https://appsec.fyi/osint.html Curated OSINT resources from appsec.fyi en-us Sat, 27 Jun 2026 04:04:42 +0000 carl@chs.us (Carl Sampson) https://securityboulevard.com/2026/06/phishing-reconnaissance-how-attackers-identify-and-target-vulnerable-domains/ https://securityboulevard.com/2026/06/phishing-reconnaissance-how-attackers-identify-and-target-vulnerable-domains/ Phishing Reconnaissance: How Attackers Identify and Target Vulnerable Domains https://ift.tt/sz2mgJR OSINT beginner Wed, 24 Jun 2026 11:12:03 +0000 https://aijourn.com/the-10-top-osint-tools-of-2026/ https://aijourn.com/the-10-top-osint-tools-of-2026/ Library for Open Source Intelligence (OSINT) gathering, featuring tools like theHarvester for early-stage reconnaissance, Shodan for identifying internet-connected devices, and Maltego for visual data mining and relationship mapping. OSINT Framework serves as a categorized directory, while ShadowDragon's Horizon platform offers advanced intelligence software for professional investigators. These resources help uncover hidden connections and insights from public sources. OSINT beginner Sun, 21 Jun 2026 20:29:23 +0000 https://infosecwriteups.com/phone-numbers-and-emails-to-hidden-subdomains-the-osint-acquisition-pipeline-that-uncovered-a-16b1e7d533cd https://infosecwriteups.com/phone-numbers-and-emails-to-hidden-subdomains-the-osint-acquisition-pipeline-that-uncovered-a-16b1e7d533cd Phone Numbers and Emails to Hidden Subdomains: The OSINT Acquisition Pipeline That Uncovered a Critical Bug A deep technical blog on using phone numbers and email addresses to discover hidden domains,... OSINT advanced Sat, 20 Jun 2026 06:00:44 +0000 https://infosecwriteups.com/bitsctf-2026-writeups-osint-and-steganography-forensics-challenges-b91257ca0856 https://infosecwriteups.com/bitsctf-2026-writeups-osint-and-steganography-forensics-challenges-b91257ca0856 This summary details solutions for OSINT and Steganography challenges from BITSCTF 2026. Tools like zsteg, cyberchef, reverse image search, strings, and exiftool were employed. One OSINT challenge involved identifying a "major event" in Copenhagen in early 2024, described by unusual geometric structures near a river. The event's difficulty was rated 6.5/10. No bug bounty payout amount was mentioned. OSINT intermediate Sat, 20 Jun 2026 06:00:44 +0000 https://wiz.io/blog/unmasking-phishing-strategies-for-identifying-0ktapus-domains https://wiz.io/blog/unmasking-phishing-strategies-for-identifying-0ktapus-domains Reference detailing strategies for identifying phishing domains, with a focus on the 0ktapus threat actor. It categorizes and analyzes various Document Object Model (DOM) templates used by 0ktapus, providing unique characteristics, example domains, and activity periods for each. This resource aids in detecting known and unknown phishing campaigns by offering a framework for analyzing phishing infrastructure, including techniques for pivoting between landing pages and identifying specific phishing kits like EIGHTBAIT. OSINT intermediate Fri, 19 Jun 2026 06:01:29 +0000 https://infosecwriteups.com/bearcat-ctf-2026-writeups-bf64d89a7ae0 https://infosecwriteups.com/bearcat-ctf-2026-writeups-bf64d89a7ae0 Flag Format: BCCTF{} #1.RIVER RAIDER (OSINT) For this challenge, we were given a picture of a rogue pirate ship sailing through a river, and we needed to find the name of the bridge right behind it. I... OSINT beginner Fri, 19 Jun 2026 06:00:45 +0000 https://phisheye.com/blog/prizebuzz-phishing-network https://phisheye.com/blog/prizebuzz-phishing-network Analysis of PrizeBuzz reveals a phishing-as-a-service network operating numerous configurable "prize survey" kits. These kits impersonate nearly 29 brands across the Middle East, Africa, and Latin America, using disposable `.buzz` domains, Cloudflare for evasion, and WhatsApp for distribution. The report details the kit's construction, its brand-cloning capabilities, cloaking techniques, and provides indicators for defenders, specifically mentioning OMT and Coca-Cola impersonations. OSINT intermediate Wed, 17 Jun 2026 06:15:18 +0000 https://infosecwriteups.com/tryhackme-checkmate-full-walkthrough-49a418a8e956 