Upgrade to PRO for Only $50/Year—Limited-Time Offer! 🔥

OSINT

Avatar for Mariya Mariya
May 05, 2025
0
29

 OSINT

This PDF provides an overview of Open-Source Intelligence (OSINT) — the collection and analysis of data from publicly available sources. It explains how OSINT is used in various fields, including law enforcement, cybercrime, and business intelligence. Key topics include:

Definition and Uses of OSINT: Describes how attackers can leverage public information from websites and social media for reconnaissance without direct interaction.

OSINT Tools: Mentions tools used for gathering and analyzing public data, emphasizing ethical use.

The Internet Layers: Breaks down the Clear Web, Deep Web, and Dark Web, clarifying misconceptions and explaining how these layers differ in accessibility and content.

Dark Web Exploration: Discusses the role of anonymity, illegal activities, and the use of .onion domains.

Social Engineering and Phishing: Explores how attackers use OSINT to craft personalized phishing and spear-phishing attacks, including tactics like whaling and behavioral exploitation.

Overall, the presentation serves as an educational resource on how public data can be used both defensively and offensively in the digital world.

For more details - www.sysdevcode.com

Avatar for Mariya

Mariya

May 05, 2025
Tweet

Featured

See All Featured
Build your cross-platform service in a week with App Engine
Avatar for Jose L jlugia
234
18k
The Language of Interfaces
Avatar for Des Traynor destraynor
162
25k
The Invisible Side of Design
Avatar for Vitaly Friedman smashingmag
302
51k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
Avatar for Vitaly Friedman smashingmag
254
22k
ReactJS: Keep Simple. Everything can be a component!
Avatar for Pedro Nauck pedronauck
666
130k
Designing Experiences People Love
Avatar for Jonathan Moore moore
143
24k
Balancing Empowerment & Direction
Avatar for Lara Hogan lara
5
800
A Modern Web Designer's Workflow
Avatar for Chris Coyier chriscoyier
698
190k
Fashionably flexible responsive web design (full day workshop)
Avatar for Andy Clarke malarkey
407
66k
The Hidden Cost of Media on the Web [PixelPalooza 2025]
Avatar for Tammy Everts tammyeverts
1
110
Imperfection Machines: The Place of Print at Facebook
Avatar for Scott Boms scottboms
269
13k
No one is an island. Learnings from fostering a developers community.
Avatar for Antonio thoeni
21
3.6k

Transcript

  1. iNSIDE THE DARK WEB Open-source intelligence

  2. What is OSINT? data that has been obtained from publicly

    available sources

  3. OSINT is widely used within law enforcement work, cybercrime activities

    such as planning an attack, business operation purposes, such as checking out the competition

  4. A company that has a public web page that introduces

    some/all of their employees targets for social engineering attacks

  5. Photos on social media that are geotagged and contain device

    information in the metadata

  6. Reading a user’s social media profile to build up a

    profile of them information such as date of birth, locations, friends, interests, family

  7. Attackers can build up a good picture of their target

    without directly interacting with their systems

  8. OSINT tools DISCLAIMER: This article is written for informational purposes

    and is not a guide to illegal actions or training material for concealing offenses

  9. Darkweb

  10. None

  11. Before we dive into the blackness of the darkweb .

    we first need to explore how the internet is split up into three regions known as; the Clear Web, the Deep Web, and the Dark Web
  12. None

  13. Clear Web This part of the internet has many names,

    such as; The Clear Web, Surface Web, and Indexed Web. These are the sites that you access daily, such as Facebook, Google, YouTube, Reddit, and so on. These websites and web pages are indexed on a mass scale by search engines such as Google and Bing, which is why we can find them when using search engines.

  14. Crawlers Crawlers are a type of software that searches the

    internet for publicly available webpages so that search engines can offer them as results. These bots go from site to site, link to link, finding every page that they’re allowed to view, and reporting back.

  15. Deep Web The Deep Web, also known as the Underground

    Web or Invisible Web, is the part of the Internet that isn’t indexed by conventional search engines, such as Google or Bing. Either the site owners have prevented crawlers from indexing their site, or they have implemented access controls to only allowed their intended audience to access the site. The Deep Web is huge. “Public information on the deep Web is currently 400 to 550 times larger than the commonly defined World Wide Web.”

  16. Are the Dark Web and the Deep Web the same

    thing? No. They’re different. Log in to your Amazon account – you’re on the Deep Web. Sign in to your Facebook – you’re on the Deep Web. These are web pages that are not indexed or publicly available, imagine if anyone could search on Google and find your private Amazon page with your order history, payment details, and more private information. Not everything on the Deep Web is illegal or shady, it’s just private pages that only certain people should have access to. Other examples include private forums, private membership pages, and online banking.

  17. Dark Web A section of the internet that is utilized

    for anonymity, illegal operations, intelligence gathering, and more. Whilst some search engines do exist for the Dark Web, sites are usually hidden, and you’ll need to know the exact URL in order to find them. Sites on the Dark Web use the Top Level Domain (TLD) ‘.onion’ as opposed to Clear Web TLDs such as ‘.com’ or ‘.co.uk’.

  18. The big question on all of your minds, is it

    illegal to visit the Dark Web?

  19. The Good Guys The Bad Guys

  20. Accessing the Dark Web

  21. None
  22. None
  23. None

  24. Personalization and Reconnaissance for Targeted Attacks Marketing Customizing phishing messages

    with personal details to increase credibility Including the target’s name, position, or recent activities data breaches and how leaked data is used for personalization.

  25. Advanced Phishing Tactics

  26. Reconnaissance Gathering information about targets from social media, professional networks,

    etc. Use tools like Maltego for OSINT and see how data is aggregated for targeting.
  27. None

  28. Spear Phishing and Whaling whaling exclusively targets high-ranking individuals within

    an organization spear phishing usually goes after a category of individuals with a lower profile

  29. Researching Targets Using OSINT Utilizing tools to gather information from

    public sources

  30. Crafting Highly Personalized Phishing Emails Personalization Techniques Writing emails that

    appear credible and relevant to the target

  31. Exploiting Human Behavior

  32. THANKS!