Bump astro from 6.1.2 to 6.1.10 in /front

Bumps [astro](https://github.com/withastro/astro/tree/HEAD/packages/astro) from 6.1.2 to 6.1.10.
- [Release notes](https://github.com/withastro/astro/releases)
- [Changelog](https://github.com/withastro/astro/blob/main/packages/astro/CHANGELOG.md)
- [Commits](https://github.com/withastro/astro/commits/astro@6.1.10/packages/astro)

---
updated-dependencies:
- dependency-name: astro
  dependency-version: 6.1.10
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

.github/docs/tools.md

@@ -1,6 +1,6 @@
 # Tools
 
-_12 tools registered._
+_13 tools registered._
 
 | Tool | Input types | Description | Link |
 |------|-------------|-------------|------|
@@ -8,11 +8,12 @@ _12 tools registered._
 | [`github-recon`](tools/github-recon.md) | `username`, `email` | GitHub OSINT reconnaissance tool. Gathers profile info, social links, organisations, SSH/GPG keys, commits, and more from a GitHub username or email. | [Link](https://github.com/anotherhadi/nur-osint) |
 | [`whois`](tools/whois.md) | `domain`, `ip` | WHOIS lookup for domain registration and IP ownership information. | [Link](https://en.wikipedia.org/wiki/WHOIS) |
 | [`dig`](tools/dig.md) | `domain`, `ip` | DNS lookup querying A, AAAA, MX, NS, TXT, and SOA records for a domain, or reverse DNS (PTR) for an IP. | [Link](https://linux.die.net/man/1/dig) |
-| [`ipinfo`](tools/ipinfo.md) | `ip` | IP geolocation via ipinfo.io — returns city, region, country, coordinates, ASN/org, timezone, and hostname. | [Link](https://ipinfo.io) |
+| [`ipinfo`](tools/ipinfo.md) | `ip` | IP geolocation via ipinfo.io: returns city, region, country, coordinates, ASN/org, timezone, and hostname. | [Link](https://ipinfo.io) |
 | [`gravatar-recon`](tools/gravatar-recon.md) | `email` | Gravatar OSINT tool. Extracts public profile data from a Gravatar account: name, bio, location, employment, social accounts, phone, and more. | [Link](https://github.com/anotherhadi/gravatar-recon) |
-| [`whoisfreaks`](tools/whoisfreaks.md) | `email`, `name`, `domain` | Reverse WHOIS lookup via WhoisFreaks — find all domains registered by an email, owner name, or keyword across 3.6B+ WHOIS records. | [Link](https://whoisfreaks.com) |
+| [`whoisfreaks`](tools/whoisfreaks.md) | `email`, `name`, `domain` | Reverse WHOIS lookup via WhoisFreaks: find all domains registered by an email, owner name, or keyword across 3.6B+ WHOIS records. | [Link](https://whoisfreaks.com) |
 | [`maigret`](tools/maigret.md) | `username` | Username OSINT across 3000+ sites. Searches social networks, forums, and online platforms for an account matching the target username. | [Link](https://github.com/soxoj/maigret) |
-| [`leakcheck`](tools/leakcheck.md) | `email`, `username`, `phone` | Data breach lookup via LeakCheck.io — searches 7B+ leaked records for email addresses, usernames, and phone numbers across hundreds of breaches. | [Link](https://leakcheck.io) |
+| [`ghunt`](tools/ghunt.md) | `email` | Google account OSINT via GHunt. Extracts profile info, linked services, and activity from a Google email address. | [Link](https://github.com/mxrch/GHunt) |
-| [`crt.sh`](tools/crt.sh.md) | `domain` | SSL/TLS certificate transparency log search via crt.sh — enumerates subdomains and certificates issued for a domain. | [Link](https://crt.sh) |
+| [`leakcheck`](tools/leakcheck.md) | `email`, `username`, `phone` | Data breach lookup via LeakCheck.io: searches 7B+ leaked records for email addresses, usernames, and phone numbers across hundreds of breaches. | [Link](https://leakcheck.io) |
-| [`breachdirectory`](tools/breachdirectory.md) | `email`, `username` | Data breach search via BreachDirectory — checks if an email, username, or phone appears in known data breaches and returns exposed passwords/hashes. | [Link](https://breachdirectory.org) |
+| [`crt.sh`](tools/crt.sh.md) | `domain` | SSL/TLS certificate transparency log search via crt.sh: enumerates subdomains and certificates issued for a domain. | [Link](https://crt.sh) |
-| [`wappalyzer`](tools/wappalyzer.md) | `domain` | Web technology fingerprinting via wappalyzergo — detects CMS, frameworks, web servers, analytics, CDN, and 1500+ other technologies running on a domain. | [Link](https://github.com/projectdiscovery/wappalyzergo) |
+| [`breachdirectory`](tools/breachdirectory.md) | `email`, `username` | Data breach search via BreachDirectory: checks if an email, username, or phone appears in known data breaches and returns exposed passwords/hashes. | [Link](https://breachdirectory.org) |
+| [`wappalyzer`](tools/wappalyzer.md) | `domain` | Web technology fingerprinting via wappalyzergo: detects CMS, frameworks, web servers, analytics, CDN, and 1500+ other technologies running on a domain. | [Link](https://github.com/projectdiscovery/wappalyzergo) |

.github/docs/tools/breachdirectory.md

@@ -1,6 +1,6 @@
 # `breachdirectory`
 
-Data breach search via BreachDirectory — checks if an email, username, or phone appears in known data breaches and returns exposed passwords/hashes.
+Data breach search via BreachDirectory: checks if an email, username, or phone appears in known data breaches and returns exposed passwords/hashes.
 
