OSINT Sharad Kumar @sk_security

$whoami Security Engineer OSINT Creeper Penetration Tester Server Auditor Author – OSINT-SPY OSINT Trainer BlackHat Arsenal Presenter

Agenda Intelligence Gathering OSINT OSINT-SPY OSINT Investigation & OSINT Workflow

SUN TZU -- Art of War If you know your opponent weaknesses and How to exploit them you will never loose.

Intelligence Gathering Intelligence gathering is a process of collecting intelligence(data) from various sources. Open or closed

What is Espionage ? Use of spies by government to discover military and political secrets of other nation. It’s a subset of Intelligence Gathering

Intelligence Gathering Disciplines HUMINT GEOINT SIGINT TECHINT FININT OSINT Intel gathered from Humans Intel gathered from images, geo location and human activity. Intel gathered from signals, communication Intel gathered about weapons, defense and military affairs. Intel gathered from documents, organizational data and financial affairs.

OSINT ?

What is OSINT? Information available publicly from public sources. Sources might be - Media Internet Social meetings

What kind of data we can gather?

Main OSINT Search Area Email Social Accounts Real Time Monitoring Websites IP Addresses OSINT for Blue Team and Red Team

OSINT Arsenal Search Engines People Search Engines Social Networks Video Sharing Platforms Various public API’s Tools

Search Engines Google Bing Yandex

TOR Search Engines www.torchtorsearch.com https://ahmia.fi https://thehiddenwiki.org/ http://onion.link/ https://tor2web.org/

Twitter Intel Gathering https://moz.com http://ctrlq.org/first/ Google Dork is not a bad option  Geosocialfootprint.com Tweetpaths.com App.echosec.net Onemilliontweetmap.com https://www.allmytweets.net Conweets.com

Social Network Traffic Analysis Social-searcher.com Icerocket.com Socialmention.com Delicious.com stumbleupon.com Topix.com Keyhole.co

Online Maps | GEOINT Flashearth.com Here.com Google.com/maps Panoramio.com

People Search Engines Thatsthem.com Pipl.com Peepdb.com Zabasearch.com Intelius.com Radaris.com Spokeo.com Yasni.com Advancedbackgroundchecks.com

Domain and IP Address Viewdns.info/whois Whoisology.com Domainhistory.net Whoishostingthis.com Whoismind.com Spyonweb.com Sameid.net Pub-db.com Domaincrawler.com Nerdydata.com Semrush.com

OSINT-SPY OSINT-SPY is a powerful Open Source Intelligence tool. Purely written in Python Features -- Email Scan IP Address Scan Domain | URL Scan Bitcoin Scan Device Scan Skype Forensics Remote Malware Analysis Stego Tool Cipher Scan https://github.com/SharadKumar97/OSINT-SPY

OSINT-SPY CLI | WEB www.osint-spy.com @sk_security sharad@osint-spy.com github.com/SharadKumar97/OSINT-SPY

OSINT-SPY In Action Bitcoin Latest Block Information

OSINT-SPY In Action Block info by date

OSINT-SPY In Action Bitcoin Balance

OSINT-SPY In Action Email Account

OSINT-SPY In Action Domain

OSINT-SPY In Action

OSINT-SPY In Action

OSINT-SPY In Action http://www.osint-spy.com/command_line

Is there any standard process for OSINT

Can we develop?

Let’s Try Email Address No Yes Verify Search Engines Social Platforms Username – john234@gmail.com Amazon, GitHub, PGP, Key Base, Breached Data

Let’s Try OSINT search on email Domain (www) whois Email, Country DNS, subdomains Reverse IP check Search engines ( site: ) Robots.txt Analytics and Ad-sense Reverse Ad-sense Check Hidden Pages and Documents Metadata Web Spider and Foca

Thanks Sharad Kumar @sk_security www.osint-spy.com @sk_security sharad@osint-spy.com github.com/SharadKumar97/OSINT-SPY Thanks