OSINT Knowledge

OSINT Knowledge

A complete guide to understanding OSINT

·

7 min read

Breach lookup

A data breach occurs when the data for which your company/organisation is responsible suffers a security incident resulting in a breach of confidentiality, availability or integrity.

  1. HIBP : https://haveibeenpwned.com/

  2. IntelX : https://intelx.io/

  3. Breach Directory : https://breachdirectory.org/

Public Document

Access to all Public Documents.

  1. FOCA : https://github.com/ElevenPaths/FOCA

  2. Data Occrp : https://data.occrp.org/

  3. XLek : https://xlek.com/

  4. Search People : https://www.searchpeoplefree.com/

  5. Find PDF : http://www.findpdfdoc.com/

  6. That's Them : https://thatsthem.com/

Social Media Hunting

How to find a Person in Social Media.

  1. Social Mention

    1. https://www.socialmention.com/
  2. Sherlock Tool

    1. https://github.com/sherlock-project/sherlock
  3. BlackBird Tool

    1. https://github.com/p1ngul1n0/blackbird
  4. KnowEM

    1. https://knowem.com/
  5. Name Checker

    1. https://www.namecheckr.com/
  6. Social Searcher

    1. https://www.social-searcher.com/
  7. Social Links

    1. https://sociallinks.io/

Browser Extension

  1. Screen Capture and Tag (One-Note Users Only)

    1. https://www.onenote.com/clipper
  2. Screen Capture and Annotation (as image or pdf)

    1. https://getfireshot.com/
  3. Context Menu Search Menu

    1. https://github.com/ssborbis/ContextSearch-web-ext
  4. Simple Link Extraction

    1. https://github.com/az0/linkgopher/
  5. Firefox - Download all items in a webpage that match a pattern

    1. https://github.com/marklieberman/downloadstar
  6. Firefox - Multi-Account Containers (Compartmentalization)

    1. https://github.com/mozilla/multi-account-containers#readme
  7. Firefox - Multi-Account Containers (Compartmentalization)

    1. https://github.com/mozilla/multi-account-containers#readme
  8. Scrape YP, Yelp, Ebay, Amazon, etc. Save as Excel or CSV

    1. https://webrobots.io/

Search Engine

  1. Google

    1. semrush.com
  2. Bing

    1. microsoft.com
  3. Yandex

    1. yandex.com
  4. DuckDuckGo

    1. duckduckgo.com
  5. Startpage

    1. startpage.com

Operational Security - Browsers

  1. Email Leaks : https://www.emailprivacytester.com/

  2. Device Fingerprint : https://panopticlick.eff.org/

  3. Browser Fingerprint

    1. https://www.deviceinfo.me/

    2. https://browserleaks.com/

    3. https://browserleaks.com/

    4. https://detectmybrowser.com/

  4. IP Leaks

    1. https://ipleak.net/
  5. DNS Leaks

    1. https://www.dnsleaktest.com/
  6. Site Privacy Test

    1. https://webbkoll.dataskydd.net/en/
  7. Privacy Resources

    1. https://inteltechniques.com/links.html

Email Gathering

  1. DeHashed : https://dehashed.com/

  2. Powerful Leaks Monitor : https://psbdmp.ws/

  3. Hunter : https://hunter.io/

  4. Verify Email : https://verifalia.com/validate-email

  1. Google Search : https://images.google.com/

  2. TinEye Search : https://tineye.com/

  3. Bing Search : https://www.bing.com/images/

  4. Exif Tool : https://exiftool.org/

  5. Stolen Camera : http://www.stolencamerafinder.com/

Web Archive

  1. Today Archive : https://archive.fo/

  2. WayBackMachine : http://archive.org/web/

  3. HTTrack : https://www.httrack.com/

Capture/Collection Tools

  1. Hunchly : https://hunch.ly/try-it-now

  2. FireShot : https://getfireshot.com/

  3. SpiderFoot : https://www.spiderfoot.net/

SOCMINT

  1. Graph Search : http://socmint.tools/graph.htm

  2. Instagram Recon

    1. https://github.com/Datalux/Osintgram
  3. Twitter Recon

    1. https://github.com/vaguileradiaz/tinfoleak
  1. Bing vs Google : http://bvsg.org/