https://infosecwriteups.com/tryhackme-checkmate-full-walkthrough-49a418a8e956 The TryHackMe "Checkmate" room, an easy-difficulty lab by Shikhali Jamalzade, focuses on password attacks, OSINT, and privilege escalation within a simulated internal network compromise. It challenges users to exploit weak password practices of an IT Operations employee, Marco Bianchi, to gain access to various internal systems, including a firewall and SSH. The walkthrough guides participants through these steps. OSINT beginner Wed, 17 Jun 2026 06:00:48 +0000 https://infosecwriteups.com/the-crime-blue-team-lab-cyberdefenders-0aa36b6b4121 https://infosecwriteups.com/the-crime-blue-team-lab-cyberdefenders-0aa36b6b4121 This CyberDefenders Blue Team challenge, "The Crime," involves analyzing a victim's phone, seized as evidence in a murder investigation. The objective is to reconstruct the events leading up to the incident by meticulously examining gathered information. Key tools for this analysis include ALEAPP and sqlitebrowser. The content does not mention any bug bounty payout amounts. OSINT beginner Wed, 17 Jun 2026 06:00:48 +0000 https://infosecwriteups.com/cat-reloaded-ctf-catf-2025-dfir-challenges-ff403f100504 https://infosecwriteups.com/cat-reloaded-ctf-catf-2025-dfir-challenges-ff403f100504 The author successfully solved 4 out of 5 Digital Forensics and Incident Response (DFIR) challenges at the CAT Reloaded CTF — CATF 2025. A writeup detailing their solutions is available on their GitBook account. The first challenge, "Index of Secrets," required retrieving a Windows search database file located at "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb." The writeup focuses on the technical steps involved in solving these DFIR puzzles. No bug bounty payout amount was mentioned. OSINT beginner Wed, 17 Jun 2026 06:00:47 +0000 https://londonlovesbusiness.com/open-source-intelligence-or-osint-involves-collecting-and-analysing-information-that-is-publicly-available-online/ https://londonlovesbusiness.com/open-source-intelligence-or-osint-involves-collecting-and-analysing-information-that-is-publicly-available-online/ Library of free Open Source Intelligence (OSINT) tools provides access to capabilities for cybersecurity professionals, investigators, and researchers. This resource details several potent tools, including the Google Dork Assistant for query building, client-side forensic OSINT tools for privacy, Maltego Community Edition for relationship mapping, theHarvester for domain intelligence gathering, SpiderFoot HX for automated OSINT, and Recon-ng for efficient reconnaissance. These tools automate data collection from public sources, helping users discover digital footprints, map networks, and strengthen security assessments. OSINT beginner Mon, 15 Jun 2026 08:59:30 +0000 https://infosecwriteups.com/ieee-mansb-ctf-2025-dfir-writeup-3b49a1afe7f6 https://infosecwriteups.com/ieee-mansb-ctf-2025-dfir-writeup-3b49a1afe7f6 This writeup details the author's first-blood achievement in two DFIR challenges from IEEE Victoris 4.0 — CTF 2025 Quals. The first challenge, "the Frontdoor," involved analyzing a Linux disk image. By examining `.zsh_history` and `.bash_history`, the author discovered file navigation and Git activity within a `/home/Documents/MyProject` directory, providing initial clues for the investigation. OSINT intermediate Sat, 13 Jun 2026 06:00:45 +0000 https://unit42.paloaltonetworks.com/new-macos-artifact-discovered https://unit42.paloaltonetworks.com/new-macos-artifact-discovered Reference detailing the App.MenuItem artifact in macOS Tahoe 26, a new Biome stream logging specific user menu selections. This stream, located at ~/Library/Biome/streams/restricted/App.MenuItem/local and formatted in SEGB, provides granular user intent by recording actions like file compression and trash emptying. Examiners can utilize open-source tools such as ccl-segb to parse this data, offering crucial context for reconstructing user workflows and investigating activities like data exfiltration, when correlated with file system logs. OSINT advanced Sat, 13 Jun 2026 06:00:31 +0000 https://securityboulevard.com/2026/05/30-cybersecurity-search-engines-every-researcher-should-bookmark/ https://securityboulevard.com/2026/05/30-cybersecurity-search-engines-every-researcher-should-bookmark/ This article highlights 30 essential cybersecurity search engines for researchers. These specialized tools offer unique functionalities beyond general search engines, aiding in tasks like threat intelligence gathering, vulnerability discovery, and network reconnaissance. By leveraging these resources, cybersecurity professionals can more effectively identify and analyze potential risks, improving their overall defensive strategies and understanding of the digital threat landscape. OSINT beginner Tue, 26 May 2026 05:19:19 +0000 https://hackread.com/10-top-osint-tools-investigator-should-know-2026/ https://hackread.com/10-top-osint-tools-investigator-should-know-2026/ Library of OSINT tools including ShadowDragon for correlating data across the open, deep, and dark web, Maltego for visual link analysis of relationships, SpiderFoot for automated data gathering from over 200 sources, Shodan for discovering internet-connected devices, TheHarvester for reconnaissance on emails and subdomains, and the OSINT Framework directory for finding specialized tools. OSINT beginner Mon, 18 May 2026 20:24:24 +0000 https://hackread.com/best-osint-tools-investigate-threat-intelligence-2026/ https://hackread.com/best-osint-tools-investigate-threat-intelligence-2026/ Library for OSINT investigations, offering tools like Maltego for relationship mapping, ShadowDragon for social media analysis, VenariX for cyber threat monitoring and ransomware tracking, Arrests.org for public records, Telegago for Telegram monitoring, Shodan for internet-connected device discovery, OSINT Framework for tool discovery, and SpiderFoot for automated data collection. OSINT beginner Wed, 06 May 2026 22:09:34 +0000 https://techshali.com/ghosttrack/ https://techshali.com/ghosttrack/ Tool for OSINT reconnaissance, GhostTrack consolidates IP, phone, and username lookup into a single Python script. Version 2.2 on GitHub boasts 8.1k stars and 1.1k forks but shows limited development with only 23 commits and 2 contributors. It targets Debian-based Linux and Termux, pulling data from public APIs for country, ISP, and carrier information. While a useful learning aid, it falls short compared to professional tools like PhoneInfoga and Sherlock, offering less depth on phone details and fewer username targets. Installation issues often stem from urllib3 version conflicts. OSINT beginner Tue, 05 May 2026 03:09:19 +0000 https://www.technology.org/2026/04/29/the-top-10-osint-software-tools-for-research-and-investigation-2026/ https://www.technology.org/2026/04/29/the-top-10-osint-software-tools-for-research-and-investigation-2026/ This article lists the top 10 Open Source Intelligence (OSINT) software tools for research and investigation in 2026. OSINT involves gathering information from publicly available sources. The tools discussed are essential for professionals in cybersecurity, journalism, and law enforcement to conduct effective investigations. While the article provides a comprehensive overview of these tools, it does not mention any specific bug bounty payout amounts. OSINT beginner Wed, 29 Apr 2026 08:59:25 +0000 https://socradar.io/blog/osint-tools-for-cybersecurity-guide/ https://socradar.io/blog/osint-tools-for-cybersecurity-guide/ Library of OSINT tools for cybersecurity teams, categorized by function: Domain and IP Intelligence (Shodan, DNSDumpster), Email and Credential Exposure (Have I Been Pwned, Holehe), People and Social Media Intelligence (Maltego, Sherlock), Dark Web and Paste Site Monitoring (SOCRadar, IntelligenceX), and Metadata and Search Engine Intelligence (Google Hacking Database, ExifTool). It also highlights key websites like osintframework.com and crt.sh, and details a practical investigation workflow emphasizing initial question framing and passive reconnaissance. OSINT intermediate Mon, 27 Apr 2026 07:24:27 +0000 https://neospl0it.github.io/master-google-dorking-advanced-search-techniques