OSINT stands for open source intelligence and it’s the collection and gathering of information using publicly available sources to define and identify a persona.
Usually OSINT centers around uncovering activities as part of an investigation about an identity on the internet. Google, Facebook, Twitter, Github and other available public sources are places OSINT practitioners go to to gather information.
In this post, We covered what is OSINT and how to gather information using public resources. We solved a case where we uncovered a persona using Google and Github. This was part of TryHackMe Advent of Cyber 3 Day 16
The challenge scenario goes as follows
Grinch Enterprises has decided to use the best festival company to try their new ransomware service. While they think that this is a great proving ground, McSkidy is adamant to determine their goals and share them with the wider security community – can you use your open source intelligence methods to find out more information about their ransomware gang!
- Understanding what OSINT is and where it originates
- Understand the implications of OSINT and how it can be used for reconnaissance and information gathering
- Learn how to conduct an OSINT investigation to gather information on an individual
What is the operator’s username?
What social media platform is the username associated with?
What is the cryptographic identifier associated with the operator?
What platform is the cryptographic identifier associated with?
What is the bitcoin address of the operator?
What platform does the operator leak the bitcoin address on?
What is the operator’s personal email?
What is the operator’s real name?