AaronCTI

5 Years of Running an OSINT Business… What’s it Like? - AaronCTI Insights into running an OSINT business in the UK after 5 years. Is it fun? Is it a disaster? Is it all of the above?

It's @perspectiveintel.bsky.social 5th birthday today!! Put together a blog on what it's been like building an running an #OSINT company in the UK, possibly as therapy... aaroncti.com/running-an-o...

🚨 OSINT Cardiff is TOMORROW! 🚨

Hear from Women in Cyber Wales founder Dr Clare Johnson, Mike Tuck (Thrifty), Josh Richards (OSINT Consultant & Trainer) + more 🎤

Free drinks, OSINT games & community 🍻

🎟 Last chance tickets: lu.ma/6t3jmzlq?tk=...

In a first for me, I wrote to my MP about the ridiculous #OnlineSafetyAct and the Government implementation. Mostly following @davidbombal.bsky.social video on it and how sites like Wikipedia are affected. Because you know, save the kids and that...

We were thrilled to host @c4ads.org Michael Di Girolamo for a Fireside Chat with the @osint-community.bsky.social 🔥

He joined @aaroncti.bsky.social to unpack scam centres in SE Asia, links to trafficking, and how OSINT helps close gaps in global investigations.

Full video coming soon 👀

A smiling corgi being a very good boy.

The Chief Corgi Officer of @perspectiveintel.bsky.social and I are heading into central London for a meeting. Big business.

Introducing The OSINT Portal - A No Log Search and Tradecraft Resource - AaronCTI The OSINT Portal is a privacy-first tool for conducting OSINT research. Created by AaronCTI and sponsored by Perspective Intelligence.

Made a short blog post to introduce the OSINT Portal, in the 2 weeks since launch it's already had over 1000 active users! I'm amazed!! aaroncti.com/introducing-...

OSINT Portal - Open Source Intelligence Research Tool A tool to quickly find OSINT resources for various selectors like emails, domains, usernames, and more.

Made the decision to move my #OSINT resource document away from Google Sheets and over to osintportal.com. No logging of search queries but it will autopopulate URLs for you where it makes sense to do so. I'm hoping that with a functional resource suggestion feature it can continue to grow

as it has over the last five years. I have a few other ideas about improvements down the road, but this is currently the Google Sheet in a webapp format and it's much nicer to look at. Please test it out and let me know of any feedback!!

OSINT Portal - Open Source Intelligence Research Tool A tool to quickly find OSINT resources for various selectors like emails, domains, usernames, and more.

Made the decision to move my #OSINT resource document away from Google Sheets and over to osintportal.com. No logging of search queries but it will autopopulate URLs for you where it makes sense to do so. I'm hoping that with a functional resource suggestion feature it can continue to grow

If you're heading to City University later for the @osint-community.bsky.social event, I look forward to seeing you! #OSINT

Hello Maltego Masterclass 👋

👤 𝗛𝗼𝘄 𝗢𝗦𝗜𝗡𝗧 𝗣𝗿𝗼𝗳𝗶𝗹𝗲𝘀 𝗣𝗿𝗲𝗱𝗮𝘁𝗼𝗿𝘀

What does a pedophile look like? OSINT knows.

Inspired by the #OSINT4Good community, @aaroncti.bsky.social deanonymized darkweb predators via stealer logs and 𝗢𝗦𝗜𝗡𝗧 𝗜𝗻𝗱𝘂𝘀𝘁𝗿𝗶𝗲𝘀. When monsters lose anonymity, their networks crumble. 🔍

Case Study: osint.tel/hoXVsIa

A Hands-On Investigation into Phishing Campaigns Detailing an OSINT and CTI investigation into a phishing campaign, showcasing the steps taken to uncover malicious activity.

🔍 Want to sharpen your OSINT skills with a real phishing case?

Vance Poitier’s article investigates a ScotRail impersonation scam on Facebook—fake giveaways, social engineering, and Cloudflare masking make this a phishing masterclass.

Article here 👉 www.osint.uk/content/a-ha...