https://neospl0it.github.io/master-google-dorking-advanced-search-techniques Reference listing techniques for Google Dorking, including `site:`, `-` operator for exclusion, exact phrase searching with quotes, `intitle:` for page titles, and `intext:` for body content. These methods are applicable for bug bounty hunting, OSINT, and cybersecurity audits to uncover vulnerabilities like open directories, misconfigured settings, and publicly accessible sensitive information. OSINT intermediate Wed, 22 Apr 2026 12:51:11 +0000 https://niemanreports.org/osint-open-source-investigations-bellingcat-volunteers/ https://niemanreports.org/osint-open-source-investigations-bellingcat-volunteers/ Toolkit for open-source investigations, built collaboratively by Bellingcat volunteers, offers detailed guides, limitations, and pricing for research tools. This resource addresses challenges faced by journalists, such as navigating tool discovery and ensuring information remains current, even after tools like Twint and Crowdtangle were discontinued. The toolkit emphasizes clear, accurate documentation, identifies potential weaknesses alongside usefulness, and fosters iterative development based on user feedback, highlighting the success of a collaborative, user-focused approach in the field of investigative journalism. OSINT intermediate Wed, 22 Apr 2026 12:51:11 +0000 https://inteltechniques.com/book1.html https://inteltechniques.com/book1.html Book detailing OSINT techniques and self-reliance, updated for 2024. The 11th edition focuses on creating local investigative resources, including custom search tools and a Debian Linux OSINT virtual machine. It covers 47 chapters on virtual machine setup, search engines, social networks (Facebook, Instagram, TikTok, LinkedIn, YouTube), data leaks, breaches, and methodology. Digital purchases include downloadable scripts, cheat sheets, and a command to build a complete OSINT VM. OSINT beginner Wed, 22 Apr 2026 12:51:10 +0000 https://epieos.com https://epieos.com Epieos: The Ultimate OSINT Tool OSINT beginner Wed, 22 Apr 2026 12:51:09 +0000 https://bellingcat.gitbook.io/toolkit https://bellingcat.gitbook.io/toolkit Bellingcat's Online Investigation Toolkit OSINT beginner Wed, 22 Apr 2026 12:51:08 +0000 https://www.digitalstakeout.com/blog/automating-google-dorking-osint https://www.digitalstakeout.com/blog/automating-google-dorking-osint Library for automating Google dorking, transforming this manual OSINT technique into a continuous exposure monitoring process. It maintains a query library, schedules regular runs, compares results against a baseline, and alerts on new findings. This approach focuses on content discoverable through search engines, complementing other monitoring methods like social media, domain registration, dark web, and credential breach checks. OSINT intermediate Wed, 22 Apr 2026 12:51:08 +0000 https://github.com/alpkeskin/mosint https://github.com/alpkeskin/mosint Library for automated email OSINT, Mosint, written in Go, consolidates numerous services to provide fast and efficient investigation of target emails. It supports email verification, social media account checking, data breach scanning, finding related emails and domains, Pastebin dump scanning, Google searches, DNS/IP lookups, and JSON output. Mosint requires API keys and configuration via a YAML file. OSINT beginner Wed, 22 Apr 2026 12:51:07 +0000 https://github.com/The-Osint-Toolbox/Telegram-OSINT https://github.com/The-Osint-Toolbox/Telegram-OSINT Library of Telegram OSINT resources, including blogs detailing techniques like VM builds and chat analysis, browser extensions for scraping and searching, and tools for geolocalization, data analysis, and phone number checking, alongside a comprehensive list of Telegram bots for various investigative purposes. OSINT beginner Wed, 22 Apr 2026 12:51:06 +0000 https://github.com/The-Osint-Toolbox/Email-Username-OSINT https://github.com/The-Osint-Toolbox/Email-Username-OSINT Library of OSINT tools and techniques for discovering email addresses and usernames. It details numerous resources like Any Mail Finder, GHunt, Haveibeenpwned, Hunter.io, Maigret, Sherlock, and