fragarach 0.1.1

Modular OSINT framework for blockchain forensics and investigations
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133

<h1 align="center">Fragarach</h1>

<p align="center">
  <b>Modular OSINT framework for blockchain forensics and investigations</b>
</p>

## Overview

Fragarach is a modular OSINT framework designed for blockchain investigations and forensics, implemented in Rust. The framework provides a comprehensive suite of tools for building and analyzing blockchain intelligence data lakes.

## Features & Integrations

### Current Integrations
- **Transpose API**
  - Ethereum blockchain data retrieval

- **URLScan API**
  - Domain scanning with private visibility
  - Screenshot capture
  - DOM snapshot storage

### Supported Networks
- **Ethereum**
  - Account analysis
- **Bitcoin** (Under Development)
- **Solana** (Planned)

## Installation & Setup

### Prerequisites

1. **Rust Installation**
   ```bash
   curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh
   ```

### Installation Methods

1. **Via Cargo**
   ```bash
   cargo install fragarach
   ```

2. **From Source**
   ```bash
   git clone https://github.com/DB14734/fragarach.git
   cd fragarach
   cargo build --release
   ```

## Usage

### Configuration
1. **Environment Setup**
   ```bash
   fragarach setup
   ```
   This will create a `.env` file with:
   - `TRANSPOSE_API_KEY`: Transpose API authentication
   - `URLSCAN_API_KEY`: URLScan API authentication

2. **Database**
   - DuckDB database is automatically created at `data/fragarach.duckdd

### Dependencies

Core dependencies:
- `tokio`: Async runtime and utilities
- `duckdb`: Embedded database operations
- `reqwest`: HTTP client
- `serde`: Serialization/deserialization
- `clap`: CLI argument parsing
- `dotenv`: Environment variable management

UI dependencies:
- `colored`: Terminal coloring
- `dialoguer`: Interactive prompts
- `console`: Terminal utilities

### Core Components

#### Storage Layer
Uses DuckDB as an embedded analytical database.

#### Schema Design

Database tables:
1. `ethereum_accounts`
   - Primary account information
   - Creation timestamps
   - Activity tracking
   - Account typing

2. `ethereum_transactions`
   - Transaction details
   - Gas metrics
   - Fee calculations
   - Internal transaction tracking

3. `urlscan_domain_data`
   - Domain scan results
   - Verdict analysis
   - Screenshot references
   - Geographical data

4. `urlscan_dom_snapshot`
   - DOM state storage
   - Temporal tracking
   - UUID referencing

## Contributing

### Development Setup
1. **Fork & Clone**
   ```bash
   git clone https://github.com/your-username/fragarach.git
   cd fragarach
   ```

2. **Build**
   ```bash
   cargo build
   ```

3. **Environment Configuration**
   ```bash
   cp .env.example .env
   # Edit .env with your API keys
   ```

## License

This project is licensed under the MIT License - see the [LICENSE](LICENSE) file for details.