 **Source / documentation:** [https://breachdirectory.org](https://breachdirectory.org)
 
@@ -15,7 +15,7 @@ Configure globally via the Tools page or override per profile.
 
 | Field | Type | Required | Default | Description |
 |-------|------|:--------:|---------|-------------|
-| `api_key` | `string` | **yes** | - | RapidAPI key for BreachDirectory (required — get one at rapidapi.com/rohan-patra/api/breachdirectory) |
+| `api_key` | `string` | **yes** | - | RapidAPI key for BreachDirectory (required, get one at rapidapi.com/rohan-patra/api/breachdirectory) |
 
 ---
 

.github/docs/tools/crt.sh.md

@@ -1,6 +1,6 @@
 # `crt.sh`
 
-SSL/TLS certificate transparency log search via crt.sh — enumerates subdomains and certificates issued for a domain.
+SSL/TLS certificate transparency log search via crt.sh: enumerates subdomains and certificates issued for a domain.
 
 **Source / documentation:** [https://crt.sh](https://crt.sh)
 

.github/docs/tools/ghunt.md

@@ -0,0 +1,27 @@
+# `ghunt`
+
+Google account OSINT via GHunt. Extracts profile info, linked services, and activity from a Google email address.
+
+**Source / documentation:** [https://github.com/mxrch/GHunt](https://github.com/mxrch/GHunt)
+
+## Input types
+
+- `email`
+
+## External dependencies
+
+The following binaries must be installed and available in `$PATH`:
+
+- `ghunt`
+
+## Configuration
+
+Configure globally via the Tools page or override per profile.
+
+| Field | Type | Required | Default | Description |
+|-------|------|:--------:|---------|-------------|
+| `creds` | `string` | **yes** | - | GHunt credentials (content of ~/.malfrats/ghunt/creds.m). To obtain: (1) install GHunt and run 'ghunt login' on your machine, (2) copy the full content of ~/.malfrats/ghunt/creds.m, (3) paste it here. |
+
+---
+
+[← Back to tools index](../tools.md)

.github/docs/tools/ipinfo.md

@@ -1,6 +1,6 @@
 # `ipinfo`
 
-IP geolocation via ipinfo.io — returns city, region, country, coordinates, ASN/org, timezone, and hostname.
+IP geolocation via ipinfo.io: returns city, region, country, coordinates, ASN/org, timezone, and hostname.
 
 **Source / documentation:** [https://ipinfo.io](https://ipinfo.io)
 
@@ -14,7 +14,7 @@ Configure globally via the Tools page or override per profile.
 
 | Field | Type | Required | Default | Description |
 |-------|------|:--------:|---------|-------------|
-| `token` | `string` | - | - | ipinfo.io API token (optional — free tier allows 50k req/month without one) |
+| `token` | `string` | - | - | ipinfo.io API token (optional, free tier allows 50k req/month without one) |
 
 ---
 

.github/docs/tools/leakcheck.md

@@ -1,6 +1,6 @@
 # `leakcheck`
 
-Data breach lookup via LeakCheck.io — searches 7B+ leaked records for email addresses, usernames, and phone numbers across hundreds of breaches.
+Data breach lookup via LeakCheck.io: searches 7B+ leaked records for email addresses, usernames, and phone numbers across hundreds of breaches.
 
 **Source / documentation:** [https://leakcheck.io](https://leakcheck.io)
 
@@ -16,7 +16,7 @@ Configure globally via the Tools page or override per profile.
 
 | Field | Type | Required | Default | Description |
 |-------|------|:--------:|---------|-------------|
-| `api_key` | `string` | **yes** | - | LeakCheck API key (required — get one at leakcheck.io) |
+| `api_key` | `string` | **yes** | - | LeakCheck API key (required, get one at leakcheck.io) |
 
 ---
 

.github/docs/tools/wappalyzer.md

@@ -1,6 +1,6 @@
 # `wappalyzer`
 
-Web technology fingerprinting via wappalyzergo — detects CMS, frameworks, web servers, analytics, CDN, and 1500+ other technologies running on a domain.
+Web technology fingerprinting via wappalyzergo: detects CMS, frameworks, web servers, analytics, CDN, and 1500+ other technologies running on a domain.
 
 **Source / documentation:** [https://github.com/projectdiscovery/wappalyzergo](https://github.com/projectdiscovery/wappalyzergo)
 

.github/docs/tools/whoisfreaks.md

@@ -1,6 +1,6 @@
 # `whoisfreaks`
 
-Reverse WHOIS lookup via WhoisFreaks — find all domains registered by an email, owner name, or keyword across 3.6B+ WHOIS records.
+Reverse WHOIS lookup via WhoisFreaks: find all domains registered by an email, owner name, or keyword across 3.6B+ WHOIS records.
 
