Project Athena
  • Welcome
  • Module 00 - Mindset
    • Introduction
    • Lectures
      • Introduction to the Offensive Security Mindset
      • Curiosity, Creativity, Persistence
      • Maintaining a Healthy Mindset
  • Module 01 - Ethics and Legal
    • Introduction
    • Lectures
      • Hacker Ethics
      • Legal Framework
      • Legal Framework in Germany
  • Module 02 - Reconnaissance
    • Introduction
    • Lectures
      • Introduction to Reconnaissance
      • Information Gathering
      • Open Source Intelligence (OSINT)
      • Social Engineering
      • Search Engines for Reconnaissance
  • Module 03 - Penetration Testing
    • Introduction
  • Module 04 - Web Security
    • Introduction
    • Lectures
      • Introduction to Web
      • Security Features of the Browser
      • Client Side Vulnerabilities
      • Server Side Vulnerabilities
  • Module 05 - Hacking with Python
    • Introduction
  • Module 06 - Assembly
    • Introduction
  • Module 07 - Reverse Engineering
    • Introduction
  • Module 08 - Binary Exploitation
    • Introduction
  • Module 09 - Forensics
    • Introduction
  • Module 10 - Metasploit
    • Introduction
  • Module 11 - Linux and Server Security
    • Introduction
  • Module 12 - Windows and AD Security
    • Introduction
  • Module 13 - Blue Teaming
    • Introduction
    • Lectures
      • Overview
      • Firewalls
      • Intrusion Detection and Prevention Systems
      • Incident Response
      • Security Information and Event Management (SIEM)
  • Module 14 - Cryptography
    • Introduction
    • Lectures
      • What is Cryptography?
      • Symmetric Cryptography
      • Asymmetric Cryptography
      • Cryptographic Attacks
  • Module 15 - Password Cracking
    • Introduction
  • Module 16 - Hardware Hacking
    • Introduction
  • Module 17 - Cloud Security
    • Introduction
    • Lectures
      • Overview of Cloud Security
      • Comparison of Server Types: Cloud, Dedicated, and Shared Servers
      • User and Permission Management in Cloud Platforms
      • Containerization Overview:
      • Cloud Computing Security Concepts:
      • Secure DevOps in the Cloud
      • Exploring Key Certifications and Standards in On-Premises and Cloud Security
  • Module 18 - Mobile Security
    • Introduction
  • Module 19 - Wireless Security
    • Introduction
    • Lectures
      • The Wireless Network Architecture
      • WiFi Security Fundamentals
      • WiFi Authentication and Encryption Mechanisms
      • WiFi Attack Vectors
      • Wireless Penetration Testing Tools and Techniques
      • Best Practices for Securing Wireless Networks
  • Module 20 - RATs and Rootkits
    • Introduction
    • Lectures
      • Remote Access Trojans
      • What is a Rootkit?
  • Module 21 - AI in offensive Security
    • Introduction
  • Module 22 - Social Engineering
    • Introduction
    • Lectures
      • Introduction to Social Engineering
      • Types of Social Engineerings Attacks
      • Stages of a Social Engineering Attack
      • Psychological Principles behind Social Engineering
      • Tools and Techniques for Social Engineering
      • Prevention and Defense against Social Engineering Attacks
Powered by GitBook
On this page
  • What is OSINT?
  • Types of OSINT
  • Tools for Collecting OSINT
  • Hands-on Exercise
  • Ethical Considerations
  • Additional Resources
  1. Module 02 - Reconnaissance
  2. Lectures

Open Source Intelligence (OSINT)

What is OSINT?

  • Definition: Gathering information from publicly available sources.

  • Purpose: Risk assessment, vulnerability assessment, data gathering for attacks.

  • Sources: Social Media, Forums, Websites, Databases, Public Records, and more.

Types of OSINT

  1. Personal OSINT: Gathering information about individuals.

  2. Organizational OSINT: Information related to organizations or businesses.

  3. Technical OSINT: Information about networks, domains, and technical infrastructure.

  4. Geospatial OSINT: Information related to physical locations and events.

Tools for Collecting OSINT

  1. Search Engines: Google, Bing, and specialized search engines.

  2. Social Media Monitoring Tools: Tools that scrape social media platforms for specific information.

  3. Public Records Databases: Online databases of public records.

  4. Domain and IP Tools: Tools like WHOIS and DNS lookup.

Hands-on Exercise

  • Perform a OSINT gathering operation on YOURSELF, using various tools and methods to collect information from public sources.

  • Document your findings and analyze the potential security implications.

Ethical Considerations

  • Be aware of legal boundaries and respect privacy.

  • Use the information responsibly and ethically.

  • Understand the impact and potential harm of OSINT operations.

Additional Resources

  • Books:

    • “Open Source Intelligence Techniques: Resources for Searching and Analyzing Online Information” by Michael Bazzell.

  • Websites:

PreviousInformation GatheringNextSocial Engineering

Last updated 1 year ago

OSINT Framework
Bellingcat's Online Investigation Toolkit