required for the open-source flow.

How is it different from a single-site search?

Maigret automates breadth: default runs target hundreds of high-traffic sites from its database; -a expands coverage. It uses an auto-updated site list from GitHub (with a built-in fallback offline) and site-specific logic to reduce false positives compared to naive string matching.

How do I run the web UI?

Locally: maigret --web 5000 then open http://127.0.0.1:5000 per upstream docs. Docker: the soxoj/maigret:web image maps a port (default 5000) and sets PORT for custom binds. Verify port and flags on the release you install because CLI help is authoritative.

Can Maigret run through Tor or proxies?

Yes. The README documents --proxy, --tor-proxy (typical SOCKS5 to local Tor), and --i2p-proxy for I2P HTTP gateways. You must start Tor or I2P yourself; Maigret does not manage those daemons.

Is commercial use allowed?

The open project is MIT-licensed; the README states it is free for commercial use without restriction from the license, while noting that maintainers offer a separate daily-updated private site database and a username-check API via maigret@soxoj.com for production-grade freshness.

What legal and ethical guardrails apply?

The project disclaimer stresses lawful and educational use and user responsibility for GDPR, CCPA, and local law. Use it for authorized security research, fraud investigations with proper process, or asset discovery you have a right to perform—never for harassment, stalking, or non-consensual profiling.

Maigret is an MIT-licensed Python tool maintained at github.com/soxoj/maigret. Given one or more usernames, it probes a large catalog of websites (3,000+ in the README’s headline figure), extracts public profile metadata where possible, supports recursive expansion from discovered IDs, and exports HTML, PDF, JSON, CSV, graph views, and more. No API keys are required for the open-source flow.

How is it different from a single-site search?

Maigret automates breadth: default runs target hundreds of high-traffic sites from its database; -a expands coverage. It uses an auto-updated site list from GitHub (with a built-in fallback offline) and site-specific logic to reduce false positives compared to naive string matching.

How do I run the web UI?

Locally: maigret --web 5000 then open http://127.0.0.1:5000 per upstream docs. Docker: the soxoj/maigret:web image maps a port (default 5000) and sets PORT for custom binds. Verify port and flags on the release you install because CLI help is authoritative.

Can Maigret run through Tor or proxies?

Yes. The README documents --proxy, --tor-proxy (typical SOCKS5 to local Tor), and --i2p-proxy for I2P HTTP gateways. You must start Tor or I2P yourself; Maigret does not manage those daemons.

Is commercial use allowed?

The open project is MIT-licensed; the README states it is free for commercial use without restriction from the license, while noting that maintainers offer a separate daily-updated private site database and a username-check API via maigret@soxoj.com for production-grade freshness.

What legal and ethical guardrails apply?

The project disclaimer stresses lawful and educational use and user responsibility for GDPR, CCPA, and local law. Use it for authorized security research, fraud investigations with proper process, or asset discovery you have a right to perform—never for harassment, stalking, or non-consensual profiling.

Maigret is an MIT-licensed Python tool maintained at github.com/soxoj/maigret. Given one or more usernames, it probes a large catalog of websites (3,000+ in the README’s headline figure), extracts public profile metadata where possible, supports recursive expansion from discovered IDs, and exports HTML, PDF, JSON, CSV, graph views, and more. No API keys are required for the open-source flow.

How is it different from a single-site search?

Maigret automates breadth: default runs target hundreds of high-traffic sites from its database; -a expands coverage. It uses an auto-updated site list from GitHub (with a built-in fallback offline) and site-specific logic to reduce false positives compared to naive string matching.

How do I run the web UI?

Locally: maigret --web 5000 then open http://127.0.0.1:5000 per upstream docs. Docker: the soxoj/maigret:web image maps a port (default 5000) and sets PORT for custom binds. Verify port and flags on the release you install because CLI help is authoritative.

Can Maigret run through Tor or proxies?

Yes. The README documents --proxy, --tor-proxy (typical SOCKS5 to local Tor), and --i2p-proxy for I2P HTTP gateways. You must start Tor or I2P yourself; Maigret does not manage those daemons.

Is commercial use allowed?

The open project is MIT-licensed; the README states it is free for commercial use without restriction from the license, while noting that maintainers offer a separate daily-updated private site database and a username-check API via maigret@soxoj.com for production-grade freshness.

What legal and ethical guardrails apply?

The project disclaimer stresses lawful and educational use and user responsibility for GDPR, CCPA, and local law. Use it for authorized security research, fraud investigations with proper process, or asset discovery you have a right to perform—never for harassment, stalking, or non-consensual profiling.

