@indiciaosint/sdk
v1.2.9
Published
<h3> <img src="https://indicia.app/branding/wordmark.png" alt="indicia wordmark" width="300"> <br /> </h3>
Readme
@indiciaosint/sdk
Developer-friendly & type-safe Typescript SDK for the Indicia API.
Summary
Indicia API: Programmatically access Indicia's features via API keys.
Get started by creating an API key in the Indicia Dashboard.
A JavaScript SDK is also available at @indiciaosint/sdk
Table of Contents
SDK Installation
The SDK can be installed with either npm, pnpm, bun or yarn package managers.
NPM
npm add @indiciaosint/sdkPNPM
pnpm add @indiciaosint/sdkBun
bun add @indiciaosint/sdkYarn
yarn add @indiciaosint/sdk[!NOTE] This package is published as an ES Module (ESM) only. For applications using CommonJS, use
await import("@indiciaosint/sdk")to import and use this package.
Requirements
For supported JavaScript runtimes, please consult RUNTIMES.md.
SDK Example Usage
Example
import { Indicia } from "@indiciaosint/sdk";
const indicia = new Indicia({
apiKey: process.env["INDICIA_API_KEY"] ?? "",
});
async function run() {
const result = await indicia.users.getInfo();
console.log(result);
}
run();
Authentication
Per-Client Security Schemes
This SDK supports the following security scheme globally:
| Name | Type | Scheme | Environment Variable |
| -------- | ------ | ------- | -------------------- |
| apiKey | apiKey | API key | INDICIA_API_KEY |
To authenticate with the API the apiKey parameter must be set when initializing the SDK client instance. For example:
import { Indicia } from "@indiciaosint/sdk";
const indicia = new Indicia({
apiKey: process.env["INDICIA_API_KEY"] ?? "",
});
async function run() {
const result = await indicia.users.getInfo();
console.log(result);
}
run();
Available Resources and Operations
Activity
- listActivities - Get a list of recent activities.
- getActivity - Get a specific activity by its ID.
- deleteActivity - Delete a specific activity by its ID.
Infrastructure
- searchIpInfo - IP Info
- searchDns - DNS Reconnaissance
- searchShodan - Shodan Search
- virusTotalContent - VirusTotal Content Search
- searchWhois - Whois
- scanPorts - Port Scan
- searchCertificates - Certificate Lookup
Intelligence
- searchAddress - Address Search (US Only)
- searchEmail - Email Search (US Only)
- geolocateMedia - Geolocate Media
- searchGmail - Gmail Search
- searchPerson - Person Search (US Only)
- searchPhone - Phone Search (Individual data US only)
- searchSeon - SEON Lookup
- virusTotalIntelligence - VirusTotal File Intelligence
- searchWebDatabases - Web Databases
- searchFace - Reverse Face Search
- searchHudsonRock - Hudson Rock Search
Organizations
- listOrganizations - List organizations the authenticated user belongs to.
- getOrganization - Get details for a specific organization you are a member of.
- listOrganizationMembers - List members of an organization you belong to.
- getOrganizationAuditLog - Get the audit log for an organization. Requires owner or admin role.
- listOrganizationCases - List cases shared with an organization (filtered by your visibility settings).
- sendOrganizationCredits - Send credits from your balance to one or more organization members. Requires owner or admin role.
Pricing
- getPricing - Gives credit pricing for all Indicia services
Socials
- searchDiscord - Discord Search
- searchGithub - GitHub Search
- searchRoblox - Roblox Search
- searchTiktok - TikTok Search
- searchUsername - Username Search V2
Tools
- searchAppStore - App Store Search
- analyzeCryptoAddress - Crypto Address Analyzer
- lookupDiscordAlt - Discord Alt Lookup
- bypassDoubleCounter - Bypass Double Counter URL
- downloadIntelxFile - Download IntelX file
- downloadVirusTotalFile - Download VirusTotal file
Users
- getInfo - Get information about the user, also healthcheck endpoint.
Standalone functions
All the methods listed above are available as standalone functions. These functions are ideal for use in applications running in the browser, serverless runtimes or other environments where application bundle size is a primary concern. When using a bundler to build your application, all unused functionality will be either excluded from the final bundle or tree-shaken away.