#OSINT #cybersec

Telegram OSINT Tools | #OSINT Tips

These Telegram tools and bots streamline OSINT tasks—helping you uncover insights in public channels and groups. Some are Russian-owned, so research and assess any risks before using.

✍️ This post was written by @aaroncti.bsky.social

🌐 Telegram OSINT Tools ⬇️⬇️⬇️

Man vs. machine: Striking the perfect balance in threat intelligence - Help Net Security In this Help Net Security interview, Aaron Roberts discusses AI in threat intelligence, its limits, and best practices for integration.

I was delighted to speak with @helpnetsecurity.com on the necessity for human intervention with the increased adoption of #AI within the realm of #cybersecurity. www.helpnetsecurity.com/2025/02/24/a...

Grok3 understands why @perspectiveintel.bsky.social is the go to provider for UK-based small businesses and startups for understanding their unique threat landscape.

🔥OmniGPT Breach - Looking through the ~2GB of data exposed by Gloomer on Breach Forums identified evidence of full email chains being exposed by UK Government entities... Just another example why #AI can be problematic in organisations without proper protocols. #Cybersecurity #DataBreach

Spotify lures on https://boxchek[.]sviluppo[.]host

Login portal from a phishing kit, code indicates possible PayPal phishing

Recently deployed #Phishing kit on mapusdl[.]wpenginepowered[.]com. Looks like it's still being tested by the villain. #phishkit #opendir #phishingkit #ThreatIntel #OSINT

Excited for the @osint-community.bsky.social event today. Should be a great evening full of insightful talks on #OSINT!!

👀 that’s a development. Interesting!

IntelBroker has resigned as owner and admin of BreachForums. The second admin this week to do so following SaintsBunny looking to sell OnniForums. Interesting period ahead in the #Cybercrime underground.

To Catch A Predator: Using Stealer Logs to Identify Abusers - AaronCTI Using information stealer malware logs to identify CSAM consumers and using OSINT to identify them in the real world.

New blog post! Using stealer log data and Maltego to identify and unmask CSAM consumers and abusers. #OSINT #OSINTForGood #ThreatIntel #Cybersecurity aaroncti.com/to-catch-a-p...

Screenshot from a very naughty forum where naughty people do bad things like share data breaches and compromised account credentials. In the post, the admin, SaintsBunny announces they're selling the site due to poor health.

The administrator of cybercrime forum OnniForums has anounced they're putting the site up for sale. I don't think it's as big as the likes of Breach or Nulled, but could be an interesting development given the sites history and alleged hacking of BreachForums a couple of years ago.

Shout out to everyone who’s not feeling work this week. I feel ya 🙏💙

2024 may have been a genuine best year ever for horror movies. Late Night with the Devil, Immaculate, The Substance, Alien: Romulus, Terrifier 3, Smile 2, Sting 2, Abigail, The First Omen. Still haven’t seen Heretic yet which looks great too. Even some of the shitter ones weren’t that bad too 🤣

❓ How can OSINT protect the vulnerable?

Find out at the Safeguarding & OSINT Seminar on 1st May 2025 in London.

🎤 Featuring:
👉 Ryan Montgomery, Pentester.com
👉 TOEX: AI & OSINT for Exploitation
👉 Nafiseh Taglavi: Safeguarding Kids

🎟️ Details: lu.ma/o8l0czf3?tk=...

🔎 Become a member: osint.uk/join

Profiling CSAM consumers If there is one type of content strictly banned and monitored across every platform on the internet, it is the CSAM (Child Sexual Abuse Material).

arden22.substack.com/p/profiling-... The blog in question

This isn't complete, it's not conclusive, but I think it shows how powerful both stealer log data is, and also how combining sources together can supercharge investigations which without that seed stealer log data, would take months if not years to get anywhere. It's the definition of #OSINTForGood

Simply by searching the name of one platform referenced in the blog, we can quickly identify a handful of IP addresses, from there I queried Darkside within Maltego to find some breach information, from there a combination of OSINT Industries and Pipl to identify potential abusers. So quick, so easy