### <br>What is OSINT? OSINT (Open Source Intelligence) refers to the collection, analysis, and use of publicly available information to generate insights. It is widely used in cybersecurity, investigations, journalism, competitive intelligence, and national security. ## <br>Sources of OSINT OSINT relies on various publicly accessible sources, including: 1- **Search Engines** - Google Dorking: Using advanced search operators (`site:`, `intitle:`, `filetype:`) to find hidden or indexed information. - Bing, DuckDuckGo, and Yandex for alternative perspectives. 2- **Social Media Platforms** - Twitter/X, Facebook, Instagram, LinkedIn, Reddit, TikTok for tracking profiles, posts, and interactions. - Tools like Maltego, OSINT Framework, and Social-Searcher help aggregate data. 3- **WHOIS and DNS Records** - `whois` lookup tools (e.g., [Whois Lookup](https://who.is)) for domain ownership details. - Reverse IP lookup and subdomain enumeration using tools like `Shodan`, `Censys`, and `Netcraft`. 4- **Metadata Extraction** - Inspecting file metadata (e.g., PDF, DOCX, images) using `exiftool`, `FOCA`, or `metagoofil`. - Examining image geolocation data. 5- **Data Breaches and Leak Databases** - Checking leaked credentials on Have I Been Pwned ([hibp](https://haveibeenpwned.com/)). - Searching for exposed databases on DeHashed and LeakCheck. 6- **Public Records & Government Databases** - Corporate registries, court records, patents, and government open data. - FOIA (Freedom of Information Act) requests. 7- **Dark Web and Deep Web** - Analyzing forums and marketplaces using Tor and I2P. - Using specialized search engines like Ahmia for indexed Tor sites. 8- **Networking and Cybersecurity Tools** - `Shodan` for scanning exposed devices. - `Censys` for network reconnaissance. - `theHarvester` for gathering emails and subdomains. ## <br>Tools and Frameworks for OSINT - Google Dorks – Advanced search queries. - Maltego – Data visualization and link analysis. - SpiderFoot – Automated reconnaissance. - Recon-ng – Python-based OSINT framework. - Sherlock – Social media username search. - FOCA – Metadata analysis. - GHunt – Extracting information from Google services. ## <br>Ethical and Legal Considerations - Ensure legality: Avoid illegal access or hacking. - Respect privacy: Do not misuse collected data. - Follow ethical guidelines: Use OSINT responsibly. Find the information you need to build your tools and services for free and openly. Contribute to our community by participating