To read more about standalone functions, check FUNCTIONS.md.
activityDeleteActivity- Delete a specific activity by its ID.activityGetActivity- Get a specific activity by its ID.activityListActivities- Get a list of recent activities.infrastructureScanPorts- Port ScaninfrastructureSearchCertificates- Certificate LookupinfrastructureSearchDns- DNS ReconnaissanceinfrastructureSearchIpInfo- IP InfoinfrastructureSearchShodan- Shodan SearchinfrastructureSearchWhois- WhoisinfrastructureVirusTotalContent- VirusTotal Content SearchintelligenceGeolocateMedia- Geolocate MediaintelligenceSearchAddress- Address Search (US Only)intelligenceSearchEmail- Email Search (US Only)intelligenceSearchFace- Reverse Face SearchintelligenceSearchGmail- Gmail SearchintelligenceSearchHudsonRock- Hudson Rock SearchintelligenceSearchPerson- Person Search (US Only)intelligenceSearchPhone- Phone Search (Individual data US only)intelligenceSearchSeon- SEON LookupintelligenceSearchWebDatabases- Web DatabasesintelligenceVirusTotalIntelligence- VirusTotal File IntelligenceorganizationsGetOrganization- Get details for a specific organization you are a member of.organizationsGetOrganizationAuditLog- Get the audit log for an organization. Requires owner or admin role.organizationsListOrganizationCases- List cases shared with an organization (filtered by your visibility settings).organizationsListOrganizationMembers- List members of an organization you belong to.organizationsListOrganizations- List organizations the authenticated user belongs to.organizationsSendOrganizationCredits- Send credits from your balance to one or more organization members. Requires owner or admin role.pricingGetPricing- Gives credit pricing for all Indicia servicessocialsSearchDiscord- Discord SearchsocialsSearchGithub- GitHub SearchsocialsSearchRoblox- Roblox SearchsocialsSearchTiktok- TikTok SearchsocialsSearchUsername- Username Search V2toolsAnalyzeCryptoAddress- Crypto Address AnalyzertoolsBypassDoubleCounter- Bypass Double Counter URLtoolsDownloadIntelxFile- Download IntelX filetoolsDownloadVirusTotalFile- Download VirusTotal filetoolsLookupDiscordAlt- Discord Alt LookuptoolsSearchAppStore- App Store SearchusersGetInfo- Get information about the user, also healthcheck endpoint.
Server-sent event streaming
Server-sent events are used to stream content from certain
operations. These operations will expose the stream as an async iterable that
can be consumed using a for await...of loop. The loop will
terminate when the server no longer has any events to send and closes the
underlying connection.
import { Indicia } from "@indiciaosint/sdk";
import { openAsBlob } from "node:fs";
const indicia = new Indicia({
apiKey: process.env["INDICIA_API_KEY"] ?? "",
});
async function run() {
const result = await indicia.intelligence.geolocateMedia({
media: await openAsBlob("example.file"),
});
for await (const event of result) {
console.log(event);
}
}
run();
File uploads
Certain SDK methods accept files as part of a multi-part request. It is possible and typically recommended to upload files as a stream rather than reading the entire contents into memory. This avoids excessive memory consumption and potentially crashing with out-of-memory errors when working with very large files. The following example demonstrates how to attach a file stream to a request.
[!TIP]
Depending on your JavaScript runtime, there are convenient utilities that return a handle to a file without reading the entire contents into memory:
- Node.js v20+: Since v20, Node.js comes with a native
openAsBlobfunction innode:fs.- Bun: The native
Bun.filefunction produces a file handle that can be used for streaming file uploads.- Browsers: All supported browsers return an instance to a
Filewhen reading the value from an<input type="file">element.- Node.js v18: A file stream can be created using the
fileFromhelper fromfetch-blob/from.js.
import { Indicia } from "@indiciaosint/sdk";
import { openAsBlob } from "node:fs";
const indicia = new Indicia({
apiKey: process.env["INDICIA_API_KEY"] ?? "",
});
async function run() {
const result = await indicia.intelligence.geolocateMedia({
media: await openAsBlob("example.file"),
});
for await (const event of result) {
console.log(event);
}
}
run();
Retries
Some of the endpoints in this SDK support retries. If you use the SDK without any configuration, it will fall back to the default retry strategy provided by the API. However, the default retry strategy can be overridden on a per-operation basis, or across the entire SDK.
To change the default retry strategy for a single API call, simply provide a retryConfig object to the call:
import { Indicia } from "@indiciaosint/sdk";
const indicia = new Indicia({
apiKey: process.env["INDICIA_API_KEY"] ?? "",
});
async function run() {
const result = await indicia.users.getInfo({
retries: {
strategy: "backoff",
backoff: {
initialInterval: 1,
maxInterval: 50,
exponent: 1.1,
maxElapsedTime: 100,
},
retryConnectionErrors: false,
},
});
console.log(result);
}
run();
If you'd like to override the default retry strategy for all operations that support retries, you can provide a retryConfig at SDK initialization:
import { Indicia } from "@indiciaosint/sdk";
const indicia = new Indicia({
retryConfig: {
strategy: "backoff",
backoff: {
initialInterval: 1,
maxInterval: 50,
exponent: 1.1,
maxElapsedTime: 100,
},
retryConnectionErrors: false,
},
apiKey: process.env["INDICIA_API_KEY"] ?? "",
});
async function run() {
const result = await indicia.users.getInfo();
console.log(result);
}
run();
Error Handling
IndiciaError is the base class for all HTTP error responses. It has the following properties:
| Property | Type | Description |
| ------------------- | ---------- | --------------------------------------------------------------------------------------- |
| error.message | string | Error message |
| error.statusCode | number | HTTP response status code eg 404 |
| error.headers | Headers | HTTP response headers |
| error.body | string | HTTP body. Can be empty string if no body is returned. |
| error.rawResponse | Response | Raw HTTP response |
| error.data$ | | Optional. Some errors may contain structured data. See Error Classes. |
Example
import { Indicia } from "@indiciaosint/sdk";
import * as errors from "@indiciaosint/sdk/models/errors";
const indicia = new Indicia({
apiKey: process.env["INDICIA_API_KEY"] ?? "",
});
async function run() {
try {
const result = await indicia.intelligence.searchAddress({
address1: "<value>",
city: "South Osbaldo",
state: "Massachusetts",
zip: "35947-4056",
});
console.log(result);
} catch (error) {
// The base class for HTTP error responses
if (error instanceof errors.IndiciaError) {
console.log(error.message);
console.log(error.statusCode);
console.log(error.body);
console.log(error.headers);
// Depending on the method different errors may be thrown
if (error instanceof errors.FailedResponseError) {
console.log(error.data$.success); // boolean
console.log(error.data$.error); // string
}
}
}
}
run();
Error Classes
Primary error:
IndiciaError: The base class for HTTP error responses.
