OSINT Protips
Collection of useful OSINT tips and tricks.
If you follow my Twitter (@ohshint_), you may have noticed that recently have been going on a tweeting spree providing useful OSINT tips and tricks using the hashtag #OSINTProtip.
For those who don't use and/or don't care about Twitter, you can view all of these pro-tips on this page. I will be updating this page whenever I post a new OSINT protip.
OSINT Protip 1
Posted on 4/11/2021 at 11:17 PM.
URL: https://twitter.com/ohshint_/status/1456505851020070913
#OSINT Protip:
You can easily download any Google document for offline use by simply editing its URL. Example (Using @bellingcat's Online Investigation Toolkit): https://docs.google.com/spreadsheets/d/18rtqh8EG2q1xBo2cLNyhIDuK9jrPGwYr9DI2UncoqJQ/export?format=xlsx
Just add /export?format=<file type> to the document's URL!
/spreadsheets/d/<document ID>/export?format=<file type> and/or /document/d/<document ID>/export?format=<file type>
Export spreadsheets in pdf or xlsx format. Export documents in pdf, docx, epub, txt, md, and more!
OSINT Protip 2
Posted on 6/11/2021 at 3:42 PM.
URL: https://twitter.com/ohshint_/status/1457116170432118784
#OSINT Protip 2:
You can view and download an #Instagram post in full resolution by simply adding /media/?size=l to the post URL.
Example: https://instagram.com/p/CMdB2v8liSf/media/?size=l
You can also use `?size=m`, if you want a smaller resolution.
OSINT Protip 3
Posted on 8/11/2021 at 3:18 AM.
URL: https://twitter.com/ohshint_/status/1457668968571834371
#OSINT Protip 3:
There are archives of Chrome, Firefox and Edge browser extensions that allow you to download older versions, view history, see developer information and other metadata.
Here is another useful archive of #Firefox add-ons:
This is a tool for downloading and extracting the source code from a .crx file:
These archives can be very useful when researching and discovering malicious activity!
OSINT Protip 4
Posted on 8/11/2021 at 10:59 PM.
URL: https://twitter.com/ohshint_/status/1457966143721730052
#OSINT Protip 4:
Get yourself a library card (Register with fake information, if possible).
Many times local libraries offer free access to large datasets such as immigration records, ancestry data, newspaper archives, current and historical maps, and much more.
OSINT Protip 5
Posted on 10/11/2021 at 12:29 PM.
URL: https://twitter.com/ohshint_/status/1458532227743027202
#OSINT Protip 5:
Use 3rd party viewers to browse Instagram profiles without having to use a sock-puppet account.
Also, it's worth noting that sometimes these pages have been archived on the Wayback Machine and archive.today.
So it's worth checking in case you encounter a private account or to see if an Instagram account has deleted some of their posts!
OSINT Protip 6
Posted on 11/10/2021 at 6:41 PM.
URL: https://twitter.com/ohshint_/status/1458988232373198853
#OSINT Protip 6:
Flowcharts, use them.
These will ensure that you don't potentially miss anything while investigating different platforms and subjects. Extremely useful!
Created by @sinwindie, so go give him a follow and star his GitHub: https://github.com/sinwindie/OSINT
Attached images:
OSINT Protip 7
Posted on 12/11/2021 at 7:16 PM.
URL: https://twitter.com/ohshint_/status/1459359586989740034
#OSINT Protip 7:
Federal and local governments often offer GIS data and other data sets for free. Including interactive maps, property, environmental and infrastructure information for specific areas.
Many of them can be found here:
Here is another example of what I'm talking about here.
This is a great collection of Canadian open data portals, both federal and provincial. This site also provides some other useful non-Canadian data sets.
OSINT Protip 8
Posted on 13/11/2021 at 6:27 PM.
URL: https://twitter.com/ohshint_/status/1459709465859481603
#OSINT Protip 8:
OSINT is essentially an umbrella term for intelligence work. You should familiarize yourself with the common acronyms used in the in intelligence field, as you will likely encounter them in your journey. Read more here:
Attached image:
OSINT Protip 9
Posted on 13/11/2021 at 8:19 PM.