WhatsMyName, alongside methods like manipulating URLs, altering usernames (e.g., O to 0), and leveraging Google advanced search for effective data aggregation. OSINT beginner Wed, 22 Apr 2026 12:51:06 +0000 https://github.com/Astrosp/Awesome-OSINT-For-Everything https://github.com/Astrosp/Awesome-OSINT-For-Everything Library of OSINT tools and resources for penetration testing, bug bounty, and red team operations. It encompasses categories such as AI, breaches, recon, social media enumeration, domain analysis, and data leak analysis, featuring tools like GreyNoise for IP and CVE searching, Dehashed for breach data, and WhatsMyName for username enumeration. The collection also includes AI-specific tools like AnonChatGPT for anonymous interaction, Decktopus for presentation creation, and Perplexity AI for sourced answers. OSINT beginner Wed, 22 Apr 2026 12:51:05 +0000 https://netragard.com/blog/osint-framework-custom-maltego-transform/ https://netragard.com/blog/osint-framework-custom-maltego-transform/ Library for creating custom Maltego transforms, integrating the Sherlock OSINT tool to discover social media accounts by username. This library utilizes the `maltego-trx` Python package, allowing developers to define input and output entities, process search results, and provide logging directly within the Maltego interface. The guide details setting up the project, writing the transform logic, and containerizing the solution with Docker for reproducible execution. OSINT intermediate Sun, 19 Apr 2026 02:36:53 +0000 https://blog.sociallinks.io/top-10-osint-tools-products-solutions-and-software-for-2024/ https://blog.sociallinks.io/top-10-osint-tools-products-solutions-and-software-for-2024/ Library of top OSINT tools for 2025, including SL Crimewall for comprehensive data extraction across 500+ sources, i2 for advanced data visualization and risk mitigation, Sayari Graph for supply chain and counterparty due diligence, Logically Intelligence for AI-driven data reliability and cross-platform analysis, and Spokeo for researching individuals across billions of records. OSINT beginner Sun, 19 Apr 2026 02:21:47 +0000 https://www.osint.industries https://www.osint.industries Platform for online investigations that aggregates data from 1500+ sources, including social media, messaging apps like WhatsApp and Telegram, and lifestyle apps like Strava and Airbnb. It offers real-time data retrieval, geospatial visualization of digital footprints, and an interactive timeline of online activity. The platform can identify linked accounts for email addresses or phone numbers, flags data breached from services like haveibeenpwned.com, and allows data export in PDF, DOC, EXCEL, or JSON formats, with API access for integration into existing workflows. OSINT beginner Sun, 19 Apr 2026 02:21:46 +0000 https://liferaftlabs.com/blog/osint-tools-security-analysts-should-know-for-2025 https://liferaftlabs.com/blog/osint-tools-security-analysts-should-know-for-2025 Library for OSINT analysts, detailing tools and techniques for 2025. It covers metadata extraction with Metagoofil and ExifTool, advanced Google Dorking for uncovering exposed information, and people/social media intelligence platforms like Liferaft, AlertMedia, and Skopenow for operationalizing data. The library also addresses misinformation detection, including deepfake analysis using HyperVerge and Intel's FakeCatcher, alongside AI-driven tools for audio and video synthesis. OSINT beginner Sun, 19 Apr 2026 02:21:45 +0000 https://www.authentic8.com/blog/geolocation-101-image-based-tips-and-inspiration-unlikely-places https://www.authentic8.com/blog/geolocation-101-image-based-tips-and-inspiration-unlikely-places Reference listing OSINT image geolocation techniques and tools such as Google Images, TinEye, and EXIF analysis. It details how to verify image authenticity by checking for manipulation, identifying original sources through reverse image searching, and analyzing visual cues like landmarks, shadows, and metadata. The entry also highlights tools like SunCalc, Google Maps, Forensically, FotoForensics, and Silo Image