I am now working over 6 months in a CTI-role and have noticed that some things do not change. Keeping up with #OSINT and #CTI resources is always a challenge.
👇🏼👇🏼👇🏼
That’s how Legendary_OSINT started:
🔗 github.com/k2sosint/leg...
An accessible overview of OSINT tools & methods. Updated regularly.
🔍 OSINT is changing, and not just because of new tools or the rise of AI.
👉🏻Increasingly, there are shifts from passive collection to active creation of open source data. What does this mean for how we define our work?
You can find my article here: shorturl.at/t2ZdW
#OSINT #intelligence
#Maltego Technologies will be adding #Hunchly to their #OSINT ecosystem.
Maltego and Hunchly will work closely in the coming months, to ensure a smooth integration. Would this mean we will get a Maltego Capture or Maltego Collection? 🙂
More information: www.maltego.com/blog/maltego...
ENISA just dropped the EU Vulnerability Database (EUVD), a central hub for vuln data, mandated by NIS2. Open access, actionable info, and support for open-source tools like Vulnerability-Lookup. Big move for EU cyber resilience.
Check it here: euvd.enisa.europa.eu
#CyberThreatIntel #EUVD #VulnMgmt
CISA just changed how it shares cyber alerts:
🚨 Only urgent threats on their Alerts page
📬 Routine stuff? Email & socials
🛠️ KEV? Use GovDelivery
Link: www.cisa.gov/news-events/...
Now’s a good time to check how you’re getting CISA alerts. Don’t miss the signal. #CyberThreatIntel #CISA #Infosec
COLDRIVER just leveled up.
Google TAG says the Russian APT is now dropping Rust-based malware (SPICA) via fake PDFs + malicious LNK files in ZIPs. From phishing creds to custom malware—this is a serious pivot.
Article: blog.google/threat-analy...
#CyberThreatIntel #APT #COLDRIVER #Malware
Except for @proton.me calendar, all other services are up and running again. #protonmail #protonvpn #osint
Proton services are currently down due to network issues...
status.proton.me
#protonvpn #protonmail #osint
True, but tools come and go. It's good to know how it is done manually as well 😉
More #OSINT tips for #BlueSky
- Clearsky.app let's you search accounts and shows top listed/blocked accounts last 24h.
- Deck.blue is a third party site for monitoring BlueSky (like Tweetdeck).
[2/2]
#socmint
A few quick #OSINT tips on the #BlueSky platform.
Find the ID-number in the source code when you search for did:plc:
Using Dev Mode in browser, you can find the profilepic link for a larger version.
Hope this helps, happy OSINTing!
[1/2]
#socmint
Been a while since I wrote an #OSINT blog, this one is a quick read on something I noticed recently while reviewing a CashApp profile on the web. Turned out there was more than meets the eye!
hatless1der.com/osint-quick-...
Representing DataExpert at InCyber Forum Europe in Lille these next few days.
Looking forward to the talks on #osint and #cybersecurity as well as meeting up with the community.
If you are there and want to grab une bière, send me a dm!
#dataexpert #incyber
As mentioned on X, was great to see the #osint community working together on alternatives. This week is a nice hook from your side on the alternatives!
Google has fixed the broken filetype: and ext: operators.
#OSINT #google #booleansearch
Just tried it with the same site as you and I am getting no results. Tried some other sites like cnn.com with the site operator and filetype and it works.
Maybe it's still a bit buggy?
For me it works with the site: operator too. See example with cnn.com
I can confirm it is working again!
filetype:pdf is working again today
Google reached out to me and it appears to be a bug!
Update: filetype:txt and filetype:py seem to be unaffected for now.
See webbreacher's comment. I agree that prompts will be probably the new way to search in the future.
Just tested this one: "Show me all pdf files from domain "https://xxxx.xxxx" It gives some results at first, but then ends up giving results from different sites.
Prompt style seems to be working for the moment: "show me all pdf files with OSINT in them". H/t @webbreacher.com
Ur welcome! Love your 21day guides 👍🏻
ICYMI, nitter.net is 'dead'.
According to Zedeus, the cert has expired and he will not renew it. Source: tinyurl.com/5yja5t43
Alternative is Twiiit.com, a proxied Nitter instance.
Be mindful though of possible OPSEC risks when using a third-party website.
#osint #twitter #nitter #osint4good
www.wired.com/story/how-to...
A big thank you to all of the students, OSINT- and other professionals, suppliers and all other wonderful people I have met, talked too, had fun with, or trained this past year!
Looking forward to what 2024 will bring.
(and yes, this is my happiest face)
#osint #starwars #dorkside
And some more:
🧑🎄 If a user linked their Threads to an Instagram profile, the user id will be the same.
🏷️When logged in, you can search for users and also for tags. Threads currently has a single tag limit, according to: www.theverge.com/2023/12/7/23...
Happy hunting!
#osint #threads