Maigret is an MIT-licensed Python tool maintained at github.com/soxoj/maigret. Given one or more usernames, it probes a large catalog of websites (3,000+ in the README’s headline figure), extracts public profile metadata where possible, supports recursive expansion from discovered IDs, and exports HTML, PDF, JSON, CSV, graph views, and more. No API keys are required for the open-source flow.

How is it different from a single-site search?

Maigret automates breadth: default runs target hundreds of high-traffic sites from its database; -a expands coverage. It uses an auto-updated site list from GitHub (with a built-in fallback offline) and site-specific logic to reduce false positives compared to naive string matching.

How do I run the web UI?

Locally: maigret --web 5000 then open http://127.0.0.1:5000 per upstream docs. Docker: the soxoj/maigret:web image maps a port (default 5000) and sets PORT for custom binds. Verify port and flags on the release you install because CLI help is authoritative.

Can Maigret run through Tor or proxies?

Yes. The README documents --proxy, --tor-proxy (typical SOCKS5 to local Tor), and --i2p-proxy for I2P HTTP gateways. You must start Tor or I2P yourself; Maigret does not manage those daemons.

Is commercial use allowed?

The open project is MIT-licensed; the README states it is free for commercial use without restriction from the license, while noting that maintainers offer a separate daily-updated private site database and a username-check API via maigret@soxoj.com for production-grade freshness.

What legal and ethical guardrails apply?

The project disclaimer stresses lawful and educational use and user responsibility for GDPR, CCPA, and local law. Use it for authorized security research, fraud investigations with proper process, or asset discovery you have a right to perform—never for harassment, stalking, or non-consensual profiling.

Maigret is an MIT-licensed Python tool maintained at github.com/soxoj/maigret. Given one or more usernames, it probes a large catalog of websites (3,000+ in the README’s headline figure), extracts public profile metadata where possible, supports recursive expansion from discovered IDs, and exports HTML, PDF, JSON, CSV, graph views, and more. No API keys are required for the open-source flow.

How is it different from a single-site search?

Maigret automates breadth: default runs target hundreds of high-traffic sites from its database; -a expands coverage. It uses an auto-updated site list from GitHub (with a built-in fallback offline) and site-specific logic to reduce false positives compared to naive string matching.

How do I run the web UI?

Locally: maigret --web 5000 then open http://127.0.0.1:5000 per upstream docs. Docker: the soxoj/maigret:web image maps a port (default 5000) and sets PORT for custom binds. Verify port and flags on the release you install because CLI help is authoritative.

Can Maigret run through Tor or proxies?

Yes. The README documents --proxy, --tor-proxy (typical SOCKS5 to local Tor), and --i2p-proxy for I2P HTTP gateways. You must start Tor or I2P yourself; Maigret does not manage those daemons.

Is commercial use allowed?

The open project is MIT-licensed; the README states it is free for commercial use without restriction from the license, while noting that maintainers offer a separate daily-updated private site database and a username-check API via maigret@soxoj.com for production-grade freshness.

What legal and ethical guardrails apply?

The project disclaimer stresses lawful and educational use and user responsibility for GDPR, CCPA, and local law. Use it for authorized security research, fraud investigations with proper process, or asset discovery you have a right to perform—never for harassment, stalking, or non-consensual profiling.

Maigret is an MIT-licensed Python tool maintained at github.com/soxoj/maigret. Given one or more usernames, it probes a large catalog of websites (3,000+ in the README’s headline figure), extracts public profile metadata where possible, supports recursive expansion from discovered IDs, and exports HTML, PDF, JSON, CSV, graph views, and more. No API keys are required for the open-source flow.

How is it different from a single-site search?

Maigret automates breadth: default runs target hundreds of high-traffic sites from its database; -a expands coverage. It uses an auto-updated site list from GitHub (with a built-in fallback offline) and site-specific logic to reduce false positives compared to naive string matching.

How do I run the web UI?

Locally: maigret --web 5000 then open http://127.0.0.1:5000 per upstream docs. Docker: the soxoj/maigret:web image maps a port (default 5000) and sets PORT for custom binds. Verify port and flags on the release you install because CLI help is authoritative.

Can Maigret run through Tor or proxies?

Yes. The README documents --proxy, --tor-proxy (typical SOCKS5 to local Tor), and --i2p-proxy for I2P HTTP gateways. You must start Tor or I2P yourself; Maigret does not manage those daemons.

Is commercial use allowed?

The open project is MIT-licensed; the README states it is free for commercial use without restriction from the license, while noting that maintainers offer a separate daily-updated private site database and a username-check API via maigret@soxoj.com for production-grade freshness.