 **Source / documentation:** [https://whoisfreaks.com](https://whoisfreaks.com)
 
@@ -16,7 +16,7 @@ Configure globally via the Tools page or override per profile.
 
 | Field | Type | Required | Default | Description |
 |-------|------|:--------:|---------|-------------|
-| `api_key` | `string` | **yes** | - | WhoisFreaks API key (required — free account at whoisfreaks.com) |
+| `api_key` | `string` | **yes** | - | WhoisFreaks API key (required, free account at whoisfreaks.com) |
 
 ---
 

.gitignore

@@ -1,2 +1,3 @@
 .claude/
+CLAUDE.md
 todolist.md

README.md

@@ -30,6 +30,7 @@ Designed for security researchers, penetration testers, and OSINT investigators
 - **Parallel execution**: all tools run simultaneously; results stream in as they arrive
 - **Profile system**: create named profiles to enable/disable specific tools or override their config per investigation type (quick recon vs. thorough sweep)
 - **Per-tool configuration**: set API keys, rate limits, and options globally or per profile
+- **Proxy support**: route all tool traffic through SOCKS5/SOCKS4/HTTP proxies, with automatic failover across multiple proxies; external binary tools are transparently wrapped with proxychains4
 - **Tool availability checks**: tools that depend on an external binary report their status; the interface shows which tools are ready, which need config, and which are unavailable
 - **Search history**: completed searches are kept in memory; results can be reviewed without re-running
 - **Extensible architecture**: adding a new tool is a single Go file implementing one interface, registered in one line
@@ -110,6 +111,7 @@ Create `/etc/iky/config.yaml` (or any path, then point `IKY_CONFIG` to it):
 tools:
   github-recon:
     token: ghp_yourtoken
+    deepscan: true
   whoisfreaks:
     api_key: yourkey
   ipinfo:
@@ -117,16 +119,24 @@ tools:
   breachdirectory:
     api_key: yourkey
 