URL: https://twitter.com/ohshint_/status/1459737802296348673
#OSINT Protip 9:
If you didn't know about this before, you should!
Simple way to bypass the login prompt when scrolling through an #Instagram profile.
This technique also works with #Pinterest.
Attached image:
OSINT Protip 10
Posted on 14/11/2021 at 5:32 PM.
URL: https://twitter.com/ohshint_/status/1460058111188733952
#OSINT Protip 10:
#Gmail addresses ignore dots, but everything else usually does not. Potentially discover new information and additional leads!
Example: johnathandoe@gmail.com and johnathan.doe@gmail.com is the same address, but they provide different results:
Attached images:
OSINT Protip 11
Posted on 18/11/2021 at 4:47 PM.
URL: https://twitter.com/ohshint_/status/1461496264181223426
#OSINT Protip 11:
IP addresses can sometimes be useful. Other than geolocation, you can also check to see if and what torrents have been downloaded by searching a specific IP:
OSINT Protip 12
Posted on 18/11/2021 at 9:18 PM.
URL: https://twitter.com/ohshint_/status/1461564466781306880
#OSINT Protip 12:
Sometimes it's needed to use foreign information services while working on a specific case. Here is a list of telephone and business directories for different parts of the world. Very useful!
Translation may be needed.
OSINT Protip 13
Posted on 19/11/2021 at 7:09 PM.
URL: https://twitter.com/ohshint_/status/1461894323750916099
#OSINT Protip 13:
Is #Instagram banning your sockpuppets? Use this simple trick to bypass their new "video verification" data collection scheme.
Step 1: Go to https://sketchfab.com/tqyw/collections/human-face
Step 2: Use your phones camera and follow Instagram's instructions.
OSINT Protip 14
Posted on 22/11/2021 at 2:16 AM.
URL: https://twitter.com/ohshint_/status/1462726721950552074
#OSINT Protip 14:
Books. They contain lots of information, so you should read some! Here is a list of great OSINT books:
Open Source Intelligence Techniques, 8th Edition by Bazzell, M.
US Army ATP 2-22.9.
The Psychology of Intelligence Analysis by Heuer, R.
If you want to read more, check out these great lists of #OSINT related books and research papers.
These are all certainly worth downloading and reading. Go get learn't!
OSINT Protip 15
Posted on 23/11/2021 at 7:32 PM.
URL: https://twitter.com/ohshint_/status/1463349823139028993
#OSINT Protip 15:
There are many datasets, maps and more online for many different, and very specific things. Everything from public toilets to license plates. Here are a few examples:
OSINT Protip 16
Posted on 25/11/2021 at 10:23 PM.
URL: https://twitter.com/ohshint_/status/1464117691078221826
#OSINT Protip 16:
You can search for amateur radio operators by callsign, name or FRN. Results can provide a person's full name, callsign, addresses and in some cases, felony records.
OSINT Protip 17
Posted on 3/12/2021 at 1:09 AM.
URL: https://twitter.com/ohshint_/status/1466696128691204096
#OSINT Protip 17:
When investigating footage coming out of conflict areas, it's important to identify the types of ordnance used and where it came from.
Here are a few great resources:
Being able to identify other things like firearms, ordnance, vehicles, aircraft, boats, uniforms and more is also important.
I have a large list of resources to help identify these different types of military equipment, find it here:
Attached images:
OSINT Protip 18
Posted on 4/12/2021 at 9:45 PM.
URL: https://twitter.com/ohshint_/status/1467369618486398978
#OSINT Protip 18:
Online maps exist for just about anything. Locations of military bases to Orthodox churches, and everything in between.
Here's a few:
As always, I keep a list of things like this over on my blog and also on GitHub.
OSINT Protip 19
Posted on 9/12/2021 at 10:30 PM.