  2. DADGogo : http://dadgogo.com/

  3. 100Search Engine

    1. https://www.100searchengines.com/
  4. ETools

    1. https://www.etools.ch/
  5. Web Crawler

    1. https://www.webcrawler.com/

Competitive Programming

  1. Hacker Rank

    1. https://www.hackerrank.com/
  2. Code Chef

    1. https://www.codechef.com/
  3. Code Wars

    1. https://www.codewars.com/

Files & FTP

  1. MMNT : https://www.mmnt.ru/

  2. PDF Analyser : http://pdf-analyser.edpsciences.org/

Web Intelligence

  1. Builtwith : https://builtwith.com/

  2. Domain Tools ( Whois )

  3. VirusTotal : https://www.virustotal.com/gui/home/url

  4. Cache View : https://cachedview.com/

  5. Domain Tools ( Whois )

    1. https://whois.domaintools.com/
  6. DNS Spy

    1. https://dnsspy.io/
  7. Attack Surface Recon API

    1. https://devportal.redhuntlabs.com/home
  8. Nmap

    1. https://nmap.org/
  9. Nuclei

    1. https://github.com/projectdiscovery/nuclei
  10. WebShag

    1. https://github.com/wereallfeds/webshag
  11. Hakrawler

    1. https://github.com/hakluke/hakrawler
  12. WayBackURLS

    1. https://github.com/tomnomnom/waybackurls

Analysing URLs

  1. Threat Miner : https://www.threatminer.org/

  2. Unfurl

    1. https://github.com/obsidianforensics/unfurl
  3. IP Location

    1. https://iplocation.io/website-link-analyzer
  4. Small SEO Tools

    1. https://smallseotools.com/website-link-analyzer-tool/
  5. Abuse IP

    1. https://www.abuseipdb.com/
  6. Is it Phishing

    1. https://checkphish.ai/

    2. https://isitphishing.org/

  7. URL Threats

    1. https://polyswarm.network/
  8. Netcraft

    1. https://www.netcraft.com/tools/

IoT Search Engines

  1. Shodan : https://www.shodan.io/

  2. LeakIX

    1. https://leakix.net/
  3. Binary Edge

    1. https://www.binaryedge.io/

Wireless Network

  1. WiGLE

    1. https://www.wigle.net/
  2. Finger

    1. https://www.fing.com/
  3. Angry IP Scanner

    1. https://angryip.org/
  4. Fon

    1. https://fon.com/maps/
  5. SolarWinds

    1. solarwinds.com

Crack Jurnals

  1. https://sci-hub.hkvisa.net/

SOC & Threat Hunting

  1. 0Day.Today

    1. http://151.80.37.64/
  2. Zerodium

    1. https://zerodium.com/
  3. ZeroDay Fans

    1. https://0dayfans.com/
  4. Exploit-DB

    1. https://www.exploit-db.com/
  5. VulnHub

    1. https://www.vulnhub.com/
  6. Vulners

    1. https://vulners.com/
  7. YARA

    1. https://yara.readthedocs.io/en/stable/
  8. OpenCTI

    1. https://github.com/OpenCTI-Platform/opencti
  9. Flare

    1. https://flare.io/
  10. MITRE CVE

    1. https://cve.mitre.org/cve/search_cve_list.html
  11. DarkFeed

    1. https://darkfeed.io/
  12. Talos CTI

    1. https://www.talosintelligence.com/

Bash Dorking Script

Bing

WEB

for ((i=1;i<=10;i++));do curl -i -s -k -L -X GET -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:68.0) Gecko/20100101 Firefox/68.0" "https://www.bing.com/search?pglt=2081&q=.php?id=" | grep -Eo 'href="[^\"]+"' | grep -Po "(http|https)://[a-zA-Z0-9./?=_%:-]*" | grep ".php?id" | sort -u ;done

Hunt Username

for ((i=1;1<=10;i++));do curl -i -s -k -L -X GET -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/119.0;Accept: */*;Accept-Language: id,en-US;q-0.7,en;q-0.3;Accept-Encoding: gzip, deflate, br;Referer: https: //www.bing.com/;DNT: 1;Connection: keep-alive;Cookie: 1P_JAR=2023-11-05-19;Sec-Fetch-Dest:empty;Sec-Fetch-Mode:cors;Sec-Fetch-Site: same-origin;TE: trailers" "https://www.bing.com/search?pglt=2081&q=Jieyab89" | grep -Eo 'href="[^\"]+"' | grep -Po "(http|https)://[a-zA-Z0-9./?=_%:-]*" | grep -E "Jieyab89|github" | sort -u ;done