Metadata Viewer for geolocation and manipulation detection. OSINT beginner Fri, 17 Apr 2026 14:37:46 +0000 https://www.osintcombine.com/post/from-images-to-intelligence https://www.osintcombine.com/post/from-images-to-intelligence Writeup on OSINT techniques for image geolocation, detailing how visual clues from traffic, buildings, pedestrian attire, and signage, alongside reverse image searching with tools like Google Lens and AI assistance via ChatGPT, can pinpoint an image's location. The analysis highlights identifying distinctive vehicles, architectural styles, national flags, and even police uniforms to confirm a subject's whereabouts, demonstrating a methodical approach to drawing intelligence from visual data. OSINT intermediate Fri, 17 Apr 2026 14:37:45 +0000 https://github.com/smicallef/spiderfoot https://github.com/smicallef/spiderfoot spiderfoot: OSINT automation for threat intel (GitHub) OSINT intermediate Fri, 17 Apr 2026 14:35:52 +0000 https://medium.com/@rajkumarkumawat/%EF%B8%8F-osint-framework-the-ultimate-guide-for-ethical-hackers-cyber-investigators-9b5e66e02c54 https://medium.com/@rajkumarkumawat/%EF%B8%8F-osint-framework-the-ultimate-guide-for-ethical-hackers-cyber-investigators-9b5e66e02c54 OSINT Framework: The Ultimate Guide for Ethical Hackers OSINT beginner Fri, 17 Apr 2026 14:35:51 +0000 https://osintteam.blog/spiderfoot-vs-maltego-for-osint-research-cases-a1e0c4d63aa2 https://osintteam.blog/spiderfoot-vs-maltego-for-osint-research-cases-a1e0c4d63aa2 Spiderfoot vs Maltego for OSINT Research Cases OSINT intermediate Fri, 17 Apr 2026 14:35:51 +0000 https://medium.com/@max_70917/operational-technology-discovery-a-systematic-approach-to-ics-osint-b0684035a94b https://medium.com/@max_70917/operational-technology-discovery-a-systematic-approach-to-ics-osint-b0684035a94b Operational Technology Discovery: ICS OSINT OSINT intermediate Fri, 17 Apr 2026 14:35:50 +0000 https://medium.com/@himadrisingh061/beyond-google-navigating-the-hidden-internet-with-shodan-and-censys-2cf5015f1b57 https://medium.com/@himadrisingh061/beyond-google-navigating-the-hidden-internet-with-shodan-and-censys-2cf5015f1b57 Beyond Google: Navigating the Hidden Internet with Shodan and Censys OSINT beginner Fri, 17 Apr 2026 14:35:49 +0000 https://hackers-arise.com/open-source-intelligence-osint-gathering-open-source-security-data-using-censys/ https://hackers-arise.com/open-source-intelligence-osint-gathering-open-source-security-data-using-censys/ Tool for OSINT gathering on internet-connected systems, Censys leverages Zmap to provide near real-time data. It allows granular searches using keywords, IP addresses, Boolean operators, and regular expressions within parsed fields like certificate issuers. Censys also employs heuristic "tags" to categorize hosts, enabling specific searches for targets like SCADA systems, as demonstrated with queries for Siemens manufacturers and the modbus protocol, even utilizing boosting to prioritize search terms. OSINT intermediate Fri, 17 Apr 2026 14:35:48 +0000 https://www.intel471.com/blog/top-5-osint-sources-for-penetration-testing-and-bug-bounties https://www.intel471.com/blog/top-5-osint-sources-for-penetration-testing-and-bug-bounties Library for OSINT reconnaissance, detailing top sources like SecurityTrails, Shodan, and Spyse for penetration testing and bug bounties. These tools provide extensive data on external assets, including DNS history, historical WHOIS, ports, subdomains, and website technologies. Specific features highlighted include SecurityTrails' SurfaceBrowser for attack surface mapping and Shodan's device-centric search engine with SSL certificate filtering. Spyse offers a "one-stop-shop" with detailed domain information and various pricing tiers for its services. OSINT beginner Fri, 17 Apr 2026 14:35:47 +0000 https://github.com/KTZgraph/sarenka https://github.com/KTZgraph/sarenka Tool for OSINT and attack surface discovery, SARENKA gathers information from Shodan, Censys, and Criminal IP, mapping CVEs to CWEs. It also retrieves local machine data, including installed software and network information, alongside utilities for hash