Twitter would not be Twitter without a daily dose of QAnon drama. Recently there were claims that since Q-drop archive site qmap.pub now shares the same IP as 8Kun proved that 8Kun owner Jim Watkins is Q. I’m not sure that a reverse IP lookup by itself can really stretch that far, but it does …
DNS Records, QAnon, and How To Handle Uncertainty In OSINT. Read More »
The term “OSINT” sometimes gets thrown around a little too loosely. The “open source” part of OSINT is straightfoward enough: there’s a world of information out there and with enough digging and practice you can find almost anything you could ever think of – but by itself this is not OSINT. The “intelligence” part of …
Website OSINT: What’s The Link Between Antifa.com and Russia? Read More »
The last blog post I wrote about Fake Twitter profiles is by far the most widely-read post I’ve ever published since I started this blog. It’s nice when people read your work but there was a little sour note with this post after it was pointed out to me that someone had been posting it …
Who Stole My Stuff? Finding Out Who Is Behind A Website Read More »
A few months ago I wrote about how you could use Carbon-14 to detect the timestamps for images published in webpages. By comparing the publication times of the images with the publication time of the page itself it is possible to construct a timeline of when various elements in webpage were put together and so …
Website Forensics: How To Detect Editorial Changes Read More »
WordPress is the base that 35% of the world’s websites are built on. If you’re ever going to investigate a website, then it’s really important to be able to know your way around a WordPress setup. In this tutorial I’m going to show how to identify user accounts on a WordPress-based website so that you …
OSINT Techniques: Who’s Behind A WordPress Site? Read More »