+proxies:
+  - url: socks5://user:pass@127.0.0.1:9050
+  - url: http://proxy.example.com:8080
+
 profiles:
   quick:
     enabled:
       - whois
       - dig
       - crt.sh
+      - github-recon
     disabled: []
+    tools:
+      github-recon:
+        deepscan: false # Overwrite
 ```
 
-Only include the tools you want to configure — everything else falls back to defaults.
+Only include the tools you want to configure; everything else falls back to defaults.
 
 </details>
 

back/internal/api/handler/enumerate.go

@@ -16,13 +16,13 @@ import (
 
 // ansiRe strips all ANSI/VT100 escape sequences (CSI, OSC, etc.).
 // RunWithPTY only strips OSC sequences; CSI colour codes need this.
-var ansiRe = regexp.MustCompile(`\x1b[\x5b-\x5f][0-9;]*[A-Za-z]|\x1b[^[\x5b-\x5f]`)
+var ansiRe = regexp.MustCompile(`\x1b[\x5b-\x5f][0-9;]*[A-Za-z]|\x1b[^\x5b-\x5f]`)
 
 type EnumerateHandler struct {
 	demo bool
 }
 
-func NewEnumerateHandler(_ string, demo bool) *EnumerateHandler {
+func NewEnumerateHandler(demo bool) *EnumerateHandler {
 	return &EnumerateHandler{demo: demo}
 }
 
@@ -186,7 +186,7 @@ type checkEmailResponse struct {
 
 // userScannerCheck runs user-scanner via PTY (required for output).
 // flag is either "-e" (email) or "-u" (username).
-// Office365 is excluded — it's a known false positive.
+// Office365 is excluded (known false positive).
 // quick=true uses a shorter timeout for a faster but incomplete scan.
 func userScannerCheck(ctx context.Context, flag, target string, quick bool) (status, reason string, sites []string) {
 	defer func() {
@@ -223,7 +223,7 @@ func userScannerCheck(ctx context.Context, flag, target string, quick bool) (sta
 		if !strings.Contains(line, "[✔]") {
 			continue
 		}
-		// Office365 is a known false positive — skip it.
+		// Office365 is a known false positive, skip it.
 		if strings.Contains(line, "Office365") {
 			continue
 		}

back/internal/api/router.go

@@ -29,7 +29,7 @@ func NewRouter(
 	searchHandler := handler.NewSearchHandler(manager, demo)
 	toolsHandler := handler.NewToolsHandler(factories)
 	configHandler := handler.NewConfigHandler(configPath, factories, demo)
-	enumerateHandler := handler.NewEnumerateHandler(configPath, demo)
+	enumerateHandler := handler.NewEnumerateHandler(demo)
 
 	searchLimiter := ikymiddleware.New(rate.Every(10*time.Second), 3)
 

back/internal/tools/breachdirectory/tool.go

@@ -14,13 +14,13 @@ import (
 
 const (
 	name        = "breachdirectory"
-	description = "Data breach search via BreachDirectory — checks if an email, username, or phone appears in known data breaches and returns exposed passwords/hashes."
+	description = "Data breach search via BreachDirectory: checks if an email, username, or phone appears in known data breaches and returns exposed passwords/hashes."
 	link        = "https://breachdirectory.org"
-	icon        = ""
+	icon        = "mdi:shield-alert"
 )
 
 type Config struct {
-	APIKey string `yaml:"api_key" iky:"desc=RapidAPI key for BreachDirectory (required — get one at rapidapi.com/rohan-patra/api/breachdirectory);required=true"`
+	APIKey string `yaml:"api_key" iky:"desc=RapidAPI key for BreachDirectory (required, get one at rapidapi.com/rohan-patra/api/breachdirectory);required=true"`
 }
 
 type Runner struct {

back/internal/tools/crtsh/tool.go

@@ -16,9 +16,9 @@ import (
 
 const (
 	name        = "crt.sh"
-	description = "SSL/TLS certificate transparency log search via crt.sh — enumerates subdomains and certificates issued for a domain."
+	description = "SSL/TLS certificate transparency log search via crt.sh: enumerates subdomains and certificates issued for a domain."
 	link        = "https://crt.sh"
-	icon        = ""
+	icon        = "mdi:certificate-outline"
 )
 
 type Runner struct{}

back/internal/tools/dig/tool.go

@@ -13,7 +13,7 @@ const (
 	name        = "dig"
 	description = "DNS lookup querying A, AAAA, MX, NS, TXT, and SOA records for a domain, or reverse DNS (PTR) for an IP."
 	link        = "https://linux.die.net/man/1/dig"
-	icon        = ""
+	icon        = "mdi:dns"
 )
 
 var recordTypes = []string{"A", "AAAA", "MX", "NS", "TXT", "SOA"}
@@ -67,7 +67,13 @@ func (r *Runner) Run(ctx context.Context, target string, inputType tools.InputTy
 				break
 			}
 			cmd := exec.CommandContext(ctx, "dig", target, rtype, "+noall", "+answer")
-			output, _ := cmd.Output()
+			output, err := cmd.Output()
+			if err != nil {
+				if ctx.Err() != nil {
+					break
+				}
+				continue
+			}
 			result := strings.TrimSpace(string(output))
 			if result == "" {
 				continue

back/internal/tools/ghunt/tool.go

@@ -18,7 +18,7 @@ const (
 	name        = "ghunt"
 	description = "Google account OSINT via GHunt. Extracts profile info, linked services, and activity from a Google email address."
 	link        = "https://github.com/mxrch/GHunt"
-	icon        = "google"
+	icon        = "si:google"
 )
 
 type Config struct {
@@ -103,8 +103,8 @@ func (r *Runner) Run(ctx context.Context, target string, _ tools.InputType, out
 	}
 
 	if start == -1 {
-		// Banner printed but auth line never appeared — bad/expired credentials.
+		// Banner printed but auth line never appeared: bad/expired credentials.
