OSINT Tools

The Attrition of Information in OSINT: Why Acting Quickly Matters, And How To Recover When You Don’t.

Speed is a critical factor in investigations of any kind. The longer information is left or ignored, the more likely it is to become obscured, contaminated, or disappear altogether. This is true of any kind of information, whether it be an eyewitness, a server log, a tweet, a fingerprint, or anything else that an investigator …

The Attrition of Information in OSINT: Why Acting Quickly Matters, And How To Recover When You Don’t. Read More »

Grabbing Videos For OSINT – How To Use YouTube-DL

Capturing and preserving media content is an essential part of most OSINT investigations. There are a number of tools available to do this, but my favourite my far is YouTube-dl. Despite it’s name, YouTube-dl is capable of grabbing videos quickly from a range of different websites including YouTube, Facebook, Twitter, LiveLeak, and many others. It’s …

Grabbing Videos For OSINT – How To Use YouTube-DL Read More »

Website Investigation – Where Did 8Chan Move To?

After the El Paso shooting this past weekend, it quickly emerged that the shooter had apparently posted his manifesto on 8Chan prior to carrying out the killings. As a result Cloudflare announced that they would no longer permit 8Chan to use their services. Without Cloudflare’s protection, 8Chan is highly vulnerable to DDOS attacks and so …

Website Investigation – Where Did 8Chan Move To? Read More »

Instagram OSINT – A Promising New Python Tool

I came across a new Instragram scraping tool InstagramOSINT after DutchOsintGuy and Hwosint pointed it out on Twitter. I’ve stopped using InstaLooter since it kept causing dependency issues, and I started using InstaScraper as a photo grabbing tool. InstagramOSINT is more than a photo-scraping tool. It’s very new but it gets additional information via the …

Instagram OSINT – A Promising New Python Tool Read More »

Website Attribution Without WhoIs – Reverse IP Lookups (Part 2)

In my last post on Reverse IP Lookups I wrote about the challenges OSINT investigators face when it comes to attributing a website to someone. Reverse IP lookups show which other domains are hosted at the same IP address, which is often (but not always) an indicator of what other websites your subject controls. This …

Website Attribution Without WhoIs – Reverse IP Lookups (Part 2) Read More »