"We are all different." seems like a simple, easy to understand statement, right? Each of us is different and, in the OSINT world, we leverage those differences to generate creative methods to investigate our subjects and in processing the data we collect. Different is good. Embrace it. And yet, there are times when we forget... Continue Reading →
What is Obsidian? At its most basic, Obsidian is a documentation tool. You write your notes in it instead of a text editor, word processing tool, or even a MindMap. The software is free for personal or educational use, and for companies with 1 employee. For those working in companies with 2 or more employees,... Continue Reading →
This short, resource-filled blog post is a companion to a SANS Institute live stream from 2 June 2021. About the speakers: Micah Hoffman (@WebBreacher) is the author of the SANS SEC487 OSINT (Open-Source Intelligence) course: https://sans.org/sec487Chris Crowley (@CCrowMontance) is the author of the SOC (Security Operations Center) Class: https://soc-class.com/ Abstract Whether you are an analyst... Continue Reading →
I've been working with some of the incredible people in the OSINT world for a while. Most are amazing and so willing to share ideas. So we decided to create a trusted, online resource at https://OSINTCurio.us Definitions OSINT - "a method of using open source tools to collect information from publicly available sources and then... Continue Reading →
This is a guest post by Steve Hall (https://twitter.com/shall_1). Thanks for writing it Steve! Update - 2022-03-171. Micah updated the MindMap file to version 2. Little less cluttered and more focused. It is in the same GitHub location and called "OSINT_Maps2.xmind"2. I've moved from MindMaps to Obsidian for documentation. Check out the blog post https://webbreacher.com/2022/03/15/obsidian/... Continue Reading →
For those of you that have been the targets of SPAM or phishing or perhaps for those of you that are cyber defenders, how many times have you heard "I have no idea how the attacker got my personal email address." I have a secret to share with you. [Come a little closer to the... Continue Reading →
At work I was given the task of figuring out at least one method to find some of the domains that were registered by my company's employees but that we may not have known that they registered. Anyone can visit GoDaddy or PSI or 1and1 and register a domain. We wanted to find out anyone... Continue Reading →