-		out <- tools.Event{Tool: name, Type: tools.EventTypeError, Payload: "GHunt authentication failed — credentials may be missing or expired (run 'ghunt login' and update your creds in Settings)"}
+		out <- tools.Event{Tool: name, Type: tools.EventTypeError, Payload: "GHunt authentication failed: credentials may be missing or expired (run 'ghunt login' and update your creds in Settings)"}
 		out <- tools.Event{Tool: name, Type: tools.EventTypeCount, Payload: 0}
 		out <- tools.Event{Tool: name, Type: tools.EventTypeDone}
 		return nil

back/internal/tools/github-recon/tool.go

@@ -12,7 +12,7 @@ const (
 	name        = "github-recon"
 	description = "GitHub OSINT reconnaissance tool. Gathers profile info, social links, organisations, SSH/GPG keys, commits, and more from a GitHub username or email."
 	link        = "https://github.com/anotherhadi/nur-osint"
-	icon        = "github"
+	icon        = "si:github"
 )
 
 type Config struct {

back/internal/tools/gravatar-recon/tool.go

@@ -3,6 +3,7 @@ package gravatarrecon
 import (
 	"context"
 	"os/exec"
+	"strings"
 
 	"github.com/anotherhadi/iknowyou/internal/tools"
 )
@@ -11,7 +12,7 @@ const (
 	name        = "gravatar-recon"
 	description = "Gravatar OSINT tool. Extracts public profile data from a Gravatar account: name, bio, location, employment, social accounts, phone, and more."
 	link        = "https://github.com/anotherhadi/gravatar-recon"
-	icon        = ""
+	icon        = "si:gravatar"
 )
 
 type Runner struct{}
@@ -46,9 +47,11 @@ func (r *Runner) Run(ctx context.Context, target string, _ tools.InputType, out
 	if err != nil && ctx.Err() != nil {
 		out <- tools.Event{Tool: name, Type: tools.EventTypeError, Payload: "scan cancelled"}
 	} else if output != "" {
+		if !strings.Contains(output, "status 404") {
 			out <- tools.Event{Tool: name, Type: tools.EventTypeOutput, Payload: output}
 			count = 1
 		}
+	}
 	out <- tools.Event{Tool: name, Type: tools.EventTypeCount, Payload: count}
 	out <- tools.Event{Tool: name, Type: tools.EventTypeDone}
 	return nil

back/internal/tools/ipinfo/tool.go

@@ -13,13 +13,13 @@ import (
 
 const (
 	name        = "ipinfo"
-	description = "IP geolocation via ipinfo.io — returns city, region, country, coordinates, ASN/org, timezone, and hostname."
+	description = "IP geolocation via ipinfo.io: returns city, region, country, coordinates, ASN/org, timezone, and hostname."
 	link        = "https://ipinfo.io"
-	icon        = ""
+	icon        = "mdi:ip-network"
 )
 
 type Config struct {
-	Token string `yaml:"token" iky:"desc=ipinfo.io API token (optional — free tier allows 50k req/month without one);required=false"`
+	Token string `yaml:"token" iky:"desc=ipinfo.io API token (optional, free tier allows 50k req/month without one);required=false"`
 }
 
 type Runner struct {

back/internal/tools/leakcheck/tool.go

@@ -14,13 +14,13 @@ import (
 
 const (
 	name        = "leakcheck"
-	description = "Data breach lookup via LeakCheck.io — searches 7B+ leaked records for email addresses, usernames, and phone numbers across hundreds of breaches."
+	description = "Data breach lookup via LeakCheck.io: searches 7B+ leaked records for email addresses, usernames, and phone numbers across hundreds of breaches."
 	link        = "https://leakcheck.io"
-	icon        = ""
+	icon        = "mdi:database-alert"
 )
 
 type Config struct {
-	APIKey string `yaml:"api_key" iky:"desc=LeakCheck API key (required — get one at leakcheck.io);required=true"`
+	APIKey string `yaml:"api_key" iky:"desc=LeakCheck API key (required, get one at leakcheck.io);required=true"`
 }
 
 type Runner struct {

back/internal/tools/maigret/tool.go

@@ -14,7 +14,7 @@ const (
 	name        = "maigret"
 	description = "Username OSINT across 3000+ sites. Searches social networks, forums, and online platforms for an account matching the target username."
 	link        = "https://github.com/soxoj/maigret"
-	icon        = ""
+	icon        = "mdi:radar"
 )
 
 var accountsRe = regexp.MustCompile(`returned (\d+) accounts`)
@@ -68,7 +68,7 @@ func (r *Runner) Run(ctx context.Context, target string, _ tools.InputType, out
 	cmd := exec.CommandContext(ctx, "maigret", args...)
 	output, err := tools.RunWithPTY(ctx, cmd)
 
-	// Crop at Python traceback (NixOS read-only store error — results are unaffected)
+	// Crop at Python traceback (NixOS read-only store error, results are unaffected)
 	if idx := strings.Index(output, "Traceback (most recent call last)"); idx != -1 {
 		output = strings.TrimSpace(output[:idx])
 	}

back/internal/tools/tools.go

@@ -7,7 +7,7 @@ type EventType string
 const (
 	EventTypeOutput EventType = "output" // raw ANSI text, payload is a plain string
 	EventTypeError  EventType = "error"
-	EventTypeCount  EventType = "count" // payload is int, additive — emit once or multiple times from Run
+	EventTypeCount  EventType = "count" // payload is int, additive; emit once or multiple times from Run
 	EventTypeDone   EventType = "done"
 )
 

back/internal/tools/user-scanner/tool.go

@@ -12,7 +12,7 @@ const (
 	name        = "user-scanner"
 	description = "🕵️‍♂️ (2-in-1) Email & Username OSINT suite. Analyzes 195+ scan vectors (95+ email / 100+ username) for security research, investigations, and digital footprinting."