Network errors:
ConnectionError: HTTP client was unable to make a request to a server.RequestTimeoutError: HTTP request timed out due to an AbortSignal signal.RequestAbortedError: HTTP request was aborted by the client.InvalidRequestError: Any input used to create a request is invalid.UnexpectedClientError: Unrecognised or unexpected error.
Inherit from IndiciaError:
FailedResponseError: A failed API response. Applicable to 29 of 40 methods.*ResponseValidationError: Type mismatch between the data returned from the server and the structure expected by the SDK. Seeerror.rawValuefor the raw value anderror.pretty()for a nicely formatted multi-line string.
* Check the method documentation to see if the error is applicable.
Server Selection
Override Server URL Per-Client
The default server can be overridden globally by passing a URL to the serverURL: string optional parameter when initializing the SDK client instance. For example:
import { Indicia } from "@indiciaosint/sdk";
const indicia = new Indicia({
serverURL: "https://api.indicia.app",
apiKey: process.env["INDICIA_API_KEY"] ?? "",
});
async function run() {
const result = await indicia.users.getInfo();
console.log(result);
}
run();
Custom HTTP Client
The TypeScript SDK makes API calls using an HTTPClient that wraps the native
Fetch API. This
client is a thin wrapper around fetch and provides the ability to attach hooks
around the request lifecycle that can be used to modify the request or handle
errors and response.
The HTTPClient constructor takes an optional fetcher argument that can be
used to integrate a third-party HTTP client or when writing tests to mock out
the HTTP client and feed in fixtures.
The following example shows how to:
- route requests through a proxy server using undici's ProxyAgent
- use the
"beforeRequest"hook to add a custom header and a timeout to requests - use the
"requestError"hook to log errors
import { Indicia } from "@indiciaosint/sdk";
import { ProxyAgent } from "undici";
import { HTTPClient } from "@indiciaosint/sdk/lib/http";
const dispatcher = new ProxyAgent("http://proxy.example.com:8080");
const httpClient = new HTTPClient({
// 'fetcher' takes a function that has the same signature as native 'fetch'.
fetcher: (input, init) =>
// 'dispatcher' is specific to undici and not part of the standard Fetch API.
fetch(input, { ...init, dispatcher } as RequestInit),
});
httpClient.addHook("beforeRequest", (request) => {
const nextRequest = new Request(request, {
signal: request.signal || AbortSignal.timeout(5000)
});
nextRequest.headers.set("x-custom-header", "custom value");
return nextRequest;
});
httpClient.addHook("requestError", (error, request) => {
console.group("Request Error");
console.log("Reason:", `${error}`);
console.log("Endpoint:", `${request.method} ${request.url}`);
console.groupEnd();
});
const sdk = new Indicia({ httpClient: httpClient });Debugging
You can setup your SDK to emit debug logs for SDK requests and responses.
You can pass a logger that matches console's interface as an SDK option.
[!WARNING] Beware that debug logging will reveal secrets, like API tokens in headers, in log messages printed to a console or files. It's recommended to use this feature only during local development and not in production.
import { Indicia } from "@indiciaosint/sdk";
const sdk = new Indicia({ debugLogger: console });You can also enable a default debug logger by setting an environment variable INDICIA_DEBUG to true.
Development
Maturity
This SDK is in beta, and there may be breaking changes between versions without a major version update. Therefore, we recommend pinning usage to a specific package version. This way, you can install the same version each time without breaking changes unless you are intentionally looking for the latest version.
Contributions
While we value open-source contributions to this SDK, this library is generated programmatically. Any manual changes added to internal files will be overwritten on the next generation. We look forward to hearing your feedback. Feel free to open a PR or an issue with a proof of concept and we'll do our best to include it in a future release.