What legal and ethical guardrails apply?

The project disclaimer stresses lawful and educational use and user responsibility for GDPR, CCPA, and local law. Use it for authorized security research, fraud investigations with proper process, or asset discovery you have a right to perform—never for harassment, stalking, or non-consensual profiling.

Maigret is an MIT-licensed Python tool maintained at github.com/soxoj/maigret. Given one or more usernames, it probes a large catalog of websites (3,000+ in the README’s headline figure), extracts public profile metadata where possible, supports recursive expansion from discovered IDs, and exports HTML, PDF, JSON, CSV, graph views, and more. No API keys are required for the open-source flow.

How is it different from a single-site search?

Maigret automates breadth: default runs target hundreds of high-traffic sites from its database; -a expands coverage. It uses an auto-updated site list from GitHub (with a built-in fallback offline) and site-specific logic to reduce false positives compared to naive string matching.

How do I run the web UI?

Locally: maigret --web 5000 then open http://127.0.0.1:5000 per upstream docs. Docker: the soxoj/maigret:web image maps a port (default 5000) and sets PORT for custom binds. Verify port and flags on the release you install because CLI help is authoritative.

Can Maigret run through Tor or proxies?

Yes. The README documents --proxy, --tor-proxy (typical SOCKS5 to local Tor), and --i2p-proxy for I2P HTTP gateways. You must start Tor or I2P yourself; Maigret does not manage those daemons.

Is commercial use allowed?

The open project is MIT-licensed; the README states it is free for commercial use without restriction from the license, while noting that maintainers offer a separate daily-updated private site database and a username-check API via maigret@soxoj.com for production-grade freshness.

What legal and ethical guardrails apply?

The project disclaimer stresses lawful and educational use and user responsibility for GDPR, CCPA, and local law. Use it for authorized security research, fraud investigations with proper process, or asset discovery you have a right to perform—never for harassment, stalking, or non-consensual profiling.

Maigret is an MIT-licensed Python tool maintained at github.com/soxoj/maigret. Given one or more usernames, it probes a large catalog of websites (3,000+ in the README’s headline figure), extracts public profile metadata where possible, supports recursive expansion from discovered IDs, and exports HTML, PDF, JSON, CSV, graph views, and more. No API keys are required for the open-source flow.

How is it different from a single-site search?

Maigret automates breadth: default runs target hundreds of high-traffic sites from its database; -a expands coverage. It uses an auto-updated site list from GitHub (with a built-in fallback offline) and site-specific logic to reduce false positives compared to naive string matching.

How do I run the web UI?

Locally: maigret --web 5000 then open http://127.0.0.1:5000 per upstream docs. Docker: the soxoj/maigret:web image maps a port (default 5000) and sets PORT for custom binds. Verify port and flags on the release you install because CLI help is authoritative.

Can Maigret run through Tor or proxies?

Yes. The README documents --proxy, --tor-proxy (typical SOCKS5 to local Tor), and --i2p-proxy for I2P HTTP gateways. You must start Tor or I2P yourself; Maigret does not manage those daemons.

Is commercial use allowed?

The open project is MIT-licensed; the README states it is free for commercial use without restriction from the license, while noting that maintainers offer a separate daily-updated private site database and a username-check API via maigret@soxoj.com for production-grade freshness.

What legal and ethical guardrails apply?

The project disclaimer stresses lawful and educational use and user responsibility for GDPR, CCPA, and local law. Use it for authorized security research, fraud investigations with proper process, or asset discovery you have a right to perform—never for harassment, stalking, or non-consensual profiling.

Maigret is an MIT-licensed Python tool maintained at github.com/soxoj/maigret. Given one or more usernames, it probes a large catalog of websites (3,000+ in the README’s headline figure), extracts public profile metadata where possible, supports recursive expansion from discovered IDs, and exports HTML, PDF, JSON, CSV, graph views, and more. No API keys are required for the open-source flow.

How is it different from a single-site search?

Maigret automates breadth: default runs target hundreds of high-traffic sites from its database; -a expands coverage. It uses an auto-updated site list from GitHub (with a built-in fallback offline) and site-specific logic to reduce false positives compared to naive string matching.

How do I run the web UI?

Locally: maigret --web 5000 then open http://127.0.0.1:5000 per upstream docs. Docker: the soxoj/maigret:web image maps a port (default 5000) and sets PORT for custom binds. Verify port and flags on the release you install because CLI help is authoritative.

