Companion Post to the 2021 SANS Live Stream “Tips for Conducting OSINT Investigations in the EU with GDPR”

The links below are a companion to the live stream Nico Dekens (dutch_osintguy) and Micah Hoffman (webbreacher) conducted in July 2021. Links Official GDPR documents https://eur-lex.europa.eu/eli/reg/2016/679/2016-05-04 GDPR and OSINT related blogs https://keyfindings.blog/2019/06/11/how-gdpr-effects-osint/ https://osintcurio.us/2019/01/08/after-the-gdpr-researching-domain-name-registrations/ https://www.domaintools.com/resources/blog/post-gdpr-security-investigations-part-1 https://www.domaintools.com/resources/blog/post-gdpr-security-investigations-part-2 https://www.domaintools.com/resources/blog/post-gdpr-security-investigations-part-3 Research paper – The protection of privacy in civilian criminal investigations using OSINT (Open-Source Intelligence) https://amsterdamlawforum.org/articles/abstract/10.37974/ALF.353/ Article 8 European Convention on Human Rights https://fra.europa.eu/en/eu-charter/article/8-protection-personal-data Legal framework Law Enforcement https://eur-lex.europa.eu/eli/dir/2016/680/oj Continue reading Companion Post to the 2021 SANS Live Stream “Tips for Conducting OSINT Investigations in the EU with GDPR”

Companion Post to 2021 NCPTF Conference Talk

Website OSINT: Discovery and Exploration of Web Resources The links below are a companion to the talk Micah Hoffman gave in June 2021 at the NCPTF conference. The slides have not been and will not be posted. Researching the IP/Domain General/DNS sites: host.io, dnsdumpster.com WHOIS: whoxy.com, domainbigdata.com IP Location and Details: ip2location.com Infrastructure site: (requires free account signup/login) shodan.io References: https://osintcurio.us/2021/05/13/searching-with-shodan/ https://github.com/JavierOlmedo/shodan-filters Examine the Web … Continue reading Companion Post to 2021 NCPTF Conference Talk

Data Scraping and Visualizing using Instant Data Scraper, ViewDNS.info, and Maltego

Micah Hoffman (WebBreacher), The OSINT Curious Project President, shows how to use a combination of Google Chrome and Instant Data Scraper to extract HTML table data from the ViewDNS.info web site. Then, once that is saved in a CSV on the local system, Micah demonstrates how to import the CSV into Maltego’s Casefile product to visualize and analyze the OSINT data. Continue reading Data Scraping and Visualizing using Instant Data Scraper, ViewDNS.info, and Maltego

Special OSINT Curious Webcast at SANS OSINT Summit

We are thrilled to announce that we will be doing a live OSINT Curious Podcast/Webcast recording on 18 February 2020 around 1700hrs Eastern USA time. Since many of us people from The OSINT Curious Project will be at the SANS Institute OSINT Summit (https://www.sans.org/event/osint-summit-2020/summit-agenda), we thought that it would be an excellent way to recap and wrap up the day’s excellent OSINT talks. Up to … Continue reading Special OSINT Curious Webcast at SANS OSINT Summit

Introduction to OSINT Video

Micah was very lucky to meet and get to work with the talented Ritu Gill, (@OSINTTechniques). At the recent Trace Labs (@TraceLabs) and SANS (@SANSDefense) Missing Persons CTF in Washington DC, we both noticed that many people wanted to participate but had no idea how to get started. After a few discussions, we decided to make an Introduction to OSINT video. Continue reading Introduction to OSINT Video

Making Sense of OSINT Cell Tower Data for DFIR

For OSINT and digital forensic practitioners, we can grab cell phone tower information from the mobile devices we image and cross-reference those towers with the tower’s physical location. When we combine this data with the date and time of the device owner’s activities, we can better understand where the device (and the owner) were at given times. Continue reading Making Sense of OSINT Cell Tower Data for DFIR