Using OSINT to help build the OSINT community on Twitter

Introduction One of my main missions is to help create a bridge between the 'old school' OSINT community and the infosec recon community.  OSINT has started to gain traction in the infosec community, but there's still a bit of a communication gap.  Private investigators and intelligence analysts aren't exactly communicating with penetration testers and DFIR … Continue reading Using OSINT to help build the OSINT community on Twitter

Using OSINT to Find Protest Events and Activist Groups on Facebook

Introduction Last week on the OSINT podcast  I was asked a question that I don't believe I answered to the best of my ability.  Partly because audio presents certain challenges when describing a visual process, and partly because I don't think I fully contemplated the extent of the question or how in detail I should … Continue reading Using OSINT to Find Protest Events and Activist Groups on Facebook

Creating an Effective Sock Puppet for OSINT Investigations – Introduction

Introduction and Philosophy In recent light of the epic failure by Surefire Intelligence to frame Robert Mueller for sexual assault allegations, I feel it's important to discuss and unpack how to make a good sock puppet for OSINT operations.  If you aren't familiar, just google Jacob Wohl or Surefire Intelligence and you will likely be … Continue reading Creating an Effective Sock Puppet for OSINT Investigations – Introduction

Chasing an Online Scam Through the Blockchain – an OSINT Investigation

This is my first blockchain investigation and also my first original OSINT investigation.  I've been inspired to do this through reading others in the space and I'm sure their work will be more thorough and done with more precision than mine.  However, using new techniques I've explored, such as finding unlisted Pastebin pages, I've found … Continue reading Chasing an Online Scam Through the Blockchain – an OSINT Investigation

How to Collect OSINT from Unlisted Pastes on Pastebin

Sometimes the best information is the hardest to find.  We are quick to search Google and social media, finding a quick solution for our OSINT requirements.  We may also run background checks or enter the information we do have into other databases trying to find more.  But sometimes the information we are looking for isn't indexed, or … Continue reading How to Collect OSINT from Unlisted Pastes on Pastebin

Investigating the Blockchain using OSINT

OSINT investigations are starting to get interesting.  I love to see how many different applications OSINT has in the realm of investigations.  I've recently read all the articles posted by Benjamin Strick on Medium.  He uses OSINT to investigate people, groups, or events by tracking them through the blockchain.  Bitcoin is the most popular cryptocurrency … Continue reading Investigating the Blockchain using OSINT

Advanced OSINT Tools That Aren’t That Complicated

Many of those conducting OSINT use very basic methods to extract information.  Usually, they are limited to tools that have a graphic user interface (GUI).  Many tools, like TweetBeaver, who use a graphic user interface are very powerful.  This post isn't to discredit any tools that use a GUI, its intent is to introduce users … Continue reading Advanced OSINT Tools That Aren’t That Complicated