TCM OSINT

My summary for TCM OSINT Course

What is Osint

Creating Sock Puppets

• Creating an Effective Sock Puppet for OSINT Investigations – Introduction – Jake Creps

• The Art Of The Sock

• My process for setting up anonymous sockpuppet accounts. : r/OSINT

• Generate a Random Name - Fake Name Generator

• (JPEG Image, 1024 × 1024 pixels) — Scaled (98%)

Search Engine Operators

• Google Advanced Search

• Google Guide Cheat Sheet - adv_op_ref.pdf

• BruceClay - Guide to Advanced Search Operators for Bing and Google

• How to use advanced syntax on DuckDuckGo Search | DuckDuckGo Help Pages

Image

image Reverse search

• Google Images

• TinEye Reverse Image Search

• Viewing EXif Data EXIF Data Viewer

• `Exif data gives us the exact location the type of the phone and the time

Physical Location

• GeoGuessr - Let's explore the world!

• GeoGuessr- The Top Tips, Tricks and Techniques | The Digital Labyrinth

Email Addresses

• Find email addresses in seconds • Hunter (Email Hunter)

• Phonebook.cz - Intelligence X

• Email Finder: Free 50 Verified Email Addresses - VoilaNorbert

• Free Email Address Verifier: Verify An Email Address In Real Time | emailhippo.com

• Email Checker - Verify Email Address Online

Breached Password

• DeHashed — #FreeThePassword

• LeakCheck - Find out if your credentials have been compromised

• Snusbase - Database Search Engine

• Have I Been Pwned: Check if your email has been compromised in a data breach

Hunting usernames

• Namechk - Username and Domain Name Checker - Search All Domain Names and User Names to see if they're available

• WhatsMyName Web

• NameCheckup - Find Available Username

People search

• Whitepages® - Official Site | Find People, Phone Numbers, Addresses & More

• Webmii

• PeekYou - Fast People Search Made Easy

• 411 - White Pages | Find Phone Numbers, People, Addresses & More

Phone number

• International-Infobel-Annuaire téléphonique

• Truecaller - Leading Global Caller ID & Call Blocking App

Social Media

Twitter

• Log in to X / X

• Twitter Analytics for Tweets, Timelines & Twitter Maps | Social Bearing

• Twitonomy: Twitter #analytics and much more...

Facebook

• Facebook Search

• Tools - Intelligence X

Website Osint

• `Using google dorks

• BuiltWith Technology Lookup

• Free online network tools - traceroute, nslookup, dig, whois lookup, ping - IPv6

• Reverse IP - Find websites hosted on the same IP address, server or subnet

• SpyOnWeb.com Research Tool - Internet Competitive Intelligence

• VirusTotal - Home

• Visualping: #1 Website monitoring, change detection, and alerts

• Backlink Watch - Free Real-time Backlinks Checker Tool

• ViewDNS.info - Your one source for DNS related tools!

Looking for subdomains

• `Google Dorking as well

• crt.sh | Certificate Search

• Shodan Search Engine

• Wayback Machine

Business Information

• `Linkedin

• Home - OpenCorporates

• The Company Database | aiHit

• Job Search | Indeed

Wireless

• WiGLE: Wireless Network Mapping

Tools

Image and location

• sudo apt install libimage-exiftool-perl

• exiftool <img>

Emails and Breached Data

• The harvester `-d for domain -b for the source -l for limit

• theHarvester -d [tesla.com] -b google -l 500

• hmaverickadams/breach-parse: A tool for parsing breached passwords

• ./[breach-parse.sh] @[tesla.com] tesla.txt

• `h8mail

• `h8mail -t shark@tesla.com -bc "/opt/breach-parse/BreachCompilation/" -sk

Username

• whatsmyname -u "thecybermentor"

• sherlock "thecybermentor"

Number

• phoneinfoga scan -n

• phoneinfoga serve -p

Website

• `Whois

• subfinder -d tcm-sec.com

• assetfinder tcm-sec.com

• amass enum -d tcm-sec.com

• cat tesla.txt | sort -u | httprobe -s -p https:443

• gowitness file -f ./alive.txt -P ./pics --no-http