Maigret: open-source username OSINT across 3,000+ sites | explainx.ai Blog

Maigret is a Python-first OSINT utility: feed it a username, and it fans out across a maintained catalog of social and niche sites, collecting public profile signals and packaging them into reports you can hand to an analyst or a ticket. The canonical repo is soxoj/maigret (~23k GitHub stars at the time of writing—refresh the page; the number moves).

This post is a capability overview for blue teams, researchers, and engineers who already think in terms of SOTL-style “find the same handle elsewhere” workflows—not a playbook for abuse.

TL;DR

Question	Answer
One-liner install	Python 3.10+, then `pip install maigret` → `maigret YOUR_USERNAME`
Scale	README cites 3,000+ sites; default runs skew toward ~500 high-traffic entries unless you pass `-a` or `--tags`
Outputs	HTML, PDF, XMind-style, JSON/NDJSON, CSV, TXT, `--graph` D3 graph
Web UI	`maigret --web <port>` or `docker run -p 5000:5000 soxoj/maigret:web`
Stealth / region	Tor, I2P, generic HTTP/SOCKS proxies
License	MIT

Live WorkshopAug 1–2, 2026 · 2 days

Claude for Work

Use Claude as a thought partner for writing, research & decisions — no coding required. 2 live sessions with Yash Thakker.

Where Maigret sits in the toolchain

Maigret is complementary to manual triage and commercial OSINT suites (the upstream README’s Used by section names several vendors—verify current integrations on their sites). For teams, Maigret is the hackable variant you can script in CI or notebooks.

Breadth-first enumeration — quickly answer “does this handle exist on major and long-tail sites?”
Metadata harvest — pull bios, links, and cross-IDs that seed recursive searches (Maigret documents expansion from discovered usernames).
Reporting — one command can emit investigator-friendly HTML/PDF instead of a wall of logs.

Profile parsing is powered in part by socid_extractor for structured IDs from public pages.

Features that matter operationally

Site database hygiene. Maigret ships a bundled dataset and can fetch updates from GitHub (README: roughly once per 24 hours when online). Site-specific claimed vs unclaimed test pairs and --self-check exist so maintainers can tame false positives—a chronic issue in any username checker.

Tag and geography filters. --tags photo,dating or --tags us narrow the blast radius when you already know the persona’s likely vertical.

Permutation mode. --permute builds handle variants (e.g. from name parts), useful for typo-squat and alias hunting—also easy to misuse; pair with policy.

Parse a URL. --parse boots a search from an existing profile URL, handy when onboarding from a single IOC.

Deployment patterns

CLI on an analyst laptop — simplest path for IR retainers.

Docker — soxoj/maigret:latest for batch jobs; soxoj/maigret:web when you want a shared UI on a jump host (bind localhost or put it behind SSO; never expose raw OSINT UIs to the public internet without controls).

Embeddable library — README positions the CLI as a thin wrapper over async APIs you can import; see Read the Docs for library usage and options.

Ethics, law, and enterprise reality

Maigret is neutral tooling. The README’s disclaimer is explicit: lawful, educational use; you own GDPR/CCPA/employment obligations. For employee monitoring or vendor due diligence, run everything through legal and data-retention policy—public does not mean permissionless in every jurisdiction.

False positives still happen: shared usernames, bots, and homoglyphs can implicate the wrong person. Treat hits as leads, not verdicts.

Related on ExplainX

Agent skills security — why automated tooling needs governance
What is MCP? — wiring structured tools into agent loops without leaking scope
Claude mythos preview — model-assisted defensive workflows in context

Sources

Repository: github.com/soxoj/maigret
Quick start: maigret.readthedocs.io — Quick start
Documentation: maigret.readthedocs.io
Site list: sites.md in repo
socid_extractor: github.com/soxoj/socid_extractor
PyPI: pypi.org/project/maigret
No-install option: Telegram bot (per README)
Maintainer commercial contact: [email protected] (per README)

Site counts, Docker tags, and CLI flags change frequently. Treat this article as May 6, 2026 context—read maigret --help and the upstream CHANGELOG before production rollouts.

Maigret: open-source username OSINT across 3,000+ sites (soxoj/maigret)

TL;DR

Where Maigret sits in the toolchain

Features that matter operationally

Deployment patterns

Ethics, law, and enterprise reality

Related on ExplainX

Sources

Related posts

Claude Fable 5 and Mythos 5: SOTA Autonomy and Safeguards

Claude Code for Python Automation: Complete Beginner's Guide 2026

What Are Monorepos? A 101 Guide for JavaScript, Python, Next.js, AI Agents, and MCP (2026)