URL: https://twitter.com/ohshint_/status/1469192864995311624
#OSINT Protip 19:
S P A C E
The last frontier is certainly an interesting one to research! Earths orbit is a fun thing to investigate, see how polluted our orbit actually is. Check these tools out:
Check out my growing list of #OSINT resources for all things space:
Attached image:
OSINT Protip 20
Posted on 12/12/2021 at 6:32 PM.
URL: https://twitter.com/ohshint_/status/1470219998983426050
#OSINT Protip 20:
There are a few databases of scammers available online. Search by email, crypto, name, etc. Some of these sites are crowd-sourced. So there is a risk of false positives.
OSINT Protip 21
Posted on 14/12/2021 at 12:04 AM.
URL: https://twitter.com/ohshint_/status/1470665894816747523
#OSINT Protip 21:
When searching for a person, username, email or phone number. Sometimes you can discover additional information by searching with emojis.
OSINT Protip 22
Posted on 17/12/2021 at 11:05 PM. URL: https://twitter.com/ohshint_/status/1472100597595717632
#OSINT Protip 22:
[1/2]
Email addresses are a very powerful piece of information to have.
Discover email addresses via domain:
Confirm that it belongs to your target and see what services they use:
[2/2]
Check for any PGP keys:
Search for any additional information via breached data:
OSINT Protip 23
Posted on 22/12/2021 at 8:31 PM. URL: https://twitter.com/ohshint_/status/1473873765800939524
#OSINT Protip 23:
[1/3]
Twitter lists are a great source of information about all kinds of different subjects bundled into one. Here are a few that I've made:
#OSINT Protip 23:
[2/3]
[OPSEC/Privacy] https://twitter.com/i/lists/1471377222371995650
[HUMINT/SE] https://twitter.com/i/lists/1471736382146056193
#OSINT Protip 23:
[3/3]
Some other great lists made by other Twitter users that are certainly worth following.
[Breaches/Leaks] https://twitter.com/i/lists/1472108413614133248
[OSINT Companies] https://twitter.com/i/lists/1438495446809333760
OSINT Protip 24
Posted on 4/1/2022 at 6:15 PM. URL: https://twitter.com/ohshint_/status/1478550818685022209
#OSINT Protip 24:
Newspapers, both current and historic, are very valuable sources. Marriages, events, obituaries and more can be found.
Here's a few useful sites.
Your local library.
OSINT Protip 25
Posted on 9/1/2022 at 6:46 PM. URL: https://twitter.com/ohshint_/status/1480370399229583362
#OSINT Protip 25:
Business and corporation registries can reveal a wealth of info about a company. Most countries offer searchable databases.
#OSINTProtip #TRADINT #CORPINT
OSINT Protip 26
Posted on 14/1/2022 at 6:21 PM. URL: https://twitter.com/ohshint_/status/1482176073588559877
#OSINT Protip 26:
This is a great technique for both reverse image searching and GEOINT things. Also, do yourself a favor and follow @LorandBodo. You will learn a lot from him!
"This is brilliant & extremely useful for #OSINT.
Ever wanted to remove an object, person or any defects from a picture to have better reverse image results?
Then TRY this one: https://cleanup.pictures it's free!"
OSINT Protip 27
Posted on 14/1/2022 at 7:19 PM. URL: https://twitter.com/ohshint_/status/1482190623759212544
[1/3]
#OSINT Protip 27:
When working with onion sites, they may have been archived using clearnet proxies.
Adding .pet to an onion URL and searching it on http://archive.today and/or Wayback sometimes can provide archived copies.
Example: - https://archive.fo/GEzQ0
[2/3]
Here are some other Tor2Web gateways to check the archives for. Some of these gateways still work, and some do not. Just add to the end of any onion URL:
.sh
.ly
.ws
.to
.cab
.city
.direct
.top
.rip
.plus
.link
[3/3]
Or replace the .onion part of the URL with these:
tor2web.org
tor2web.fi
tor2web.blutmagie.de
s1.tor-gateways.de
s2.tor-gateways.de
s3.tor-gateways.de
s4.tor-gateways.de
s5.tor-gateways.de
Attached image:
OSINT Protip 28
Posted on 22/1/2022 at 10:26 PM. URL: https://twitter.com/ohshint_/status/1485136905523982336
#OSINT Protip 28:
Drone footage can give you better angles and viewpoints during #GEOINT investigations.