 	link        = "https://github.com/kaifcodec/user-scanner"
-	icon        = ""
+	icon        = "mdi:account-search"
 )
 
 type Config struct {

back/internal/tools/wappalyzer/tool.go

@@ -16,9 +16,9 @@ import (
 
 const (
 	name        = "wappalyzer"
-	description = "Web technology fingerprinting via wappalyzergo — detects CMS, frameworks, web servers, analytics, CDN, and 1500+ other technologies running on a domain."
+	description = "Web technology fingerprinting via wappalyzergo: detects CMS, frameworks, web servers, analytics, CDN, and 1500+ other technologies running on a domain."
 	link        = "https://github.com/projectdiscovery/wappalyzergo"
-	icon        = "wappalyzer"
+	icon        = "si:wappalyzer"
 )
 
 type Runner struct {

back/internal/tools/whois/tool.go

@@ -12,7 +12,7 @@ const (
 	name        = "whois"
 	description = "WHOIS lookup for domain registration and IP ownership information."
 	link        = "https://en.wikipedia.org/wiki/WHOIS"
-	icon        = ""
+	icon        = "mdi:card-search"
 )
 
 type Runner struct{}

back/internal/tools/whoisfreaks/tool.go

@@ -16,13 +16,13 @@ import (
 
 const (
 	name        = "whoisfreaks"
-	description = "Reverse WHOIS lookup via WhoisFreaks — find all domains registered by an email, owner name, or keyword across 3.6B+ WHOIS records."
+	description = "Reverse WHOIS lookup via WhoisFreaks: find all domains registered by an email, owner name, or keyword across 3.6B+ WHOIS records."
 	link        = "https://whoisfreaks.com"
-	icon        = ""
+	icon        = "mdi:database-search"
 )
 
 type Config struct {
-	APIKey string `yaml:"api_key" iky:"desc=WhoisFreaks API key (required — free account at whoisfreaks.com);required=true"`
+	APIKey string `yaml:"api_key" iky:"desc=WhoisFreaks API key (required, free account at whoisfreaks.com);required=true"`
 }
 
 type Runner struct {

front/package.json

@@ -15,7 +15,7 @@
     "@lucide/svelte": "^1.7.0",
     "@tailwindcss/vite": "^4.2.1",
     "ansi_up": "^6.0.6",
-    "astro": "6.1.2",
+    "astro": "6.1.10",
     "dompurify": "^3.3.3",
     "js-yaml": "^4.1.1",
     "remark-github-blockquote-alert": "^2.1.0",

front/src/components/CheatsheetList.svelte

@@ -60,17 +60,19 @@
       {#each filtered as sheet}
         <a
           href={`/cheatsheets/${sheet.id}`}
-          class="card bg-base-200 hover:bg-base-300 transition-colors p-4 flex flex-row items-center gap-4"
+          class="card bg-base-200 hover:bg-base-300 transition-colors p-4 flex flex-col gap-2 sm:flex-row sm:items-center sm:gap-4"
         >
+          <div class="flex items-center gap-4 flex-1 min-w-0">
             <div class="size-2 rounded-full bg-primary shrink-0"></div>
-          <div class="flex-1 min-w-0">
+            <div class="min-w-0">
               <div class="font-semibold text-sm">{sheet.title}</div>
               {#if sheet.description}
                 <div class="text-base-content/50 text-xs mt-0.5">{sheet.description}</div>
               {/if}
             </div>
+          </div>
           {#if sheet.tags && sheet.tags.length > 0}
-            <div class="flex gap-1 shrink-0">
+            <div class="flex flex-wrap gap-1 sm:justify-end">
               {#each sheet.tags as tag}
                 <span class="badge badge-xs badge-ghost">{tag}</span>
               {/each}

front/src/components/DemoBanner.svelte

@@ -19,6 +19,6 @@
 {#if demo}
   <div class="w-full bg-warning/15 border-b border-warning/30 py-1.5 px-4 flex items-center justify-center gap-2 text-xs text-warning">
     <FlaskConical size={13} class="shrink-0" />
-    <span>Demo mode — searches and configuration changes are disabled</span>
+    <span>Demo mode: searches and configuration changes are disabled</span>
   </div>
 {/if}

front/src/components/EnumeratePage.svelte

@@ -158,8 +158,8 @@
     if (s === "found") return "Found";
     if (s === "not_found") return "Not found";
     if (s === "maybe") return "Maybe";
-    if (s === "checking") return "Checking…";
+    if (s === "checking") return "Checking...";
-    return "—";
+    return "-";
   }
 </script>
 
@@ -296,7 +296,7 @@
   {#if !userScannerAvailable}
     <div class="alert alert-warning text-sm gap-2">
       <TriangleAlert size={15} class="shrink-0" />
-      <span><span class="font-mono">user-scanner</span> is not installed — email and username checking will be unavailable.</span>
+      <span><span class="font-mono">user-scanner</span> is not installed, email and username checking will be unavailable.</span>
     </div>
   {/if}
 
@@ -414,7 +414,7 @@
                       <HelpCircle size={13} /> Maybe
                     </span>
                   {:else}
-                    <span class="text-xs text-base-content/30">—</span>
+                    <span class="text-xs text-base-content/30">-</span>
                   {/if}
                 </td>
                 <td class="text-right">

front/src/components/Nav.svelte

@@ -13,6 +13,15 @@
   } from "@lucide/svelte";
   import type { Snippet } from "svelte";
 
+  let mobileMenuOpen = $state(false);
+
+  function onDocumentClick(e: MouseEvent) {
+    if (!mobileMenuOpen) return;
