Skip to content

Files

Latest commit

belouvebelouve
Update collected.md
Nov 4, 2022
54507fa · Nov 4, 2022

History

History
81 lines (58 loc) · 7.13 KB

collected.md

File metadata and controls

81 lines (58 loc) · 7.13 KB

Collected resources over the years

Currently under construction, so may be a mash of stuff

Disclaimer: I did not write most of these (maybe some pro tips), this is a collection of others' resources

These are also collections of maybe lesser known resources, so if there is a ZOMG, WHAI DID YOO FORGET THIS TOOL ?!?, it might be that it is a commonly known tool, but I'll get around to adding anything suggested. It may also be in this Resource Dump I made over here

Collections

  1. Found a giant collection here : META OSINT
  2. Another collection of GitHub Projects, might pull some featured ones out to specifically call out here: FBI Tools
  3. Another giant collection: AirTable of OSINT Tools

GitHub Projects

  1. Awesome OSINT Mentioned numerous times over the years, so check that out.
  2. Sinwindie OSINT
  3. s0cm0nkeys OSINT/Passive Recon
  4. Cypher387 's Collection of Repositories This has Geolocation, Tools, Hastag Searches, Google Dorks...

Blogs and Guides

  1. A Pentester's Guide - Part 1 (OSINT - Passive Recon and Discovery of Assets)
  2. 6 Best Facial Recognition Search Engines to Search Faces Online
  3. How to Find an OSINT Job
  4. Offensive OSINT - Human trafficking investigation part 1
  5. How to GMail OSINT like a Boss
  6. Berkely Protocol for Digital OSINT Investigations
  7. Skiptracer Certification
  8. Investigating Google Doc Owners
  9. Criminal intelligence: manual for analysts (see chapter 6: link analysis)
  10. Regex and Google dorking: Supercharging Your Google Hacking
  11. 5 Tips for when stuck in TraceLabs Search Parties I like the GoFundMe angle listed here.

Cheat Sheets

  1. OSINT Cheat Sheets - derechodelared

Tools

  1. Nimbus for taking screenshots Why type when you can send videos or screenshots
  2. OSINT browser extension
  3. Bellingcat's Online Investigation Toolkit
  4. VPN Hub For lulz
  5. Maigret - Collect a dossier on a person by username from thousands of sites
  6. Google Sheets query tool
  7. Monitor geotagged social media from multiple platforms in real time Pushpin-web

Challenges

  1. Cyber Detective CTF - Wales
  2. Cyber Investigator CTF - Wales
  3. TryHackMe OSINT Writeup Potential challenge spoilers!

ProTips

Sock Puppets

  • Create an IFTTT trigger for your fictitious social media files. Have your profile post something every time it is added to an RSS feed. News articles, whatever you want. The constant stream of activity will help prevent your account from becoming idle, and thus suspended for being suspicious.
  • Please only use these accounts for your own protection while gathering OSINT and do not use them for malicious purposes.
  • The trick with LinkedIn is to add Open Networker at LION™ or any variation of LION. Short for Linked In Open Networker to your puppets. Should net you 10 - 100 invites a month.
  • Learn about the different tools in the TraceLab Virtual Machine
  • Learn about Google dorking or Google search operators (through YouTube). Google has so much free information that just mastering Google can be very powerful

General

  • When searching for financial connections to follow the money & connecting companies + agents, use open corporates + LiltleSIS. OpenCorporates is “the largest, open database of companies in the world”.

    LittleSis is “a free database detailing the connections between powerful people and organizations”.

    When used together, one can use OC to gather an organization’s financial info, all agent’s info, and all company/org connections then bring that info into LittleSis to create visualizations of WHO is connected to WHO, following the money. LS offers additional features to focus on the relationships between people and organizations with Oligrapher Map.

    When needed financial information on a privately owned airstrip, we did not locate the info WE NEEDED, until we used OC. Then we learned their DBA info and the agents and members included. Brought that info into LS to create a visualization map, after which it retrieved all the financial resources and documentation down to specific flight plans. If you want to check out something in general on LS, try this, visit LittleSis.org, and in search field type TED SPEAKERS.

  • For anyone who wants a more...decentralized mindmap, akin to a red string conspiracy board, i can very much recommend ThinkComposer (I think Win only unfortunately)

  • You have to distill that pile of data into actionable intel, or it just stays in the info pile. I use a Lego analogy. When you dump the Legos on the floor, they're information. Once you build something from them, they're intel.

  • Came across this website: idcrawl.com. It will run a name and displayed image results, Instagram profiles, twitter profiles, public records, email addresses, Facebook profiles, YouTube, LinkedIn, medium, Web results and even generate a list of possible usernames. Be advised, it seems like it publicly indexes all search queries so keep that in mind, although on the plus side it also means you can check their database of searched names to see if anyone has been trying to find out about you