Here's some great resources.
OSINT Protip 29
Posted on 31/1/2022 at 1:11 PM.
URL: https://twitter.com/ohshint_/status/1488258578439831555
#OSINT Protip 29:
[1/3]
Research papers can be an excellent source of information. Here are some great archives.
[2/3]
Here are a few more sites worth checking out as well.
[3/3]
And of course, https://archive.org
OSINT Protip 30
Posted on 10/2/2022 at 7:35 PM. URL: https://twitter.com/ohshint_/status/1491979170997424129
#OSINT Protip 30:
[1/2]
WiFi BSSIDs can be very useful during an investigation. Can provide addresses, or even track a targets movements.
[2/2]
Thanks to @GONZOs_int for creating such a useful tool! Be sure to follow him for more awesome stuff.
OSINT Protip 31
Posted on 18/03/2022 at 6:48 PM. URL: https://twitter.com/ohshint_/status/1504998178201825280
#OSINT Protip 31:
Locating geotagged posts is very useful when researching on-going events, protests and emergencies. Here are some great tools for this:
Attached image:
OSINT Protip 32
Posted on 5/4/2022 at 5:56 PM. URL: https://twitter.com/ohshint_/status/1511508193251237891
#OSINT Protip 32:
#Reddit can be an invaluable resource for any investigation. From deleted content, profiling a subject, or locating the source of content. Here are some tools.
Here are some other useful tools when working with Reddit.
OSINT Protip 33
Posted on 7/4/2022 at 5:42 PM. URL: https://twitter.com/ohshint_/status/1512229453857886214
#OSINT Protip 33:
Passports and other identification documents are important in daily life and in any investigation. Being able to identify them and verify legitimacy is essential.
Some other great resources for identification documents and licenses.
Attatched image:
OSINT Protip 34
Posted on 26/4/2022 at 6:48PM. URL: https://twitter.com/ohshint_/status/1519131392306651139
#OSINT Protip 34:
People tend to re-use the same usernames across multiple platforms. Use this to your advantage to find new pivot points.
OSINT Protip 35
Posted on 13/5/2022 at 7:56 PM. URL: https://twitter.com/ohshint_/status/1525308993291231235
#OSINT Protip 35:
Searching for specific strings across paste and code repo sites can sometimes reveal a wealth of interesting data. Here are some useful tools.
OSINT Protip 36
Posted on 2/6/2022 at 7:20 PM. URL: https://twitter.com/ohshint_/status/1532547813535457280
#OSINT Protip 36:
#Breach data can reveal a ton of useful information and new leads. Here are a few great (mainly paid) services.
Disclaimer:
As breach data is technically open-source. The malicious use of it can have heavy legal implications.
Using this data for credential-stuffing, phishing, blackmail or any other malicious purpose is against the law.
In other words, don't be shitty.
Attached image:
OSINT Protip 37
Posted on 21/6/2022 at 9:34 PM. URL: https://twitter.com/ohshint_/status/1539466711237136384
#OSINT Protip 37:
Stolen property databases are a great resource during loss prevention/asset recovery cases. From vehicles to firearms, here are a few resources.
Attached image:
OSINT Protip 38
Posted on 7/7/2022 at 6:55 PM. URL: https://twitter.com/ohshint_/status/1545224950562242561
#OSINT Protip 38:
Public webcams and WAN facing surveillance cameras can be a great tool for monitoring situations, tracking POIs and more. Some useful tools.
OSINT Protip 39
Posted on 13/7/2022 at 10:39 PM. URL: https://twitter.com/ohshint_/status/1547455612434276352
#OSINT Protip 39:
Uncovering a targets older and/or alternate usernames can provide additional leads and much more information. Be sure to check for them!
