Guest blog by PaulSin95038741 Below follows an OSINT approach on how to search/identify clothes that you see online. Spoiler alert. This presentation will be different in that we will not find a clear-cut solution as opposed to many OSINT-articles presented by the OSINT Curious team. Never the less, in my opinion, a very important one. Background I’d say that most of us OSINT-people are very … Continue reading Dressed NOT for Success
The links below are a companion to the live stream Nico Dekens (dutch_osintguy) and Micah Hoffman (webbreacher) conducted in July 2021. Links Official GDPR documents https://eur-lex.europa.eu/eli/reg/2016/679/2016-05-04 GDPR and OSINT related blogs https://keyfindings.blog/2019/06/11/how-gdpr-effects-osint/ https://osintcurio.us/2019/01/08/after-the-gdpr-researching-domain-name-registrations/ https://www.domaintools.com/resources/blog/post-gdpr-security-investigations-part-1 https://www.domaintools.com/resources/blog/post-gdpr-security-investigations-part-2 https://www.domaintools.com/resources/blog/post-gdpr-security-investigations-part-3 Research paper – The protection of privacy in civilian criminal investigations using OSINT (Open-Source Intelligence) https://amsterdamlawforum.org/articles/abstract/10.37974/ALF.353/ Article 8 European Convention on Human Rights https://fra.europa.eu/en/eu-charter/article/8-protection-personal-data Legal framework Law Enforcement https://eur-lex.europa.eu/eli/dir/2016/680/oj Continue reading Companion Post to the 2021 SANS Live Stream “Tips for Conducting OSINT Investigations in the EU with GDPR”
This is a guest blog written by Bosintblanc of the NCPTF. Open-source intelligence is a fascinating discipline with many intricate moving pieces. I have strived to learn all that I can. As I have done that I realized that part of what makes OSINT difficult to teach and learn is that it is made up of many individually complex topics which one could devote an … Continue reading 7 Foundations of OSINT
When it comes to IoT or other online devices, there are quite a lot of options to investigate them. It is possible that you are working as a penetration tester that needs some information on a client, but also an investigator that is looking into online activity can use some of these skills. Why might it be a good idea to look at an IP … Continue reading Searching with Shodan
Guest blog by BOsintBlanc. Discord for the uninitiated is a group chat service in the vein of Telegram, Whatsapp, or IRC (if you’re that old ;-P). Channels are set up as ‘servers’ usually based around a shared topic of interest. As of 2020 Discord had over 300 million registered users (source) and that number does not appear to be dwindling any time soon. What does … Continue reading Investigating Discord: A Primer
After an exciting week where the whole world was tracking the EVER GIVEN, the large container ship stuck in the Suez Canal, we put together a live stream to discuss Maritime OSINT! In this stream, we talked about various ways to track the movements of vessels large and small. We also talked about ways to use social media, job boards, real-estate, and shipspotting sites to … Continue reading Maritime Live Stream Notes 4/1/21
OSINT is about focusing on possibilities. But sometimes we get stuck or things we planned simply didn’t work as planned. We all know when things in our daily life don’t work we reset it. If the tv doesn’t work we reset it by turning it off and on. Your smartphone glitches or apps hang and we reset the apps or the entire device. We can … Continue reading Using RESET for better OSINT
This Ten Minute Tip is the first in a series looking at how we can geolocate images as part of OSINT work. Being able to examine a picture and work out when and where it was taken is an increasingly important skill to have. You could be a journalist trying to document human rights abuses, or helping law enforcement trace victims of child abuse. Whatever … Continue reading Ten Minute Tip: Image Geolocation – Part 1
This blogpost is made after a 10minute video I made for the virtual conference OSMOSIS 2020 and was inspired @hatless1der blogpost. Probably every OSINT investigator has encountered this problem; you’ve found your targets Facebook profile but it is completely private. So what can you do? Clicking the buttons One of the ways to start is by ‘clicking the buttons’. On a Facebook-profile there are quite … Continue reading What to do when a Facebook profile is private?
Guest blog by Sarah Womer Have you ever looked at a residential property in the USA and wondered who owns it versus who lives there? Zillow provides a helpful user interface to find that out. In addition, the tool can sometimes provide information on whether the property is up to date on its property taxes, what the owner’s current mailing address is, where they may … Continue reading Won’t You Be My Neighbor: Zillow + State/County Property Assessor Data
