# TCM OSINT
## What is Osint
## Creating Sock Puppets
* [ ] [Creating an Effective Sock Puppet for OSINT Investigations – Introduction – Jake Creps](https://web.archive.org/web/20210125191016/https://jakecreps.com/2018/11/02/sock-puppets/)
* [ ] [The Art Of The Sock](https://www.secjuice.com/the-art-of-the-sock-osint-humint/)
* [ ] [My process for setting up anonymous sockpuppet accounts. : r/OSINT](https://www.reddit.com/r/OSINT/comments/dp70jr/my_process_for_setting_up_anonymous_sockpuppet/)
* [ ] [Generate a Random Name - Fake Name Generator](https://www.fakenamegenerator.com/)
* [ ] [(JPEG Image, 1024 × 1024 pixels) — Scaled (98%)](https://www.thispersondoesnotexist.com/)
## Search Engine Operators
* [ ] [Google Advanced Search](https://www.google.com/advanced_search)
* [ ] [Google Guide Cheat Sheet - adv\_op\_ref.pdf](https://www.googleguide.com/print/adv_op_ref.pdf)
* [ ] [BruceClay - Guide to Advanced Search Operators for Bing and Google](https://www.bruceclay.com/blog/bing-google-advanced-search-operators/)
* [ ] [How to use advanced syntax on DuckDuckGo Search | DuckDuckGo Help Pages](https://duckduckgo.com/duckduckgo-help-pages/results/syntax/)
## Image
***image Reverse search***
* [ ] [Google Images](https://images.google.com/)
* [ ] [TinEye Reverse Image Search](https://tineye.com/)
* [ ] Viewing EXif Data [EXIF Data Viewer](https://exifdata.com/)
* [ ] \`Exif data gives us the exact location the type of the phone and the time
## Physical Location
* [ ] [GeoGuessr - Let's explore the world!](https://www.geoguessr.com/)
* [ ] [GeoGuessr- The Top Tips, Tricks and Techniques | The Digital Labyrinth](https://somerandomstuff1.wordpress.com/2019/02/08/geoguessr-the-top-tips-tricks-and-techniques/)
## Email Addresses
* [ ] [Find email addresses in seconds • Hunter (Email Hunter)](https://hunter.io/)
* [ ] [Phonebook.cz - Intelligence X](https://phonebook.cz/)
* [ ] [Email Finder: Free 50 Verified Email Addresses - VoilaNorbert](https://www.voilanorbert.com/)
* [ ] [Free Email Address Verifier: Verify An Email Address In Real Time | emailhippo.com](https://tools.emailhippo.com/)
* [ ] [Email Checker - Verify Email Address Online](https://email-checker.net/)
## Breached Password
* [ ] [DeHashed — #FreeThePassword](https://dehashed.com/)
* [ ] [LeakCheck - Find out if your credentials have been compromised](https://leakcheck.io/)
* [ ] [Snusbase - Database Search Engine](https://snusbase.com/)
* [ ] [Have I Been Pwned: Check if your email has been compromised in a data breach](https://haveibeenpwned.com/)
## Hunting usernames
* [ ] [Namechk - Username and Domain Name Checker - Search All Domain Names and User Names to see if they're available](https://namechk.com/)
* [ ] [WhatsMyName Web](https://whatsmyname.app/)
* [ ] [NameCheckup - Find Available Username](https://namecheckup.com/)
## People search
* [ ] [Whitepages® - Official Site | Find People, Phone Numbers, Addresses & More](https://www.whitepages.com/)
* [ ] [Webmii](https://webmii.com/)
* [ ] [PeekYou - Fast People Search Made Easy](https://www.peekyou.com/)
* [ ] [411 - White Pages | Find Phone Numbers, People, Addresses & More](https://www.411.com/)
## Phone number
* [ ] [International-Infobel-Annuaire téléphonique](https://www.infobel.com/fr/world)
* [ ] [Truecaller - Leading Global Caller ID & Call Blocking App](https://www.truecaller.com/)
## Social Media
#### Twitter
* [ ] [Log in to X / X](https://twitter.com/i/flow/login?redirect_after_login=%2Fsearch-advanced)
* [ ] [Twitter Analytics for Tweets, Timelines & Twitter Maps | Social Bearing](https://socialbearing.com/)
* [ ] [Twitonomy: Twitter #analytics and much more...](https://www.twitonomy.com/)
#### Facebook
* [ ] [Facebook Search](https://www.sowsearch.info/)
* [ ] [Tools - Intelligence X](https://intelx.io/tools?tab=facebook)
## Website Osint
* [ ] \`Using google dorks
* [ ] [BuiltWith Technology Lookup](https://builtwith.com/)
* [ ] [Free online network tools - traceroute, nslookup, dig, whois lookup, ping - IPv6](https://centralops.net/co/)
* [ ] [Reverse IP - Find websites hosted on the same IP address, server or subnet](https://dnslytics.com/reverse-ip)
* [ ] [SpyOnWeb.com Research Tool - Internet Competitive Intelligence](https://spyonweb.com/)
* [ ] [VirusTotal - Home](https://www.virustotal.com/gui/home/upload)
* [ ] [Visualping: #1 Website monitoring, change detection, and alerts](https://visualping.io/)
* [ ] [Backlink Watch - Free Real-time Backlinks Checker Tool](https://www.backlinkwatch.com/index.php)
* [ ] [ViewDNS.info - Your one source for DNS related tools!](https://viewdns.info/)
#### Looking for subdomains
* [ ] \`Google Dorking as well
* [ ] [crt.sh | Certificate Search](https://crt.sh/)
* [ ] [Shodan Search Engine](https://www.shodan.io/)
* [ ] [Wayback Machine](https://web.archive.org/)
## Business Information
* [ ] \`Linkedin
* [ ] [Home - OpenCorporates](https://opencorporates.com/)
* [ ] [The Company Database | aiHit](https://www.aihitdata.com/)
* [ ] [Job Search | Indeed](https://eg.indeed.com/?r=us)
## Wireless
* [ ] [WiGLE: Wireless Network Mapping](https://wigle.net/)
## Tools
#### Image and location
* [ ] `sudo apt install libimage-exiftool-perl`
* [ ] `exiftool ![]()
`
#### Emails and Breached Data
* [ ] The harvester \`-d for domain -b for the source -l for limit
* [ ] `theHarvester -d [tesla.com] -b google -l 500`
* [ ] [hmaverickadams/breach-parse: A tool for parsing breached passwords](https://github.com/hmaverickadams/breach-parse)
* [ ] `./[breach-parse.sh] @[tesla.com] tesla.txt`
* [ ] \`h8mail
* [ ] \`h8mail -t -bc "/opt/breach-parse/BreachCompilation/" -sk
#### Username
* [ ] `whatsmyname -u "thecybermentor"`
* [ ] `sherlock "thecybermentor"`
#### Number
* [ ] `phoneinfoga scan -n`
* [ ] `phoneinfoga serve -p`
#### Website
* [ ] \`Whois
* [ ] `subfinder -d tcm-sec.com`
* [ ] `assetfinder tcm-sec.com`
* [ ] `amass enum -d tcm-sec.com`
* [ ] `cat tesla.txt | sort -u | httprobe -s -p https:443`
* [ ] `gowitness file -f ./alive.txt -P ./pics --no-http`