Viewing Social Media Profiles Without Being Logged on

There can be a number of reasons why you want to view a profile on a social media platform without being logged on. Maybe your current work role prohibits you from using sock puppets (research profiles) during your investigation, or maybe you’re afraid that there might be a risk of compromise. Whatever the reason may be, we’ve got some tips lined up for you to … Continue reading Viewing Social Media Profiles Without Being Logged on

alphabet blur books close up

Staying Up to Date with OSINT Content

Open Source Intelligence is an ever-evolving field of work so it’s important to keep up-to-date with new techniques and tools available to us. Whether you’re new to OSINT or you have been engaged in the topic for a while, it’s natural to feel overwhelmed by the amount of OSINT resources shared online.  It’s important to note that while OSINT isn’t about collecting tools, and resources … Continue reading Staying Up to Date with OSINT Content

access app application apps

Facebook Tips #2

It happens very often that you open a Facebook profile and there is not a lot of information shown. Nothing on the About section, a couple of likes and maybe 3 or 4 photos and posts or even none. Since Facebook Graph stopped working it has become more difficult to extract viable information from semi-closed Facebook profiles but here we list you 5 basic tips … Continue reading Facebook Tips #2

close up photography of magnifying glass

Dressed NOT for Success

Guest blog by PaulSin95038741 Below follows an OSINT approach on how to search/identify clothes that you see online. Spoiler alert. This presentation will be different in that we will not find a clear-cut solution as opposed to many OSINT-articles presented by the OSINT Curious team. Never the less, in my opinion, a very important one. Background I’d say that most of us OSINT-people are very … Continue reading Dressed NOT for Success

Companion Post to the 2021 SANS Live Stream “Tips for Conducting OSINT Investigations in the EU with GDPR”

The links below are a companion to the live stream Nico Dekens (dutch_osintguy) and Micah Hoffman (webbreacher) conducted in July 2021. Links Official GDPR documents https://eur-lex.europa.eu/eli/reg/2016/679/2016-05-04 GDPR and OSINT related blogs https://keyfindings.blog/2019/06/11/how-gdpr-effects-osint/ https://osintcurio.us/2019/01/08/after-the-gdpr-researching-domain-name-registrations/ https://www.domaintools.com/resources/blog/post-gdpr-security-investigations-part-1 https://www.domaintools.com/resources/blog/post-gdpr-security-investigations-part-2 https://www.domaintools.com/resources/blog/post-gdpr-security-investigations-part-3 Research paper – The protection of privacy in civilian criminal investigations using OSINT (Open-Source Intelligence) https://amsterdamlawforum.org/articles/abstract/10.37974/ALF.353/ Article 8 European Convention on Human Rights https://fra.europa.eu/en/eu-charter/article/8-protection-personal-data Legal framework Law Enforcement https://eur-lex.europa.eu/eli/dir/2016/680/oj Continue reading Companion Post to the 2021 SANS Live Stream “Tips for Conducting OSINT Investigations in the EU with GDPR”

clear light bulb

7 Foundations of OSINT

This is a guest blog written by Bosintblanc of the NCPTF. Open-source intelligence is a fascinating discipline with many intricate moving pieces. I have strived to learn all that I can. As I have done that I realized that part of what makes OSINT difficult to teach and learn is that it is made up of many individually complex topics which one could devote an … Continue reading 7 Foundations of OSINT

Companion Post to 2021 NCPTF Conference Talk

Website OSINT: Discovery and Exploration of Web Resources The links below are a companion to the talk Micah Hoffman gave in June 2021 at the NCPTF conference. The slides have not been and will not be posted. Researching the IP/Domain General/DNS sites: host.io, dnsdumpster.com WHOIS: whoxy.com, domainbigdata.com IP Location and Details: ip2location.com Infrastructure site: (requires free account signup/login) shodan.io References: https://osintcurio.us/2021/05/13/searching-with-shodan/ https://github.com/JavierOlmedo/shodan-filters Examine the Web … Continue reading Companion Post to 2021 NCPTF Conference Talk

Getting your sock puppet connections on LinkedIn

Guest blog by Michael Paulie. Throughout investigations, working ongoing missing persons cases with organizations like Trace Labs, or having fun with CTFs, LinkedIn can be a valuable source of information on people of interest.  Information including email addresses, phone numbers, work locations and friends, family, and colleagues are just some of the data that can be obtained to pivot off of.  However, unless you have … Continue reading Getting your sock puppet connections on LinkedIn

Discord OSINT

Investigating Discord: A Primer

Guest blog by BOsintBlanc. Discord for the uninitiated is a group chat service in the vein of Telegram, Whatsapp, or IRC (if you’re that old ;-P). Channels are set up as ‘servers’ usually based around a shared topic of interest. As of 2020 Discord had over 300 million registered users (source) and that number does not appear to be dwindling any time soon. What does … Continue reading Investigating Discord: A Primer