Google

WEB

for ((i=1;i<=10;i++));do curl -i -s -k -L -X GET -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:68.0) Gecko/20100101 Firefox/68.0" "https://www.google.com/search?sourceid=chrome-psyapi2&ion=1&espv=2&ie=UTF-8&start=${i}0&q=.php?id=" | grep -Eo 'href="[^\"]+"' | grep -Po "(http|https)://[a-zA-Z0-9./?=_%:-]*" | grep ".php?id" | sort -u ;done

Hunt Username

for ((i=1;1<=10;i++));do curl -i -s -k -L -X GET -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/119.0;Accept: */*;Accept-Language: id,en-US;q-0.7,en;q-0.3;Accept-Encoding: gzip, deflate, br;Referer: https: //www.google.com/;DNT: 1;Connection: keep-alive;Cookie: 1P_JAR=2023-11-05-19;Sec-Fetch-Dest:empty;Sec-Fetch-Mode:cors;Sec-Fetch-Site: same-origin;TE: trailers" "https://www.google.com/search?sourceid=chrome-psyapi2&ion=1&espv=2&ie=UTF-8&start=${i}0&q=Jieyab89" | grep -Eo 'href="[^\"]+"' | grep -Po "(http|https)://[a-zA-Z0-9./?=_%:-]*" | grep -E "Jieyab89|github" | sort -u ;done

DarkWeb Search Engine

  1. Tor Hidden Wiki : http://thehiddenwiki.org/

  2. Onion Links : https://onion.link/

  3. MemeX : https://memex.garden/

  4. Onion Cab : https://onion.cab/

  5. Ahima : https://ahmia.fi/

  6. TorBot Tools : https://github.com/DedSecInside/TorBot

Tracking Website Changes

  1. Follow That Page : https://www.followthatpage.com/

  2. Change Detection

    1. https://visualping.io/

Phone Numbers Information Gathering

  1. Who Called Me : https://www.unknownphone.com/

  2. Phone Book : https://www.phonebooks.com/

  3. PhoneInfoGa

    1. https://github.com/sundowndev/PhoneInfoga
  4. Reverse Phone Lookup

    1. https://www.reversephonelookup.com/
  5. Device info

    1. https://www.deviceinfo.me/
  6. Twilio

    1. twilio.com
  7. DarkWeb Tracker

    1. stealthmole.com
  8. DarkWeb OSINT Bookmark

    1. osintcombine.com

Public Records Gathering

  1. Public Record

    1. https://publicrecords.searchsystems.net/
  2. Fam WatchDogs

    1. https://www.familywatchdog.us/Default.asp

Live Maps

  1. One Million Tweets

    1. https://onemilliontweetmap.com/
  2. Facebook Live

    1. https://www.facebook.com/watch/live/?ref=live_delegate

Social Network Information Gathering

Instagram

  1. Hashtag

    1. https://hashtagify.me/
  2. Iconosquare

    1. https://www.iconosquare.com/
  3. DumpOIR

    1. https://dumpoir.com/
  4. Save Free from Instagram

    1. https://www.save-free.com/

Pinterest

  1. https://pingroupie.com/

Twitter

  1. Twitter Search

    1. Twitter.com ( X )
  2. Trends Map

    1. https://www.trendsmap.com/
  3. Twint Project

    1. https://github.com/twintproject/twint

LinkedIn

  1. Dumper

    1. https://github.com/l4rm4nd/LinkedInDumper
  2. Weakest Link

    1. https://github.com/shellfarmer/WeakestLink
  3. GatherContacts

    1. https://github.com/clr2of8/GatherContacts

Database Search Engine

  1. FOFA Search Engine

    1. https://fofa.info/

Camera Engine

  1. Camera FTP

    1. cameraftp.com
  2. EarthCam

    1. earthcam.com
  3. Insecam

    1. insecam.org

Telegram OSINT

  1. Telegram DB

    1. https://www.telegramdb.org/
  2. Telegram Database : Channel, Group and Users

    1. https://t.me/s/privatelinks
  3. Social Finder

    1. https://socialfinder.app/users/Telegram
  4. Lyzem

    1. https://lyzem.com/
  5. Telegram Channel Overview

    1. https://telemetr.io/en
  6. Telegram Phone Number Checker

    1. https://github.com/bellingcat/telegram-phone-number-checker
  1. Social Bled : https://socialblade.com/