+    if (!(e.target as HTMLElement).closest("[data-mobile-nav]")) {
+      mobileMenuOpen = false;
+    }
+  }
+
   let {
     action,
   }: {
@@ -46,17 +55,20 @@
   ];
 </script>
 
+<svelte:document onclick={onDocumentClick} />
+
 <div class="bg-base-200">
   <div class="navbar max-w-5xl m-auto">
     <div class="navbar-start">
-      <div class="dropdown">
+      <div class="relative" data-mobile-nav>
-        <div tabindex="0" role="button" class="btn btn-ghost lg:hidden">
+        <button
-          <Menu size={20} />
+          class="btn btn-ghost lg:hidden"
-        </div>
+          onclick={(e) => { e.stopPropagation(); mobileMenuOpen = !mobileMenuOpen; }}
-        <ul
-          tabindex="-1"
-          class="menu menu-sm dropdown-content bg-base-300 rounded-box z-50 mt-3 w-52 p-2"
         >
+          <Menu size={20} />
+        </button>
+        {#if mobileMenuOpen}
+        <ul class="menu menu-sm absolute bg-base-300 rounded-box z-50 mt-1 w-52 p-2">
           {#each navLinks as link}
             <li>
               {#if link.children}
@@ -64,7 +76,11 @@
                 <ul class="p-2">
                   {#each link.children as sublink}
                     <li>
-                      <a href={sublink.href} class="flex items-center gap-2">
+                      <a
+                        href={sublink.href}
+                        class="flex items-center gap-2"
+                        onclick={() => (mobileMenuOpen = false)}
+                      >
                         {#if sublink.icon}
                           {@const Icon = sublink.icon}
                           <Icon size={12} />
@@ -75,7 +91,11 @@
                   {/each}
                 </ul>
               {:else}
-                <a href={link.href} class="flex items-center gap-2">
+                <a
+                  href={link.href}
+                  class="flex items-center gap-2"
+                  onclick={() => (mobileMenuOpen = false)}
+                >
                   {#if link.icon}
                     {@const Icon = link.icon}
                     <Icon size={12} />
@@ -86,8 +106,9 @@
             </li>
           {/each}
         </ul>
+        {/if}
       </div>
-      <!-- Logo à gauche sur écran moyen et grand -->
+      <!-- Logo on medium/large screens -->
       <a
         href="/"
         class="btn btn-ghost text-xl hidden sm:flex justify-center gap-2 items-center"
@@ -98,7 +119,7 @@
     </div>
 
     <div class="navbar-center lg:flex">
-      <!-- Logo centré sur petit écran (mobile) -->
+      <!-- Logo centered on mobile -->
       <a
         href="/"
         class="btn btn-ghost text-xl flex sm:hidden justify-center gap-2 items-center"
@@ -106,7 +127,7 @@
         <img src="/logo.svg" class="m-auto h-4" alt="iky logo" />
         <img src="/logo-large.svg" class="m-auto h-4" alt="iky logo large" />
       </a>
-      <!-- Nav links sur grand écran -->
+      <!-- Nav links on large screens -->
       <ul class="menu menu-horizontal px-1 hidden lg:flex">
         {#each navLinks as link}
           <li>

front/src/components/ProxySettings.svelte

@@ -141,7 +141,7 @@
       <div class="flex flex-col gap-2">
         {#if proxies.length === 0}
           <p class="text-sm text-base-content/40">
-            No proxies configured — tools will connect directly.
+            No proxies configured, tools will connect directly.
           </p>
         {:else}
           {#each proxies as proxy, i}
@@ -191,7 +191,7 @@
             <p class="text-xs text-base-content/40">
               Supported: <span class="font-mono">socks5://</span>,
               <span class="font-mono">socks4://</span>,
-              <span class="font-mono">http://</span> — on failure, the next proxy is tried automatically.
+              <span class="font-mono">http://</span>. On failure, the next proxy is tried automatically.
             </p>
           </div>
         {/if}

front/src/components/SearchBar.svelte

@@ -8,7 +8,7 @@
   const DETECTORS = {
     email:    (_raw, v) => /^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(v),
     phone:    (_raw, v) => /^\+\d{1,4} \d{4,}$/.test(v),
-    ip:       (_raw, v) => /^(\d{1,3}\.){3}\d{1,3}$/.test(v) || /^[0-9a-fA-F:]{3,39}$/.test(v),
+    ip:       (_raw, v) => /^(25[0-5]|2[0-4]\d|1\d{2}|[1-9]\d|\d)(\.(25[0-5]|2[0-4]\d|1\d{2}|[1-9]\d|\d)){3}$/.test(v) || (/^[0-9a-fA-F:]{3,39}$/.test(v) && v.includes(':')),
     domain:   (raw, v)  => /^https?:\/\//.test(raw) || /^(?:[a-zA-Z0-9](?:[a-zA-Z0-9\-]{0,61}[a-zA-Z0-9])?\.)+[a-zA-Z]{2,}$/.test(v),
     name:     (_raw, v) => /^[a-zA-ZÀ-ÿ'-]+(?: [a-zA-ZÀ-ÿ'-]+){1,2}$/.test(v),
   };
@@ -16,8 +16,8 @@
   const VALIDATORS = {
     email:    { test: (v) => /^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(v),         msg: "Invalid email address" },
     username: { test: (v) => /^[a-zA-Z0-9._-]+$/.test(v),                   msg: "Username may only contain a-z, 0-9, . - _" },
-    phone:    { test: (v) => /^\+\d{1,4} \d{4,}$/.test(v),                 msg: "Format: +INDICATIF NUMERO (ex: +33 0612345678)" },
+    phone:    { test: (v) => /^\+\d{1,4} \d{4,}$/.test(v),                 msg: "Format: +COUNTRYCODE NUMBER (e.g. +1 2025550147)" },