calculation, Shannon entropy, and port scanning. Future plans include more cryptography tools and reconnaissance scripts. OSINT intermediate Fri, 17 Apr 2026 14:35:46 +0000 https://osintbench.com/guides/domain-ip-osint/ https://osintbench.com/guides/domain-ip-osint/ Library for domain and IP investigation using OSINT, covering WHOIS, DNS history, IP geolocation, and ASN analysis. This guide details practical workflows for tracking threat actors, scrutinizing suspicious sites, and mapping infrastructure. Techniques include using tools like `whois`, `dig`, `nslookup`, Security Trails, DomainTools, and scanning databases such as Shodan and Censys to pivot between domains, IPs, and name servers for comprehensive intelligence gathering. OSINT beginner Fri, 17 Apr 2026 14:35:46 +0000 https://www.imperva.com/learn/application-security/open-source-intelligence-osint/ https://www.imperva.com/learn/application-security/open-source-intelligence-osint/ Library for open-source intelligence (OSINT) techniques and tools, detailing how both defenders and attackers leverage publicly available information for security purposes. It covers passive, semi-passive, and active collection methods, highlighting popular tools like Maltego and Spiderfoot. The library also touches on the role of artificial intelligence in enhancing OSINT capabilities and its use in identifying risks such as unpatched software, open ports, and leaked credentials on platforms like GitHub and LinkedIn. OSINT beginner Fri, 17 Apr 2026 14:35:45 +0000 https://brandefense.io/blog/dark-web/top-open-source-intelligence-osint-tools-for-dark-web/ https://brandefense.io/blog/dark-web/top-open-source-intelligence-osint-tools-for-dark-web/ Top OSINT Tools For Dark Web (Brandefense) OSINT beginner Fri, 17 Apr 2026 14:35:44 +0000 https://www.osint.industries/post/what-is-dark-web-intelligence-darkint-beginners-guide https://www.osint.industries/post/what-is-dark-web-intelligence-darkint-beginners-guide Library for dark web intelligence (DARKInt) gathering, complementing open source intelligence (OSINT) by focusing on encrypted and hidden networks. It enables investigators to monitor hacker forums, marketplaces, and other dark web hubs for illicit activity, stolen datasets, and cyber-attack plans, aiding threat intelligence and fraud prevention through techniques like data scraping, deanonymization, content analysis, and cryptocurrency tracking. OSINT beginner Fri, 17 Apr 2026 14:35:43 +0000 https://osintbyle.medium.com/top-15-osint-tools-in-2025-leading-platforms-osint-investigations-platforms-2771871b7bb6 https://osintbyle.medium.com/top-15-osint-tools-in-2025-leading-platforms-osint-investigations-platforms-2771871b7bb6 Top 15 OSINT Tools in 2025 (OSINT BYLE) OSINT beginner Fri, 17 Apr 2026 14:35:43 +0000 https://indicator.media/p/osint-2025-new-and-updated-digital-investigative-tools-of-the-year https://indicator.media/p/osint-2025-new-and-updated-digital-investigative-tools-of-the-year Survey of over 45 new and updated digital investigative tools for 2025, categorized by AI, Social Media, and Websites. This resource highlights contributions from developers and companies like Cyber Detective and Logan Woodward, and acknowledges insightful newsletters from Jake Creps, Henk van Ess, and Ritu Gill, among others. It also recognizes the efforts of Niko Dekens, Griffin Glynn, Micah Hoffman, Alicja Pawlowska, and Benjamin Strick for their work in the OSINT community. OSINT beginner Fri, 17 Apr 2026 14:35:42 +0000 https://www.bitsight.com/learn/cti/osint-framework https://www.bitsight.com/learn/cti/osint-framework Library cataloging an OSINT framework that categorizes tools for gathering and organizing open-source intelligence. It details sources like social media and public records, and highlights specific tools such as Maltego, Shodan, theHarvester, and SpiderFoot. The entry also outlines the five core steps of the OSINT process: planning, data collection, processing, analysis, and reporting, while acknowledging how cybercriminals leverage OSINT for phishing, credential harvesting, and reconnaissance. OSINT beginner Fri, 17 Apr 2026 14:35:41 +0000