OSINT Protip 40
Posted on 29/7/2022 at 6:43 PM. URL: https://twitter.com/ohshint_/status/1553194512666636288
#OSINT Protip 40:
Reverse image searching can uncover unexpected results. From locating original works, identifying objects, and locating POIs.
Attached image:
OSINT Protip 41
Posted on 4/8/2022 at 7:46 PM. URL: https://twitter.com/ohshint_/status/1555384789519151104
#OSINT Protip 41:
Whether you are a drug user or investigator (or both). Being able to identify #drugs and research chemicals is essential for both harm-reduction and investigations.
Attached image:
OSINT Protip 42
Posted on 12/8/2022 at 12:42 AM. URL: https://twitter.com/ohshint_/status/1557995941008773120
#OSINT Protip 42:
Finding #YouTube videos by location, finding comments, viewing metadata, and locating removed content can uncover essential information!
Attached image:
OSINT Protip 43
Posted on 19/8/2022 at 1:42 PM. URL: https://twitter.com/ohshint_/status/1560728890825326592
#OSINT Protip 43:
Being able to search through public AWS buckets and open #Google drives can help you locate some very interesting things.
OSINT Protip 44
Posted on 2/9/2022 at 1:42 PM. URL: https://twitter.com/ohshint_/status/1565802445175140352
#OSINT Protip 44:
Landmark identification and pinpointing locations where an image or video was taken is a very good skill when investigating current and past events.
Attached image:
OSINT Protip 45
Posted on 9/9/2022 at 6:16 PM. URL: https://twitter.com/ohshint_/status/1568407979472621570
#OSINT Protip 45:
Historical WHOIS and DNS records can reveal ownership details or locate other important details via past SOA records.
OSINT Protip 46
Posted on 19/9/2022 at 7:36 PM. URL: https://twitter.com/ohshint_/status/1572052053962424320
#OSINT Protip 46:
Identifying and monitoring #blockchain transactions is essential when working on any crypto case. From ransomware to typical scams.
Attached image:
OSINT Protip 47
Posted on 29/9/2022 at 7:36 PM. URL: https://twitter.com/ohshint_/status/1575675999005839360
#OSINT Protip 47:
Property and real estate records can reveal loads of information like 360° tours, floor plans, construction details, owners and more.
Attached image:
OSINT Protip 48
Posted on 14/10/2022 at 8:10 PM. URL: https://twitter.com/ohshint_/status/1581120419461201920
#OSINT Protip 48:
Industry and infrastructure maps are essential when doing #GEOINT, environmental monitoring, threat assessments, etc.
OSINT Protip 49
Posted on 29/10/2022 at 10:09 PM. URL: https://twitter.com/ohshint_/status/1586586002365493248
#OSINT Protip 49:
There are so many social media platforms out there. It's important to check these "lesser known" platforms during investigations.
Thanks @osintcombine!
OSINT Protip 50
Posted on 11/11/2022 at 4:12 PM. URL: https://twitter.com/ohshint_/status/1591222427400667136
#OSINT Protip 50:
#Mastodon is becoming more popular, so it is becoming more essential to include this platform during investigations.
Attached image:
OSINT Protip 51
Posted on 6/12/2022 at 11:44 PM. URL: https://twitter.com/ohshint_/status/1600395744783237120
#OSINT Protip 51:
Essential for the freeflow of information. Whether you are pro or anti-piracy, these libraries are important! Find information on almost any subject.
Attached image:
OSINT Protip 52
Posted on 23/12/2022 at 8:45 PM. URL: https://twitter.com/ohshint_/status/1606511393783812096
#OSINT Protip 52:
During the holidays, people tend to post pictures of their family, loved ones and even pets.
Take advantage of this! Look at friends and family profiles for updated photos and information about your targets.
Also, Happy Holidays everyone!
Attached image:
OSINT Protip 53
Posted on 21/1/2023 at 9:13 PM. URL: https://twitter.com/ohshint_/status/1617027649704165378
#OSINT Protip 53:
#TOR is great for privacy, and finding loads of information on just about anything. Here are some great #onion search engines.
