Introduction A big intel gap I've noticed in the OSINT space has been Tinder and other dating apps. By intel gap, I mean there's information available but it's hard to access and difficult to verify. Tinder is probably the most popular and notorious of the dating apps. However, because of it's nature of being connected … Continue reading How to Find OSINT on Tinder →

Introduction There are a lot of Instagram OSINT tools out there. InstaLoader is one of my favorites. It's achieved this status by providing a massive amount of data while maintaining its user-friendliness. InstaLoader does the following: downloads public and private profiles, hashtags, user stories, feeds and saved media, downloads comments, geotags and captions of each post, automatically detects profile … Continue reading InstaLoader – an OSINT Tool for Scraping Instagram Metadata →

Introduction Skiptracer is an OSINT scraping framework that utizes basic python webscraping of PII paywall sites to compile information (passively) on a target. This is especially useful if you are operating on a very small budget. Skiptracer allows you to search by specific input including: Email Name Phone Screen Name License Plate Domain It's primarily … Continue reading SkipTracer – an OSINT Scraping Framework →

Introduction LinkedIn2Username is an OSINT tool that generates username lists from companies on LinkedIn. What's great about LinkedIn2Username is it's easy to setup and doesn't require an API key. You need only supply your LinkedIn username and password to operate it. One disclaimer before we get started is this tool will likely not deliver quality … Continue reading LinkedIn2Username – an OSINT Tool for Red Teams →

Introduction Twint is an advanced Twitter scraping tool written in Python that allows for scraping Tweets from Twitter profiles without using Twitter's API.  That being said, it does violate Twitter's TOS so use of this tool should be used with caution.  I recommend research purposes only.  Twint solves one big problem with Twitter: the API … Continue reading Twint – an OSINT Tool for Collection on Twitter at Scale →

Introduction h8mail is a powerful, user-friendly OSINT tool that allows you to hunt for passwords through different breach and reconnaissance services. It's open source and written in Python with one of the most robust README files I've ever seen. This tool is loaded with features including: 🔎 Email pattern matching (reg exp), useful for reading from … Continue reading h8mail – an OSINT Tool for Finding Passwords in Data Breaches →

Introduction PaGoDo (Passive Google Dork) is an OSINT tool that lets you automate Google hacking (dorking) by scraping Google Search with a predefined list of vulnerabilities and useful information. According to the developer, the goal of this project was to develop a passive Google Dork script to collect potentially vulnerable web pages and applications on the … Continue reading PaGoDo – an OSINT Tool that Automates Google Dorks →

Introduction Facial recognition has been buzz word lately. It's been used by technology companies to improve their products, law enforcement to identify criminals, NGOs to identify missing persons, and more.  It's also been used for nefarious reasons, leading to a general negative sentiment in the public eye. In the United States, cities are limiting the … Continue reading Automate OSINT Using Face Recognition and Instagram →

Introduction The dark web is being used more and more for illicit activity by nefarious actors.  It's becoming easier to access as knowledge of tor becomes more mainstream and cryptocurrencies provide a means to monetize it.  Also, just like the clearnet, it only gets larger with time. Encrypted messaging apps allow for people to exchange … Continue reading OSINT Tools for the Dark Web →