  2. Buffer

    1. https://buffer.com/
  3. Hashtatit

    1. https://www.hashatit.com/
  4. Social Analyzer

    1. https://github.com/qeeqbox/social-analyzer
  5. Oblivion

    1. https://github.com/loseys/Oblivion

Face Gathering

  1. FacePP

    1. https://www.faceplusplus.com/
  2. Face Check

    1. https://facecheck.id/
  3. Fact Checking

    1. Check

      1. https://meedan.com/check
    2. Fact Check

      1. https://www.factcheck.org/
    3. Full Fact

      1. https://fullfact.org/

Server Information Gathering

  1. TestSSL Tool

    1. https://testssl.sh/
  2. CRT

    1. https://crt.sh/

Cryptocurrency

  1. Bitcoin Abuse : https://www.bitcoinabuse.com/

  2. Graph Sense

    1. https://github.com/INTERPOL-Innovation-Centre/GraphSense-Maltego-transform
  1. https://discordservers.com/

Cell Investigation

  1. HLR Lookup : https://www.free-hlr.com/

  2. Open Cell ID

    1. https://opencellid.org/
  3. Cell Mapper

    1. https://www.cellmapper.net/
  4. Maltego Phone Search

    1. https://www.maltego.com/transform-hub/phonesearch/
  5. That's Them

    1. https://thatsthem.com/
  6. Free People Search

    1. https://freepeoplesearch.com/
  7. IMSI Check

    1. https://www.imei.info/imsi/

IMEI Investigation

  1. SNDeepInfo

    1. https://sndeep.info/en
  2. IMEI Check

    1. https://www.imei.info/

Fake Information

  1. Temp Mail : https://temp-mail.org/

  2. ZMail : https://zmail.sourceforge.net/

  3. Phone Burner : https://www.phoneburner.com/

  4. Proton Mail : https://proton.me/mail

  5. NOX : https://www.bignox.com/

  6. Cryptocurrency Payment Monero

    1. https://www.getmonero.org/

    2. https://bitcoin.org/en/

  7. Temp Phone Number

    1. https://hushed.com/

Improve anonymity

  1. I2P Project : https://geti2p.net/en/

  2. Tor : https://www.torproject.org/download/

Digital Forensics

  1. VirusTotal

    1. https://www.virustotal.com/gui/home/upload
  2. Avilla Forensics

    1. https://forum.seccodeid.com/d/avillaforensics-mobile-digital-forensics
  3. NTFS Tool Forensic

    1. https://forum.seccodeid.com/d/ntfstool-forensics-tool-for-ntfs-parser-mft-bitlocker-deleted-files
  4. MISP Project

    1. https://www.misp-project.org/
  5. FileSec

    1. https://filesec.io/
  6. Yggdrasil

    1. https://github.com/Jarl-Bjoern/Yggdrasil/
  7. SIFT

    1. https://github.com/teamdfir/sift-cli/releases/tag/v1.8.5

    2. https://www.sans.org/tools/sift-workstation/

  8. LOLBAS

    1. https://lolbas-project.github.io/
  9. Test Disk

    1. https://www.cgsecurity.org/wiki/TestDisk_Download
  10. Autopsy

    1. https://www.autopsy.com/
  11. Kibana

    1. https://www.elastic.co/kibana/
  12. Sleuthkit

    1. https://www.sleuthkit.org/sleuthkit/

Fraud Checker

  1. Cek Rekening : https://cekrekening.id/home

  2. Kerdibel

    1. https://www.kredibel.com/
  3. Verihubs

    1. https://verihubs.com/
  4. Maltego OpenCNAME

    1. maltego.com
  5. Full Contact

    1. https://www.fullcontact.com/
  6. Maltego IP Quality Score

    1. maltego.com
  7. Maltego Scamadviser

    1. maltego.com/

Aircraft Tracking

  1. Plan Finder

    1. https://planefinder.net/
  2. Flightradar24

    1. https://www.flightradar24.com/41.00,28.97/6
  3. Flightaware

    1. https://www.flightaware.com/
  4. Radar Box

    1. https://www.radarbox.com/
  5. Adsbexchange

    1. https://globe.adsbexchange.com/

Ship Tracking

  1. Ship Tracker

    1. https://shiptracker.live/
  2. Marinetraffic

    1. https://www.marinetraffic.com/

END

This story is over for now, but the game is not over yet.