Open Source Intelligence (OSINT)

What is OSINT?

• Definition: Gathering information from publicly available sources.

• Purpose: Risk assessment, vulnerability assessment, data gathering for attacks.

• Sources: Social Media, Forums, Websites, Databases, Public Records, and more.

Types of OSINT

1. Personal OSINT: Gathering information about individuals.

2. Organizational OSINT: Information related to organizations or businesses.

3. Technical OSINT: Information about networks, domains, and technical infrastructure.

4. Geospatial OSINT: Information related to physical locations and events.

Tools for Collecting OSINT

1. Search Engines: Google, Bing, and specialized search engines.

2. Social Media Monitoring Tools: Tools that scrape social media platforms for specific information.

3. Public Records Databases: Online databases of public records.

4. Domain and IP Tools: Tools like WHOIS and DNS lookup.

Hands-on Exercise

• Perform a OSINT gathering operation on YOURSELF, using various tools and methods to collect information from public sources.

• Document your findings and analyze the potential security implications.

Ethical Considerations

• Be aware of legal boundaries and respect privacy.

• Use the information responsibly and ethically.

• Understand the impact and potential harm of OSINT operations.

Additional Resources

• Books:

  • “Open Source Intelligence Techniques: Resources for Searching and Analyzing Online Information” by Michael Bazzell.

• Websites:

  • OSINT Framework

  • Bellingcat's Online Investigation Toolkit