Find Company Data With A Programmable Search Engine

Being able to find sensitive information about an organisation is a key skill for OSINT practitioners. Whether you’re doing recon for a phishing engagement or you’re an investigative journalist looking for documents, being able to filter out the noise and find useful information relating to companies and institutions is essential. Using Google dorks is a useful technique for filtering searches. For example, a dork to … Continue reading Find Company Data With A Programmable Search Engine

nixintel2022-09-122023-03-18

Uncategorized

Companion Post to 2021 NCPTF Conference Talk

Website OSINT: Discovery and Exploration of Web Resources The links below are a companion to the talk Micah Hoffman gave in June 2021 at the NCPTF conference. The slides have not been and will not be posted. Researching the IP/Domain General/DNS sites: host.io, dnsdumpster.com WHOIS: whoxy.com, domainbigdata.com IP Location and Details: ip2location.com Infrastructure site: (requires free account signup/login) shodan.io References: https://osintcurio.us/2021/05/13/searching-with-shodan/ https://github.com/JavierOlmedo/shodan-filters Examine the Web … Continue reading Companion Post to 2021 NCPTF Conference Talk

WebBreacher2021-06-22

Uncategorized

Introduction to OSINT Video

Micah was very lucky to meet and get to work with the talented Ritu Gill, (@OSINTTechniques). At the recent Trace Labs (@TraceLabs) and SANS (@SANSDefense) Missing Persons CTF in Washington DC, we both noticed that many people wanted to participate but had no idea how to get started. After a few discussions, we decided to make an Introduction to OSINT video. Continue reading Introduction to OSINT Video

WebBreacher2020-01-162020-01-14

images

Searching Instagram – part 2

Another amazing blog post about searching and performing open source intelligence on the Instagram platform. Continue reading Searching Instagram – part 2

technisette2019-10-012019-10-13

Uncategorized

The new Facebook Graph Search – part 2

This blogpost is inspired by @djnemec‘s Github gist, which you can find here https://gist.github.com/nemec/2ba8afa589032f20e2d6509512381114. The next step In this part, we’re talking about combining searches. Just like in part 1, we will be translating JSON to Base64. And of course we’ll take you through it step by step 🙂 What to combine? Well, you can only combine when you stay in the same category. In … Continue reading The new Facebook Graph Search – part 2

technisette2019-08-222021-01-06

Uncategorized

The new Facebook Graph Search – part 1

Performing OSINT advanced queries in Facebook after the Facebook Graph Search changes. Continue reading The new Facebook Graph Search – part 1

technisette2019-08-222021-01-06

Uncategorized

Making Sense of OSINT Cell Tower Data for DFIR

For OSINT and digital forensic practitioners, we can grab cell phone tower information from the mobile devices we image and cross-reference those towers with the tower’s physical location. When we combine this data with the date and time of the device owner’s activities, we can better understand where the device (and the owner) were at given times. Continue reading Making Sense of OSINT Cell Tower Data for DFIR

WebBreacher2019-08-192019-09-13

Uncategorized

JSON and Common Web Encodings Demystified

Using CyberChef web site to convert JSON, URL encoding, percent encoding, Base64 encoding, and UNIX time into other formats for OSINT. Continue reading JSON and Common Web Encodings Demystified

WebBreacher2019-08-152019-08-15

We will always be OSINTCurio.us

We helped the OSINT community stay curious

Tag: osint tools

Find Company Data With A Programmable Search Engine

Companion Post to 2021 NCPTF Conference Talk

Introduction to OSINT Video

Making Sense of OSINT Cell Tower Data for DFIR

JSON and Common Web Encodings Demystified