-    ip:       { test: (v) => /^(\d{1,3}\.){3}\d{1,3}$/.test(v) || /^[0-9a-fA-F:]{3,39}$/.test(v), msg: "Invalid IP address" },
+    ip:       { test: (v) => /^(25[0-5]|2[0-4]\d|1\d{2}|[1-9]\d|\d)(\.(25[0-5]|2[0-4]\d|1\d{2}|[1-9]\d|\d)){3}$/.test(v) || (/^[0-9a-fA-F:]{3,39}$/.test(v) && v.includes(':')), msg: "Invalid IP address" },
     domain:   { test: (v) => /^(?:[a-zA-Z0-9](?:[a-zA-Z0-9\-]{0,61}[a-zA-Z0-9])?\.)+[a-zA-Z]{2,}$/.test(v), msg: "Invalid domain name" },
   };
 

front/src/components/SearchDetail.svelte

@@ -230,7 +230,7 @@
         </details>
 
         {#if demo}
-          <p class="text-xs text-base-content/40 italic">Results shown are not exhaustive — demo mode only displays a subset of what the tools can find.</p>
+          <p class="text-xs text-base-content/40 italic">Results shown are not exhaustive: demo mode only displays a subset of what the tools can find.</p>
         {/if}
 
       </div>

front/src/components/SettingsPage.svelte

@@ -406,7 +406,7 @@
             <div class="alert alert-warning py-2 px-3 text-sm gap-2">
               <AlertTriangle size={15} class="shrink-0" />
               <span>
-                <strong>proxychains4</strong> not found in PATH — external binary tools
+                <strong>proxychains4</strong> not found in PATH, external binary tools
                 (maigret, ghunt, etc.) will <strong>not</strong> be proxied.
                 Only HTTP-based tools are affected by the proxy config.
               </span>
@@ -418,7 +418,7 @@
             {#if proxies.length === 0}
               <div class="border border-dashed border-base-300 rounded-box py-8 text-center">
                 <Shield size={24} class="mx-auto mb-2 text-base-content/20" />
-                <p class="text-sm text-base-content/40">No proxies — tools connect directly.</p>
+                <p class="text-sm text-base-content/40">No proxies, tools connect directly.</p>
               </div>
             {:else}
               {#each proxies as proxy, i}

front/src/components/comps/ToolIcon.svelte

@@ -1,13 +1,26 @@
 <script lang="ts">
-  const { iconName = "", size=16 }: { iconName: string , size: number} = $props();
+  const { iconName = "", size = 16 }: { iconName: string; size: number } = $props();
 
   const genericFallbackUrl = "/Wrench.svg";
+
+  function resolveUrl(name: string): string {
+    if (name.startsWith("mdi:")) {
+      return `https://cdn.jsdelivr.net/npm/@mdi/svg@latest/svg/${name.slice(4)}.svg`;
+    }
+    if (name.startsWith("sh:")) {
+      return `https://cdn.jsdelivr.net/gh/selfhst/icons/svg/${name.slice(3)}.svg`;
+    }
+    // si: prefix or no prefix, default to Simple Icons
+    const slug = name.startsWith("si:") ? name.slice(3) : name;
+    return `https://cdn.simpleicons.org/${slug}`;
+  }
+
+  const src = $derived(iconName ? resolveUrl(iconName) : genericFallbackUrl);
 </script>
 
-{#if iconName}
 <img
-    src="https://cdn.simpleicons.org/{iconName}"
+  {src}
-    alt={iconName + " icon"}
+  alt={iconName ? iconName + " icon" : "Tool icon"}
   class="opacity-50"
   width={size}
   height={size}
@@ -17,13 +30,3 @@
     target.src = genericFallbackUrl;
   }}
 />
-{:else}
-  <img
-    src={genericFallbackUrl}
-    alt={"Tool icon"}
-    class="opacity-50"
-    width={size}
-    height={size}
-    style="filter: brightness(0) invert(1);"
-  />
-{/if}

front/src/content/cheatsheets/github-osint.md

@@ -97,7 +97,7 @@ Once you have a **name**, an **email**, or a **unique username**, it’s time to
 
 If you want to move from manual investigation to automated intelligence, check out [Github-Recon](https://github.com/anotherhadi/github-recon).
 Written in Go, this powerful CLI tool aggregates public OSINT data by automating the techniques mentioned above and more. Whether you start with a username or a single email address, it can retrieve SSH/GPG keys, enumerate social accounts, and find "close friends" based on interactions.
-Its standout features include a **Deep Scan** mode-which clones repositories to perform regex searches and TruffleHog secret detection—and an automated **Email Spoofing** engine that instantly identifies the account linked to any primary email address.
+Its standout features include a **Deep Scan** mode (clones repositories for regex searches and TruffleHog secret detection) and an automated **Email Spoofing** engine that identifies the account linked to any primary email address.
 
 <a href="https://github.com/anotherhadi/github-recon" class="link-card" target="_blank">
   <span>

front/src/pages/help.astro

@@ -141,7 +141,7 @@ import Layout from "@src/layouts/Layout.astro";
           </li>
         </ul>
         <p class="text-base-content/70 text-sm leading-relaxed">
-          If no proxies are configured, tools connect directly — behaviour is identical to before.
+          If no proxies are configured, tools connect directly.
         </p>
       </section>
 

nix/module.nix

@@ -75,6 +75,7 @@ in {
         IKY_FRONT_DIR = "${cfg.package}/share/iky/frontend";
         IKY_SEARCH_TTL = cfg.searchTTL;
         IKY_CLEANUP_INTERVAL = cfg.cleanupInterval;
+        HOME = "%S/iky";
       };
 
       serviceConfig = {