Attached image:
OSINT Protip 54
Posted on 4/2/2023 at 9:34 PM. URL: https://twitter.com/ohshint_/status/1622106296135880706
#OSINT Protip 54:
Searching through #YouTube subtitles via specific keywords or phrases is excellent for finding videos of interest and/or locating additional information on an event.
Attached image:
OSINT Protip 55
Posted on 3/3/2023 at 4:22 PM. URL: https://twitter.com/ohshint_/status/1631812323462758400
#OSINT Protip 55:
Image boards like 4chan can reveal a ton of information on just about anything. Searching archives can help locate posts, comments, images, etc. Beware, lots of NSFW.
Attached image:
OSINT Protip 56
Posted on 23/3/2023 at 1:49 AM. URL: https://twitter.com/ohshint_/status/1638825402155286530
#OSINT Protip 56:
#Breach data can uncover all kinds of information about a target. Emails, usernames, IPs, etc. This new service from @cybersecuwu will assist you with most investigations.
Disclaimer: As breach data is technically open-source. The malicious use of it can have heavy legal implications. Using this data for credential-stuffing, phishing, blackmail or any other malicious purpose is against the law. In other words, don't be shitty.
OSINT Protip 57
Posted on 12/5/2023 at 7:38 PM. URL: https://twitter.com/ohshint_/status/1657213586178207744
#OSINT Protip 57:
Searching for data on the #BitTorrent network can help uncover some very useful things. Datasets, books, videos and pretty much anything else.
OSINT Protip 58
Posted on 17/6/2023 at 3:42 AM. URL: https://twitter.com/ohshint_/status/1670018962934099968
#OSINT Protip 58:
The ability to recognize and identify firearms is essential when investigating images and footage coming out of combat zones and other conflict areas.
Attached image:
OSINT Protip 59
Posted on 14/6/2023 at 8:08 PM. URL: https://twitter.com/ohshint_/status/1680051693856366592
#OSINT Protip 59:
The Internet is an interesting place. Finding information on #IoT devices and networks is an essential skill for threat detection and OSINT.
Attached image:
OSINT Protip 60
Posted on 2/8/2023 at 8:00 PM. URL: https://twitter.com/ohshint_/status/1686935057125244928
#OSINT Protip 60:
Tracking aircraft is very important for all types of investigations and for research. #ADSB is also a lot of fun!
Attached image:
OSINT Protip 61
Posted on 7/8/2023 at 11:37 PM. URL: https://twitter.com/ohshint_/status/1688801474585980928
#OSINT Protip 61:
Ship tracking via #AIS can give insight into vessel locations, routes, global trade, and even illicit trade.
Attached image:
OSINT Protip 62
Posted on 8/8/2023 at 6:42 PM. URL: https://twitter.com/ohshint_/status/1689085091748974592
#OSINT Protip 62:
CVEs are discovered daily. It's important to stay updated. Also, PoC is fun to play with!
Attached image:
OSINT Protip 63
Posted on 18/8/2023 at 8:55 PM. URL: https://twitter.com/ohshint_/status/1692747056086200739
#OSINT Protip 63:
The value that email addresses have during investigations is unmatched. You can find out many new things.
Attached image:
OSINT Protip 64
Posted on 24/8/2023 at 7:09 PM. URL: https://twitter.com/ohshint_/status/1694894633556603278
#OSINT Protip 64:
#Snapchat can be extremely useful during a crises, and can provide good information on a target person or place.
Attached image:
OSINT Protip 65
Posted on 18/9/2023 at 11:11 PM. URL: https://twitter.com/ohshint_/status/1704015303817244766
#OSINT Protip 65:
Country-specific search engines and web directories can help you uncover plenty of useful information.
Attached image:
OSINT Protip 66
Posted on 5/10/2023 at 1:39 AM. URL: https://twitter.com/ohshint_/status/1709850785465676050
#OSINT Protip 66:
Sometimes its necessary to crack/decode various hashes and encoded strings during investigations.
For everything else, use hashcat and wordlists.
Attached image:
Last updated
